Unable to download anything

Started by rc, January 27, 2015, 02:48:56 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages 1 2 3 4 ... 7
User actions

rc

#15
January 28, 2015, 05:23:55 PM
i could not get the notes from last night's scan no matter what I tried, so I scanned again this morning, and here are the notes.  It found Babylon, which is exciting.  I HATE Babylon!!

rc

#16
January 28, 2015, 05:25:10 PM
oops - here are the notes:
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 1/28/2015
Scan Time: 9:05:02 AM
Logfile: malwarebyte scan.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.28.07
Rootkit Database: v2015.01.14.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: pinky

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 320071
Time Elapsed: 12 min, 4 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
PUP.Optional.Babylon.A, C:\Users\pinky\AppData\Roaming\Mozilla\Firefox\Profiles\7x8srg4j.default\prefs.js, Good: (), Bad: (user_pref("browser.startup.homepage", "http://search.babylon.com/?affID=110803&tt=5012_4&babsrc=HP_ss&mntrId=a81f988d000000000000001d09893389");), Replaced,[784fef0d3a4f0f273623d50f07fe0000]

Physical Sectors: 0
(No malicious items detected)


(end)

rc

#17
January 28, 2015, 05:42:12 PM
Results of screen317's Security Check version 0.99.95 
Windows 7 Service Pack 1 x86 (UAC is enabled) 
Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````[/u]
Windows Firewall Enabled! 
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````[/u]
Secunia PSI   
CCleaner     
Java 64-bit 8 Update 31[/color] 
Adobe Flash Player    16.0.0.296 
Adobe Reader 10.1.12 Adobe Reader out of Date! 
Mozilla Firefox 18.0 Firefox out of Date! 
Google Chrome (40.0.2214.91)
Google Chrome (40.0.2214.93)
````````Process Check: objlist.exe by Laurent````````[/u] 
Malwarebytes Anti-Malware mbamservice.exe 
Malwarebytes Anti-Malware mbam.exe 
Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check`````````````````[/u]
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````[/u]

rc

#18
January 28, 2015, 05:43:30 PM
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume3
Install Date: 2/9/2010 1:45:36 PM
System Uptime: 1/28/2015 8:20:34 AM (1 hours ago)
.
Motherboard: Dell Inc. |  | 0RY007
Processor: Intel(R) Pentium(R) Dual  CPU  E2180  @ 2.00GHz | Socket 775 | 2000/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 689 GiB total, 546.819 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 5.834 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable
K: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP796: 4/3/2014 2:27:21 PM - Scheduled Checkpoint
RP797: 4/9/2014 9:52:27 PM - Windows Update
RP798: 4/17/2014 3:00:55 AM - Windows Update
RP799: 4/24/2014 4:02:11 PM - Scheduled Checkpoint
RP800: 5/1/2014 9:58:56 PM - Windows Update
RP801: 5/7/2014 3:00:50 AM - Windows Update
RP802: 5/13/2014 10:40:29 PM - Windows Update
RP803: 5/21/2014 4:43:07 PM - Scheduled Checkpoint
RP804: 5/29/2014 6:47:25 PM - Scheduled Checkpoint
RP805: 6/9/2014 2:44:29 PM - Scheduled Checkpoint
RP806: 6/10/2014 12:06:33 PM - Windows Update
RP807: 6/18/2014 5:29:16 PM - Scheduled Checkpoint
RP809: 7/1/2014 10:18:28 AM - Scheduled Checkpoint
RP810: 7/9/2014 10:29:37 PM - Windows Update
RP811: 7/17/2014 1:19:16 PM - Scheduled Checkpoint
RP812: 7/24/2014 3:11:24 PM - Windows Update
RP813: 8/2/2014 3:28:36 PM - Windows Update
