Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

McAfee caught a trojan, then no internet.


  • Please log in to reply
20 replies to this topic

#1 Beaz7

Beaz7

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 01 May 2017 - 01:36 PM

McAfee caught a trojan, then no internet. McAfee is locked up now. I have run Malwarebytes and nothing. Alienware 17 R4, Windows 10 Home.

Please help?



BC AdBot (Login to Remove)

 


#2 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,032 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:12:56 AM

Posted 01 May 2017 - 01:53 PM

Please download the below tools so I can narrow down the problem.

 

Download Farbar MiniToolBox and save the file to your desktop.

  1. Open MiniToolBox by right-clicking it and selecting Run as Administrator.

  2. Make sure the following options are checked and then click Go:

Report IE Proxy Settings

Report FF Proxy Settings

List content of Hosts

List IP configuration

List Winsock Entries

List last 10 Event Viewer log

List Installed Programs

List Devices (Don't change any settings here)

List Users, Partitions and Memory size

List Restore Points

  1. Paste the log file contents into a post.

 

Download SecurityCheck by screen317.

 

  1. Click on the downloaded file and follow the instructions in the box on the screen.

  2. Paste the log file contents into a post.

  3. Important: If you get an error message, please restart your computer and try again.


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#3 Beaz7

Beaz7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 01 May 2017 - 04:05 PM

The mini toolbox only works with the wifi off. But,

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Sean (administrator) on 01-05-2017 at 16:59:37
Running from "C:\Users\Sean\Desktop"
Microsoft Windows 10 Home  (X64)
Model: Alienware 17 R4 Manufacturer: Alienware
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================
========================= IP Configuration: ================================

Killer Wireless-n/a/ac 1535 Wireless Network Adapter = Wi-Fi (Connected)
Killer E2500 Gigabit Ethernet Controller = Ethernet (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : BeazMachine
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Killer E2500 Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : D4-81-D7-68-2A-47
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 3:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 9E-B6-D0-D6-3D-F3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Killer Wireless-n/a/ac 1535 Wireless Network Adapter
   Physical Address. . . . . . . . . : 9C-B6-D0-D6-3D-F3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::edff:bb42:428c:1175%17(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.9(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, May 1, 2017 4:52:23 PM
   Lease Expires . . . . . . . . . . : Tuesday, May 2, 2017 4:52:22 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 127710928
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-20-10-0E-5D-D4-81-D7-68-2A-47
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:1086:1745:9bdd:10c5(Preferred)
   Link-local IPv6 Address . . . . . : fe80::1086:1745:9bdd:10c5%8(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 100663296
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-20-10-0E-5D-D4-81-D7-68-2A-47
   NetBIOS over Tcpip. . . . . . . . : Disabled
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [63488] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog5 08 C:\WINDOWS\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [305568] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [79872] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31232] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog5 08 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [358600] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/01/2017 04:52:19 PM) (Source: Application Error) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.0, time stamp: 0x4247e346
Faulting module name: NAHIMICV3apo.dll, version: 6.3.9600.17246, time stamp: 0x587def09
Exception code: 0xc0000005
Fault offset: 0x000000000033636a
Faulting process id: 0xa2c
Faulting application start time: 0xAUDIODG.EXE0
Faulting application path: AUDIODG.EXE1
Faulting module path: AUDIODG.EXE2
Report Id: AUDIODG.EXE3
Faulting package full name: AUDIODG.EXE4
Faulting package-relative application ID: AUDIODG.EXE5

Error: (05/01/2017 02:46:55 PM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe_DiagTrack, version: 10.0.15063.0, time stamp: 0x02799ef5
Faulting module name: ntdll.dll, version: 10.0.15063.0, time stamp: 0xb79b6ddb
Exception code: 0x00000512
Fault offset: 0x00000000000a5f04
Faulting process id: 0xcf0
Faulting application start time: 0xsvchost.exe_DiagTrack0
Faulting application path: svchost.exe_DiagTrack1
Faulting module path: svchost.exe_DiagTrack2
Report Id: svchost.exe_DiagTrack3
Faulting package full name: svchost.exe_DiagTrack4
Faulting package-relative application ID: svchost.exe_DiagTrack5