RP814: 8/12/2014 5:56:39 PM - Scheduled Checkpoint
RP815: 8/15/2014 3:01:19 AM - Windows Update
RP816: 8/28/2014 6:13:08 PM - Scheduled Checkpoint
RP817: 8/29/2014 8:34:56 PM - Windows Update
RP818: 9/6/2014 2:36:49 PM - Scheduled Checkpoint
RP819: 9/12/2014 3:01:00 AM - Windows Update
RP820: 9/25/2014 10:32:20 AM - Scheduled Checkpoint
RP821: 9/25/2014 5:28:40 PM - Windows Update
RP822: 10/1/2014 10:42:15 PM - Windows Update
RP823: 10/14/2014 5:32:31 PM - Scheduled Checkpoint
RP824: 10/15/2014 3:00:55 AM - Windows Update
RP825: 10/26/2014 3:55:55 PM - Scheduled Checkpoint
RP826: 11/4/2014 2:36:26 PM - Scheduled Checkpoint
RP827: 11/12/2014 6:27:05 PM - Scheduled Checkpoint
RP828: 11/12/2014 9:58:48 PM - Windows Update
RP829: 11/25/2014 5:09:33 PM - Windows Update
RP830: 12/1/2014 7:44:44 PM - Windows Update
RP831: 12/12/2014 11:49:20 AM - Scheduled Checkpoint
RP832: 12/12/2014 1:40:41 PM - Windows Update
RP833: 12/18/2014 10:41:49 PM - Windows Update
RP834: 12/26/2014 3:23:26 PM - Scheduled Checkpoint
RP835: 1/5/2015 4:38:50 PM - Scheduled Checkpoint
RP836: 1/19/2015 7:21:01 PM - Scheduled Checkpoint
RP837: 1/19/2015 8:27:30 PM - Windows Update
RP838: 1/26/2015 4:55:27 PM - Windows Update
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Acrobat.com
Adobe AIR
Adobe Flash Player 16 ActiveX
Adobe Flash Player 16 NPAPI
Adobe Reader X (10.1.12)
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ArcSoft PhotoImpression 6
ArcSoft Print Creations
Bing Bar
Bing Rewards Client Installer
Bonjour
Bonjour Print Services
Browser Address Error Redirector
CaddieSync Express 1.5.8
Canon iP4300
Canon iP4300 User Registration
Canon My Printer
Canon Setup Utility 2.3
Canon Utilities Easy-PhotoPrint
CCleaner
Conexant D850 PCI V.92 Modem
Creative MediaSource 5
D3DX10
Dell Getting Started Guide
Digital Line Detect
Driver Detective
EPSON Printer Software
EZ Vinyl/Tape Converter 7.4 by MixMeister
Google Chrome
Google Desktop
Google Toolbar for Internet Explorer
Google Update Helper
GoToAssist 8.0.0.514
ImagXpress
Intel(R) PRO Network Connections 12.1.11.0
iTunes
Junk Mail filter update
Malwarebytes Anti-Malware version 2.0.4.1028
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Default Manager
Microsoft Mouse and Keyboard Center
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft UI Engine
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Mozilla Firefox 18.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Music, Photos & Videos Launcher
neroxml
NetWaiting
OGA Notifier 2.0.0048.0
Picasa 3
Product Documentation Launcher
QualxServ Service Agreement
QuickTime 7
Realtek High Definition Audio Driver
Revo Uninstaller 1.85
Secunia PSI
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596927) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920790) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920792) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2984942) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2920793) 32-Bit Edition
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
SkyCaddie Desktop
SmartSound Quicktracks Plugin
Sonic Activation Module
Sound Blaster Audigy ADVANCED MB
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
UPRO sync
User's Guides
Windows 7 Upgrade Advisor
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Yahoo! Software Update
.
==== Event Viewer Messages From Past Week ========
.