Error: (05/01/2017 01:02:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: BEAZMACHINE)
Description: Activation of app Microsoft.BingWeather_8wekyb3d8bbwe!App failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (05/01/2017 01:00:31 PM) (Source: Dell System Detect) (User: )
Description: <Exception><Type>System.Xml.XmlException</Type><Message><![CDATA[The '/' character, hexadecimal value 0x2F, cannot be included in a name.]]></Message><Source><![CDATA[System.Xml]]></Source><StackTrace><![CDATA[   at System.Xml.XmlDocument.CheckName(String name)
   at System.Xml.XmlElement..ctor(XmlName name, Boolean empty, XmlDocument doc)
   at System.Xml.XmlDocument.CreateElement(String prefix, String localName, String namespaceURI)
   at System.Xml.XmlDocument.CreateElement(String name)
   at eSupport.Common.Client.Core.LastUpdatedHelper.SetLastUpdatedValue(String type, String value)]]></StackTrace><SysInfo STag="GFWSSF2" SMBIOSMajVer="3" SMBIOSMinVer="0" SMBIOSBIOSVer="1.0.2" SMBIOSPresent="True" Rel_Date="20161208000000.000000+000" DSDVersion="" Vendor="Alienware" PName="Alienware 17 R4" Ident_Num="BEAZMACHINE" TimeZone="(UTC-05:00) Eastern Time (US & Canada)" OSName="Microsoft Windows 10 Home"/><Method>UpdateLastUpdatedConfig</Method><HostIP>192.168.1.9</HostIP></Exception>

Error: (05/01/2017 01:00:31 PM) (Source: Dell System Detect) (User: )
Description: <Exception><Type>System.Xml.XmlException</Type><Message><![CDATA[The '/' character, hexadecimal value 0x2F, cannot be included in a name.]]></Message><Source><![CDATA[System.Xml]]></Source><StackTrace><![CDATA[   at System.Xml.XmlDocument.CheckName(String name)
   at System.Xml.XmlElement..ctor(XmlName name, Boolean empty, XmlDocument doc)
   at System.Xml.XmlDocument.CreateElement(String prefix, String localName, String namespaceURI)
   at System.Xml.XmlDocument.CreateElement(String name)
   at eSupport.Common.Client.Core.LastUpdatedHelper.SetLastUpdatedValue(String type, String value)]]></StackTrace><SysInfo STag="GFWSSF2" SMBIOSMajVer="3" SMBIOSMinVer="0" SMBIOSBIOSVer="1.0.2" SMBIOSPresent="True" Rel_Date="20161208000000.000000+000" DSDVersion="" Vendor="Alienware" PName="Alienware 17 R4" Ident_Num="BEAZMACHINE" TimeZone="(UTC-05:00) Eastern Time (US & Canada)" OSName="Microsoft Windows 10 Home"/><Method>UpdateLastUpdatedConfig</Method><HostIP>192.168.1.9</HostIP></Exception>

Error: (04/30/2017 10:43:00 PM) (Source: Application Error) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.0, time stamp: 0x4247e346
Faulting module name: NAHIMICV3apo.dll, version: 6.3.9600.17246, time stamp: 0x587def09
Exception code: 0xc0000005
Fault offset: 0x0000000000338a3d
Faulting process id: 0xa80
Faulting application start time: 0xAUDIODG.EXE0
Faulting application path: AUDIODG.EXE1
Faulting module path: AUDIODG.EXE2
Report Id: AUDIODG.EXE3
Faulting package full name: AUDIODG.EXE4
Faulting package-relative application ID: AUDIODG.EXE5

Error: (04/30/2017 09:46:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15469

Error: (04/30/2017 09:46:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15469

Error: (04/30/2017 09:46:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/30/2017 09:40:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.0, time stamp: 0x4247e346
Faulting module name: NAHIMICV3apo.dll, version: 6.3.9600.17246, time stamp: 0x587def09
Exception code: 0xc0000005
Fault offset: 0x000000000033636a
Faulting process id: 0xae4
Faulting application start time: 0xAUDIODG.EXE0
Faulting application path: AUDIODG.EXE1
Faulting module path: AUDIODG.EXE2
Report Id: AUDIODG.EXE3
Faulting package full name: AUDIODG.EXE4
Faulting package-relative application ID: AUDIODG.EXE5


System errors:
=============
Error: (05/01/2017 04:59:11 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:58:41 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:58:11 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:57:40 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:57:10 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:56:40 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:56:10 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:55:40 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:55:10 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}

Error: (05/01/2017 04:54:40 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {E782BE15-9936-4A7F-8DF9-9AB95D229DF1}


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2017-05-01 14:12:16.966
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterDevProps.dll that did not meet the Store signing level requirements.

  Date: 2017-05-01 14:12:16.960
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterOSD.dll that did not meet the Store signing level requirements.

  Date: 2017-05-01 12:59:41.868
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterDevProps.dll that did not meet the Store signing level requirements.

  Date: 2017-05-01 12:59:41.861
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterOSD.dll that did not meet the Store signing level requirements.

  Date: 2017-05-01 12:59:41.782
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterDevProps.dll that did not meet the Store signing level requirements.

  Date: 2017-05-01 12:59:41.776
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterOSD.dll that did not meet the Store signing level requirements.

  Date: 2017-04-25 11:19:03.627
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterDevProps.dll that did not meet the Store signing level requirements.

  Date: 2017-04-25 11:19:03.622
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterOSD.dll that did not meet the Store signing level requirements.

  Date: 2017-04-25 11:19:03.395
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterDevProps.dll that did not meet the Store signing level requirements.

  Date: 2017-04-25 11:19:03.392
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Alienware\AWSoundCenter\UserInterface\x64\AWSoundCenterOSD.dll that did not meet the Store signing level requirements.


=========================== Installed Programs ============================

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Alienware Command Center (HKLM\...\{F61EC32A-12F6-4D13-B26E-50E2588D78E6}) (Version: 4.7.9.0 - Dell Inc.) Hidden
Alienware Command Center (HKLM-x32\...\InstallShield_{F61EC32A-12F6-4D13-B26E-50E2588D78E6}) (Version: 4.7.9.0 - Dell Inc.)
Alienware Customer Connect (HKLM-x32\...\{4FA72FF9-DD64-43A8-8704-6380A11F11D5}) (Version: 1.4.15.0 - Dell Inc.)
Alienware Digital Delivery (HKLM-x32\...\{99B7C4B5-DC14-441D-A5B6-7340F682BC81}) (Version: 3.1.1117.0 - Dell Products, LP)
Alienware Graphics Amplifier Software Installer (HKLM\...\{B74FEE36-FB11-413A-BD9A-BF3E38891153}) (Version: 3.0.11.0 - Dell Inc.) Hidden
Alienware Graphics Amplifier Software Installer (HKLM-x32\...\InstallShield_{B74FEE36-FB11-413A-BD9A-BF3E38891153}) (Version: 3.0.11.0 - Dell Inc.)
Alienware On-Screen Display (HKLM-x32\...\{0D69462F-99CC-4F8D-942E-666E21CE59F8}) (Version: 0.33.0.31 - Alienware Corp.) Hidden
Alienware On-Screen Display (HKLM-x32\...\InstallShield_{0D69462F-99CC-4F8D-942E-666E21CE59F8}) (Version: 0.33.0.31 - Alienware Corp.)
Alienware Product Registration (HKLM-x32\...\InstallShield_{85B14AE3-1624-45BE-942B-A528DF6F1CCE}) (Version: 3.0.123.0 - Dell Inc.)
Alienware Sound Center (HKLM-x32\...\{e2d19baa-995b-4b46-866b-baaf95c06224}) (Version: 1.1.5 - Alienware) Hidden
Alienware Update (HKLM-x32\...\{372F0A07-77E0-4CE6-ADA2-91820D7C5B1B}) (Version: 1.9.8.0 - Dell Inc.)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 376.89 - NVIDIA Corporation) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
AudioLaunchpadConfigurator (HKLM\...\{3726345E-31B4-4A39-983E-1BCF0104DF75}) (Version: 1.1.501 - Alienware) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CheckDevicesConfigurator (HKLM\...\{FD0044F5-AF4F-460B-BF79-6689558721C9}) (Version: 1.1.501 - Alienware) Hidden
DARK SOULS™ III (HKLM\...\Steam App 374320) (Version:  - FromSoftware, Inc.)
Dell Data Vault (HKLM\...\{2E55EEFD-2162-4A7D-9158-EDB0305603A6}) (Version: 4.4.1.0 - Dell Inc.) Hidden
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.212 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{1AE53ECE-2255-4191-998B-07741E5EFCDA}) (Version: 1.4.1.8 - Dell)
Dishonored 2 (HKLM\...\Steam App 403640) (Version:  - Arkane Studios)
Dropbox (HKLM-x32\...\Dropbox) (Version: 24.4.17 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
EMSC (HKLM-x32\...\{FEF06E73-A519-4510-8CF3-B66041B91D8A}) (Version: 0.0.0.31 - Compal Electronics, Inc.) Hidden
EMSC (HKLM-x32\...\InstallShield_{FEF06E73-A519-4510-8CF3-B66041B91D8A}) (Version: 0.0.0.31 - Compal Electronics, Inc.) Hidden
Free Fall Data Protection (HKLM\...\{5141F653-8707-4B96-9349-247C66319C11}) (Version: 1.1.5.2 - Kionix, Inc.)
Guitar Pro 5.2 (HKLM-x32\...\Guitar Pro 5_is1) (Version:  - Arobas Music)
iCloud (HKLM\...\{0493048C-CB1A-44B7-8BB3-8467AF7BA9E4}) (Version: 6.1.2.13 - Apple Inc.)
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11000.2996 - Intel Corporation)
Intel® HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.0.317 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4574 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.2.1030 - Intel Corporation)