1/28/2015 8:20:53 AM, Error: atikmdag [52236]  - CPLIB :: General - Invalid Parameter
1/28/2015 8:20:53 AM, Error: atikmdag [43029]  - Display is not active
1/27/2015 5:11:59 PM, Error: Service Control Manager [7001]  - The Computer Browser service depends on the Server service which failed to start because of the following error:  The dependency service or group failed to start.
1/27/2015 5:11:58 PM, Error: Service Control Manager [7001]  - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:  The dependency service or group failed to start.
1/27/2015 5:11:57 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
1/27/2015 5:11:57 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
1/27/2015 5:11:55 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
1/27/2015 5:11:50 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
1/27/2015 5:11:38 PM, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  discache spldr Wanarpv6
1/25/2015 9:57:02 PM, Error: Service Control Manager [7031]  - The Service Sendori service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
1/25/2015 7:02:11 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
.
==== End Of File ===========================

rc

#19
January 28, 2015, 06:52:06 PM
I downloaded (or tried) Microsoft Security Essentials with Mozilla.  I can't get past setup.  I go through the motions and it thanks me for downloaded and says it's done, but the only thing MSE on the computer is set-up.  Although MSE wasn't successful, I wasn't paying enough attention to the third party offers and I didn't decline them.  So now I have Search Project, My PC Backup, Web Bar, Driver Restore and Weather Bug.  In separate issue (I think) I have PC Tune Up Meastro and Clean Maestro and Web Companion (Ad-Aware) which weren't on the computer before.  I'm just going to quit for now -

Corrine

#20
January 28, 2015, 08:12:58 PM
Hi, Rita.

First off, Microsoft does not include Search Protect or any of the rest of the adware you mentioned.  You need to go to the vendor site for software downloads not links to other sites you find when searching. 

Since your husband's computer is 32-bit go to https://www.microsoft.com/en-us/download/details.aspx?id=5201 and select ENUS\x86\MSEInstall.exe.

After installing MSE, please locate the DDS.txt log on your desktop and post that for me, please.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

rc

#21
January 28, 2015, 08:45:54 PM
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.17496
Run by pinky at 9:30:40 on 2015-01-28
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.3070.1847 [GMT -8:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\atieclxx.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
C:\Windows\system32\CTsvcCDA.exe
C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\SkyGolf\CaddieSync Express\CaddieSyncExpress.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\Program Files\Callaway\upro sync\UPROsync.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\System32\MsSpellCheckingFacility.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://yahoo.com/
uWindow Title = Windows Internet Explorer provided by Yahoo!
uSearch Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://www.yahoo.com/?fr=fp-yie9
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://toolbar.inbox.com/search/ie.aspx?tbid=80119&lng=en
mCustomizeSearch = hxxp://toolbar.inbox.com/help/sa_customize.aspx?tbid=80119
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - c:\program files\windows live\companion\companioncore.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: CBrowserHelperObject Object: {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\program files\dell\bae\BAE.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRun: [VolPanel] "c:\program files\creative\sbaudigy\volume panel\VolPanlu.exe" /r
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [CaddieSyncConduit] c:\program files\skygolf\caddiesync express\CaddieSyncExpress.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [IntelliType Pro] "c:\program files\microsoft mouse and keyboard center\itype.exe"
mRun: [IntelliPoint] "c:\program files\microsoft mouse and keyboard center\ipoint.exe"