iTunes (HKLM\...\{164600BE-9CEC-44E6-9B38-2B12D5FE2342}) (Version: 12.6.0.100 - Apple Inc.)
Killer Ethernet Performance Suite (HKLM\...\{2C40988E-03BC-44C5-966F-AC64BE30F787}) (Version: 1.0.856 - Rivet Networks)
Killer Wireless Drivers (HKLM\...\{013956B1-CCA2-4D3D-9030-44F2D3C06E85}) (Version: 1.0.856 - Rivet Networks)
Killer Wireless Drivers (HKLM-x32\...\{CD892D7D-F6D0-4A4A-9652-99EEFA6673F5}) (Version: 1.1.65.1335 - Rivet Networks)
Killer Wireless-AC Drivers (HKLM\...\{E6AE2A62-D36E-44D8-A0C6-9B966B59801A}) (Version: 1.1.65.1335 - Rivet Networks) Hidden
LauncherSetup (HKLM\...\{57EB0016-CE37-4D09-8282-D83133249A0F}) (Version: 1.1.501 - Alienware) Hidden
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 15.1 R2 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.127 - McAfee, Inc.)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 52.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 en-US)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla)
Nahimic2UISetup (HKLM\...\{D77F79ED-B98F-4DB9-8498-39C5AD2BE1FD}) (Version: 1.1.501 - Alienware) Hidden
NahimicSettingsConfigurator (HKLM\...\{F88A4367-5097-44EF-8E77-27D801B84B00}) (Version: 1.1.501 - Alienware) Hidden
NVIDIA 3D Vision Driver 376.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.89 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation)
NVIDIA Graphics Driver 376.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.89 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.3.16.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.4.6.33873 - Electronic Arts, Inc.)
Product Registration (HKLM\...\{85B14AE3-1624-45BE-942B-A528DF6F1CCE}) (Version: 3.0.123.0 - Dell Inc.) Hidden
ProductDaemonSetup (HKLM\...\{0638E5BA-125E-425D-BF01-8A6B0CDBB34E}) (Version: 1.1.501 - Alienware) Hidden
Prominence Poker (HKLM\...\Steam App 384180) (Version:  - Pipeworks Studio)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.279 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8053 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skyrim Script Extender (SKSE) (HKLM\...\Steam App 365720) (Version:  - The SKSE Team)
SonicMapperConfigurator (HKLM\...\{ED221F20-5D17-4703-8EB4-909DD736DB3E}) (Version: 1.1.501 - Alienware) Hidden
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Thunderbolt™ Software (HKLM-x32\...\{F55C97BF-D9B2-4BB6-B16A-25A621BC50E9}) (Version: 16.2.52.250 - Intel Corporation)
Tobii Bundle Requirements (HKLM-x32\...\{0FC6EDE1-E1B6-4AC4-833B-3FBC2871A208}) (Version: 2.7.0.5807 - Tobii AB) Hidden
Tobii Eula (HKLM-x32\...\{D9EEAE28-8BC2-412B-BF40-6FF6C82F4F41}) (Version: 2.7.0.5807 - Tobii AB) Hidden
Tobii Eye Tracking (HKLM-x32\...\{aee7fe88-1786-414e-b407-30e27970626a}) (Version: 2.7.0.5807 - Tobii AB)
Tobii EyeX (HKLM-x32\...\{92C12C90-2FB8-48B1-AA86-C7B3CC73D351}) (Version: 1.18.0.7778 - Tobii AB) Hidden
Tobii EyeX Config (HKLM-x32\...\{EECF8A73-2040-42E9-A9E3-83AEE0378D7D}) (Version: 4.4.0.848 - Tobii AB) Hidden
Tobii EyeX Interaction (HKLM-x32\...\{0A098A79-BCCD-4466-8654-733B12964819}) (Version: 2.7.0.4200 - Tobii AB) Hidden
Tobii EyeX Intro (HKLM-x32\...\{9A7BE86D-9995-47C2-8136-8DBDAF7B52E0}) (Version: 1.0.3.173 - Moonshot) Hidden
Tobii Face Authentication for Windows Hello (HKLM\...\{300B039A-9B3A-44A4-A2A2-EFD93E55A591}) (Version: 1.0.21.207 - Tobii AB) Hidden
Tobii IS3 Eye Tracker Driver (HKLM-x32\...\{432D9D4E-D79E-4451-BF37-E36174D92E29}) (Version: 2.0.4 - Tobii AB) Hidden
Tobii PTP Filter Driver (HKLM\...\{AB77784C-40BA-4ABD-B7D6-5296773E8B67}) (Version: 1.1.0.75 - Tobii AB) Hidden
Tobii Service (HKLM-x32\...\{4ECA1CE5-2ED5-44ED-84F0-F755C1BA1174}) (Version: 1.18.0.7128 - Tobii AB) Hidden
Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.2.17.45 - Synaptics Incorporated)
UIInstallUpgrade (HKLM\...\{AC37CB0E-29C5-4B76-A6EC-533D72670523}) (Version: 1.1.501 - Alienware) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Driver Package - Kionix, Inc. (kiox_ff_driver) Sensor I/O devices  (06/13/2016 1.1.5.1) (HKLM\...\5627B7BF339E63F3AA7A6C19623784C368E02915) (Version: 06/13/2016 1.1.5.1 - Kionix, Inc.)
Windows Driver Package - Kionix, Inc. kxdiskprot DiskDrive  (06/07/2016 1.1.3.7) (HKLM\...\F142B352F2F78EFD9B5E44B41013374C53F9D567) (Version: 06/07/2016 1.1.3.7 - Kionix, Inc.)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 18%
Total physical RAM: 16250.64 MB
Available physical RAM: 13241.29 MB
Total Virtual: 18682.64 MB
Available Virtual: 15382.29 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:226.31 GB) (Free:35.29 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:839.52 GB) NTFS
3 Drive e: () (Removable) (Total:14.43 GB) (Free:14.43 GB) FAT32

========================= Users: ========================================

User accounts for \\BEAZMACHINE

Administrator            DefaultAccount           defaultuser0             
Guest                    Sean                     

========================= Restore Points ==================================


**** End of log ****
 

And the check up,

 

 Results of screen317's Security Check version 1.014 --- 12/23/15  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Windows Defender   
McAfee VirusScan   
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Mozilla Firefox (52.0.2)
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamtray.exe  
 Windows Defender MSASCuiL.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````
 



#4 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,032 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:12:56 AM

Posted 01 May 2017 - 04:45 PM

Your WiFi seems to be turned on with MiniToolBox. Are you sure you didn't mean SecurityCheck?

 

Please open Command Prompt and type the following commands:

 

netsh int ip reset reset.log

 

Once finished, type this command:

 

netsh winsock reset catalog

 

Restart the computer and check if it works.


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#5 Beaz7

Beaz7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 01 May 2017 - 05:13 PM

No, McAfee still doesn't work and can't get online.



#6 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,032 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:12:56 AM

Posted 01 May 2017 - 05:19 PM

I will look for another solution and will post after I find one.


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#7 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,032 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:12:56 AM

Posted 02 May 2017 - 11:43 AM

Download Junkware Removal Tool and save it to your desktop.

  1. Double-click on the JRT.exe file on your desktop.

  2. Let JRT scan your computer and remove any infections.

  3. On your desktop, there will be a logfile called JRT.txt. Paste its contents into a post.

 

 

Download AdwCleaner and save it to your desktop.

  1. Click on the file you downloaded.

  2. Click Scan to start AdwCleaner's scanning process.

  3. Once done, make sure to delete all found threats.

  4. Open the “Logfile” and paste its contents into a post.


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#8 Beaz7

Beaz7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 02 May 2017 - 12:46 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 10 Home x64
Ran by Sean (Administrator) on Tue 05/02/2017 at 13:36:24.56
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\WINDOWS\system32\Tasks\PCDEventLauncherTask (Task)
Successfully deleted: C:\WINDOWS\system32\Tasks\PCDoctorBackgroundMonitorTask (Task)



Registry: 1

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\0081531493697358mcinstcleanup (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 05/02/2017 at 13:37:09.07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

Now nothing happens when I click on AdwCleaner. Says it's already running if I try to click on it again.