mRun: [uProWebSync] c:\program files\callaway\upro sync\UPROsync.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
StartupFolder: c:\users\pinky\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {32E7B36C-7960-4A42-B83B-D8AFD0AAEF2B} - hxxp://dizun95pzobbc.cloudfront.net/INDBrowser.CAB
DPF: {8C2D1BF0-5364-403C-9968-E6E348C6B4FB} - hxxp://dizun95pzobbc.cloudfront.net/VBIRDPlayer.CAB
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{B26DA73B-76CD-47E2-8CB2-217FC70C26A5} : DHCPNameServer = 75.75.75.75 75.75.76.76
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
AppInit_DLLs= c:\progra~2\browse~1\25986~1.67\{c16c1~1\browse~1.dll c:\progra~1\google\google~1\go36f4~1.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\40.0.2214.93\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
mASetup: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,launchinfsectionex c:\program files\internet explorer\clrtour.inf,DefaultInstall.ResetTour,,12
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\pinky\appdata\roaming\mozilla\firefox\profiles\7x8srg4j.default\
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.25.11\npGoogleUpdate3.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_16_0_0_296.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-8-18 176128]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes anti-malware\mbamscheduler.exe [2015-1-27 1871160]
R2 MBAMService;MBAMService;c:\program files\malwarebytes anti-malware\mbamservice.exe [2015-1-27 969016]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2015-1-27 23256]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2015-1-27 114904]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2015-1-27 51928]
R3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
R3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-2-28 183560]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2012-6-30 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2012-3-8 1492840]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\google\google desktop search\GoogleDesktop.exe [2008-3-3 30192]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-12-12 102912]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2010-7-7 14904]
S3 Roxio UPnP Renderer 11;Roxio UPnP Renderer 11;"c:\users\pinky\desktop\digital home 11\roxioupnprenderer11.exe" --> c:\users\pinky\desktop\digital home 11\RoxioUPnPRenderer11.exe [?]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-6-1 52224]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-5-17 1343400]
S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]
.
=============== Created Last 30 ================
.
2015-01-28 17:01:04   62576   ----a-w-   c:\programdata\microsoft\windows defender\definition updates\{058bce90-533b-4ccb-9d64-33708484babd}\offreg.dll
2015-01-28 05:03:25   114904   ----a-w-   c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-01-28 05:03:12   75480   ----a-w-   c:\windows\system32\drivers\mbamchameleon.sys
2015-01-28 05:03:12   51928   ----a-w-   c:\windows\system32\drivers\mwac.sys
2015-01-28 05:03:12   23256   ----a-w-   c:\windows\system32\drivers\mbam.sys
2015-01-28 05:03:12   --------   d-----w-   c:\programdata\Malwarebytes
2015-01-28 05:03:12   --------   d-----w-   c:\program files\Malwarebytes Anti-Malware
2015-01-28 00:40:19   9054624   ----a-w-   c:\programdata\microsoft\windows defender\definition updates\{058bce90-533b-4ccb-9d64-33708484babd}\mpengine.dll
2015-01-20 03:20:14   4087472   ----a-w-   c:\windows\system32\FlashPlayerInstaller.exe
2015-01-20 02:04:58   3971512   ----a-w-   c:\windows\system32\ntkrnlpa.exe
2015-01-20 02:04:57   3916728   ----a-w-   c:\windows\system32\ntoskrnl.exe
2015-01-20 02:04:54   46592   ----a-w-   c:\windows\system32\TSWbPrxy.exe
2015-01-20 02:04:54   242688   ----a-w-   c:\windows\system32\nlasvc.dll
2015-01-20 02:04:54   164864   ----a-w-   c:\windows\system32\profsvc.dll
2015-01-20 02:04:53   116224   ----a-w-   c:\windows\system32\drivers\mrxdav.sys
2015-01-09 16:38:43   --------   d-----w-   c:\users\pinky\appdata\local\{A6BF115B-5CF9-4DB9-BF88-15161AD3ADC5}
.
==================== Find3M  ====================
.
2015-01-25 19:19:09   71344   ----a-w-   c:\windows\system32\FlashPlayerCPLApp.cpl
2015-01-25 19:19:09   701616   ----a-w-   c:\windows\system32\FlashPlayerApp.exe
2015-01-20 21:23:06   258048   ----a-w-   c:\windows\system32\DSPlayer.dll
2015-01-08 17:55:52   249488   ------w-   c:\windows\system32\MpSigStub.exe
2014-12-13 03:33:44   115712   ----a-w-   c:\windows\system32\ieUnatt.exe
2014-12-04 04:38:59   337920   ----a-w-   c:\windows\system32\generaltel.dll
2014-12-04 04:38:45   610304   ----a-w-   c:\windows\system32\invagent.dll
2014-12-04 04:38:40   315392   ----a-w-   c:\windows\system32\devinv.dll
2014-12-04 04:38:37   728576   ----a-w-   c:\windows\system32\appraiser.dll
2014-12-04 04:38:36   202752   ----a-w-   c:\windows\system32\aepdu.dll
2014-12-04 04:38:36   159744   ----a-w-   c:\windows\system32\aepic.dll
2014-12-04 04:34:13   873984   ----a-w-   c:\windows\system32\aeinv.dll
2014-12-01 23:28:26   1160872   ----a-w-   c:\windows\system32\aitstatic.exe
2014-11-22 02:20:44   2724864   ----a-w-   c:\windows\system32\mshtml.tlb
2014-11-22 02:20:30   4096   ----a-w-   c:\windows\system32\ieetwcollectorres.dll
2014-11-22 02:07:43   501248   ----a-w-   c:\windows\system32\vbscript.dll
2014-11-22 02:07:17   62464   ----a-w-   c:\windows\system32\iesetup.dll
2014-11-22 02:06:32   47616   ----a-w-   c:\windows\system32\ieetwproxystub.dll
2014-11-22 02:05:02   64000   ----a-w-   c:\windows\system32\MshtmlDac.dll
2014-11-22 01:55:14   102912   ----a-w-   c:\windows\system32\ieetwcollector.exe
2014-11-22 01:54:30   620032   ----a-w-   c:\windows\system32\jscript9diag.dll
2014-11-22 01:48:26   667648   ----a-w-   c:\windows\system32\MsSpellCheckingFacility.exe
2014-11-22 01:40:04   60416   ----a-w-   c:\windows\system32\JavaScriptCollectionAgent.dll
2014-11-22 01:29:26   4299264   ----a-w-   c:\windows\system32\jscript9.dll
2014-11-22 01:22:49   2052096   ----a-w-   c:\windows\system32\inetcpl.cpl
2014-11-22 01:21:57   1155072   ----a-w-   c:\windows\system32\mshtmlmedia.dll
2014-11-22 01:00:20   1888256   ----a-w-   c:\windows\system32\wininet.dll
2014-11-18 22:56:48   1202848   ----a-w-   c:\windows\system32\FM20.DLL
2014-11-11 02:44:45   1230336   ----a-w-   c:\windows\system32\WindowsCodecs.dll
2014-11-11 02:44:32   186880   ----a-w-   c:\windows\system32\pku2u.dll
2014-11-11 02:44:25   550912   ----a-w-   c:\windows\system32\kerberos.dll
2014-11-11 01:32:14   74752   ----a-w-   c:\windows\system32\drivers\tdx.sys
2014-11-08 02:45:09   2048   ----a-w-   c:\windows\system32\tzres.dll
.
============= FINISH:  9:31:20.93 ===============

Corrine

#22
January 28, 2015, 09:00:00 PM
Thank you, Rita. 

Have you successfully downloaded and installed MSE from the Microsoft website now?

Let's take this step-by-step, first removing the adware:

1.  Please download Junkware Removal Tool to your desktop.  <--Note:  The provided link is a direct download link.  Please save it to your desktop!

  • Close all open programs and internet browsers.
  • Run the tool by double-clicking it.  Note:  Windows Vista, Windows 7/8 users right-click and select Run As Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
2.  Please download Adware Cleaner by Xplode to your Desktop.  <--Note:  The provided link is a direct download link.  Please save it to your desktop!

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.  Note:  Windows Vista, Windows 7/8 users right-click and select Run As Administrator.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT

  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

rc

#23
January 29, 2015, 12:34:41 AM
Yes!  I successfully loaded MSE - thanks so much for your direction on that.