#9 Beaz7

Beaz7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 02 May 2017 - 12:48 PM

It's trying to work now.



#10 Beaz7

Beaz7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 02 May 2017 - 01:08 PM

# AdwCleaner v6.045 - Logfile created 02/05/2017 at 14:00:35
# Updated on 28/03/2017 by Malwarebytes
# Database : 2017-03-28.2 [Local]
# Operating System : Windows 10 Home  (X64)
# Username : Sean - BEAZMACHINE
# Running from : C:\Users\Sean\Desktop\AdwCleaner.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****

[-] Folder deleted: C:\ProgramData\03d389bf-735c-4849-9d87-25c88442ae10
[-] Folder deleted: C:\ProgramData\1aabea5e-f61d-4ca5-9723-f64d673acaed
[-] Folder deleted: C:\ProgramData\2577bb15-233d-498d-8814-a402fcc409c2
[-] Folder deleted: C:\ProgramData\304a780e-b7f7-4101-bb83-10c14e23d233
[-] Folder deleted: C:\ProgramData\3a7d198b-ee73-4f4b-b69f-5bdf22128cc9
[-] Folder deleted: C:\ProgramData\44b3c857-efec-4b1e-819b-f83a8744acaa
[-] Folder deleted: C:\ProgramData\44df7bf0-6230-4de3-8c33-f48567dd2224
[-] Folder deleted: C:\ProgramData\454f9a31-855d-4818-85df-a7a200250dd1
[-] Folder deleted: C:\ProgramData\50f6d580-515c-400a-93d6-afa1ba8f3e2c
[-] Folder deleted: C:\ProgramData\553ecb8b-e04c-4731-bea0-57705c01b950
[-] Folder deleted: C:\ProgramData\63087c66-5594-49bf-99f1-2af1a2e4f217
[-] Folder deleted: C:\ProgramData\64747ab6-6def-4ae3-8342-3b9308f2055f
[-] Folder deleted: C:\ProgramData\8e2ee920-65cf-48b4-bc1d-4607c7182d4c
[-] Folder deleted: C:\ProgramData\9c550740-0833-4448-abd2-bcdd55a09661
[-] Folder deleted: C:\ProgramData\9cda0734-1725-424e-911c-1a534769bd7c
[-] Folder deleted: C:\ProgramData\9fb8c945-0c66-4443-b992-4feaa5fc2216
[-] Folder deleted: C:\ProgramData\a51e2302-c9b8-468c-9322-3544934b8dc5
[-] Folder deleted: C:\ProgramData\c7eb5fc9-1669-4e26-8bef-f905af48ed15
[-] Folder deleted: C:\ProgramData\cbf4a7fa-9754-451f-bd6b-e54452257c9e
[-] Folder deleted: C:\ProgramData\cc9c4e29-ecff-4863-959c-b020dc41116e
[-] Folder deleted: C:\ProgramData\deae2f4a-2b51-417a-a286-68ad5d3004b6
[-] Folder deleted: C:\ProgramData\ee587c56-be0c-478c-b90a-00a4f4ff68de


***** [ Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****



***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2350 Bytes] - [02/05/2017 14:00:35]
C:\AdwCleaner\AdwCleaner[S0].txt - [2603 Bytes] - [02/05/2017 14:00:02]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2496 Bytes] ##########
 

Said it deleted 22 items but the same.

McAfee does not work and no internet.



#11 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,032 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:12:56 AM

Posted 02 May 2017 - 04:17 PM

Did you try a PC restart after both programs?

Are you able to access your router's configuration page? (192.168.1.1)


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#12 Beaz7

Beaz7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 02 May 2017 - 05:09 PM

Yes, the same but I am in the router's page.



#13 Beaz7

Beaz7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 02 May 2017 - 05:11 PM

Says this connection is not secure. Logins entered here could be compromised.



#14 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,032 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:12:56 AM

Posted 02 May 2017 - 05:58 PM

What model router do you have?

 

Type these commands into CMD:

 

ipconfig /release

ipconfig /renew

exit

Edited by iMacg3, 02 May 2017 - 05:59 PM.

Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#15 Beaz7

Beaz7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:56 AM

Posted 02 May 2017 - 07:42 PM

Actiontech MI424-WR Rev F

 

I entered the commands






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users