I'll get busy and follow these instructions - thank you!

rc

#24
January 29, 2015, 12:56:52 AM
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Windows 7 Home Premium x86
Ran by pinky on Wed 01/28/2015 at 16:50:48.36
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111251155}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\ApnStub_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\ApnStub_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\MyBabylonTB_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\MyBabylonTB_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\PricePeepInstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\PricePeepInstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111251155}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{110a9ea2-8810-4c04-b916-cfd4e9427fec}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{F3498283-4C02-46B8-885F-4B711567F5F2}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{110a9ea2-8810-4c04-b916-cfd4e9427fec}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}



~~~ Files

Successfully deleted: [File] C:\Windows\System32\Tasks\DriverRestore_DailyScan
Successfully deleted: [File] C:\Windows\System32\Tasks\DriverRestore_ScheduledScan
Successfully deleted: [File] "C:\Windows\wininit.ini"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\ProgramData\tarma installer"
Successfully deleted: [Folder] "C:\Users\pinky\AppData\Roaming\babylon"
Successfully deleted: [Folder] "C:\Users\pinky\AppData\Roaming\vopackage"
Successfully deleted: [Folder] "C:\Users\pinky\Local Settings\Application Data\pc_drivers_headquarters"
Successfully deleted: [Folder] "C:\Program Files\driverrestore"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\driverrestore"
Successfully deleted: [Folder] "C:\Users\pinky\AppData\Roaming\microsoft\windows\start menu\programs\vopackage"
Successfully deleted: [Folder] "C:\ProgramData\ask"
Successfully deleted: [Folder] "C:\Users\pinky\appdata\locallow\asktoolbar"
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{033D63C9-DE7D-4ED1-91B9-B1BF105BD513}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{15D6D937-6533-4C9B-B128-2FC5C3EE6708}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{1B76D006-4C80-41CA-B149-918BCF3D4BC3}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{229427B7-6649-4F7E-BA52-9F9E4D4E0C1A}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{26FAB9B8-2EED-4204-B4F7-F53BC78D0569}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{34533386-FE4E-4A50-9E93-5A55DD302D51}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{3C27012D-F925-4DEB-B69D-E63AC90A84BD}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{3DB20741-45C1-4A24-958A-4BA8B97973F7}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{45B59842-5397-4729-9B3A-A15DF53914ED}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{4975FD30-1CB1-489D-AEEA-87CFB960D700}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{4A7F7084-C001-4428-A504-62861CB68225}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{58166F14-DD14-4214-870D-245CB2351BA5}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{5EB660EA-788D-407A-9017-C6F1227F7BE8}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{6E4783C4-1BE7-4743-B126-7204D3721248}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{96248566-B0CA-4EF9-B536-5808AA92E52F}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{98384930-19E2-4CCE-84E7-40DCE605A21C}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{A1A10F65-9A46-4AC5-9DCD-A44553ACC5DD}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{A6BF115B-5CF9-4DB9-BF88-15161AD3ADC5}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{B6936AF3-09E6-42E1-8E51-E391CB095625}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{C0A899D3-AF80-4A24-8F5B-599BE6E83729}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{C74F9011-E6B2-4483-B8CA-35E4CFC441DE}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{C81F1E76-80A2-47FC-AF07-7A9B8A23E566}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{D31D59D8-61F5-4457-9F45-52C0270E28AE}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{D7A887FB-02CC-4E35-9DB9-5CBD26D8FE71}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{DD1DB09C-A6BD-4742-82A5-43A6E30E5BC7}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{E02E84B6-9F7A-4DCE-BA8C-FCFC04B15A7F}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{E5A3A8C6-E36F-430A-BAAB-B79B317AB80A}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{E60D17EC-8F10-4D0E-8E77-103BB421E176}
Successfully deleted: [Empty Folder] C:\Users\pinky\appdata\local\{F3AB9010-6C25-4B5A-B85C-29C9D4EBA8E3}



~~~ FireFox

Emptied folder: C:\Users\pinky\AppData\Roaming\mozilla\firefox\profiles\7x8srg4j.default\minidumps [2 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 01/28/2015 at 16:55:10.84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

rc

#25
January 29, 2015, 01:27:01 AM
Here is the AdwCleaner information. 
# AdwCleaner v4.109 - Report created 28/01/2015 at 17:00:19
# Updated 24/01/2015 by Xplode
# Database : 2015-01-26.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : pinky - PINKY-PC
# Running from : C:\Users\pinky\Desktop\adwcleaner_4.109.exe
# Option : Scan

***** [ Services ] *****

Service Found : YahooAUService

***** [ Files / Folders ] *****

File Found : C:\Users\Public\Desktop\DriverRestore.lnk
Folder Found : C:\Program Files\PC Drivers HeadQuarters
Folder Found : C:\Program Files\Sendori
Folder Found : C:\ProgramData\FileCure
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Detective
Folder Found : C:\ProgramData\PC Drivers HeadQuarters

***** [ Scheduled Tasks ] *****

Task Found : DriverRestore_ScheduledScan
Task Found : DriverRestore_DailyScan

***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
Key Found : HKCU\Software\aedf8fbd34e415
Key Found : HKCU\Software\ContentExplorer
Key Found : HKCU\Software\DriverRestore
Key Found : HKCU\Software\eSupport.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\ask.com
Key Found : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\babylon.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\babylon.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.ask.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKCU\Software\ParetoLogic
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\aedf8fbd34e415
Key Found : HKLM\SOFTWARE\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{5E5E0B49-1A81-4ACC-BD6B-FF5F4EFEF01A}
Key Found : HKLM\SOFTWARE\DriverRestore
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44DB423D-A0DB-4664-9477-CCDCEB7CD666}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5C9CB1C-1C0A-45A2-81CC-1DD342D0A478}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A661D4DC-4BD8-48FC-964B-A24AB8157DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B5731AB1-8566-4441-AEFB-9AFB2EEA63D9}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4640FDE1-B83A-4376-84ED-86F86BEE2D41}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ContentExplorer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverRestore
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Key Found : HKLM\SOFTWARE\ParetoLogic
Key Found : HKLM\SOFTWARE\Tarma Installer
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [ContentExplorer]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{8DCB7100-DF86-4384-8842-8FA844297B3F}]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496

Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [SearchAssistant] - hxxp://toolbar.inbox.com/search/ie.aspx?tbid=80119&lng=en
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [CustomizeSearch] - hxxp://toolbar.inbox.com/help/sa_customize.aspx?tbid=80119
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://toolbar.inbox.com/search/ie.aspx?tbid=80119&lng=en
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch] - hxxp://toolbar.inbox.com/help/sa_customize.aspx?tbid=80119

-\\ Mozilla Firefox v18.0 (en-US)


-\\ Google Chrome v40.0.2214.93

[C:\Users\pinky\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : bopakagnckmlgajfccecajhnimjiiedh

*************************

AdwCleaner[R0].txt - [6754 octets] - [28/01/2015 17:00:19]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [6814 octets] ##########

rc

#26
January 29, 2015, 01:30:15 AM
Boy, I hate to be a pain, but I have no idea how to tell what to keep and what to clean :(

Corrine

#27
January 29, 2015, 02:43:03 AM
You are not being a pain, Rita.  It is always best to ask when unsure.  Looking at AdwCleaner log, you let it remove everything it found.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

rc

#28
January 29, 2015, 03:44:38 AM
OK - thank you for your patience!  I've let it clean, and it is restarted.

rc

#29
January 29, 2015, 04:37:42 AM
Is Ad Aware Web Companion something I should keep?
Print
Go Up Pages 1 2 3 4 ... 7
User actions