Quantcast
Channel: Tech Support Guy - Virus & Other Malware Removal
Viewing all 4746 articles
Browse latest View live

Massive pop ups and very slow

0
0
I am not seeing any more pop ups and I uninstalled two of them and kept webroot. Anything else to do?

Friend downloaded a crack onto my computer

0
0
Hi techguys,

my friend recently installed a crack program on my computer. I tried to get rid of it, I disabled it on startup and ran malwarebytes. Malwarebytes says my computer is clean, but I still see the entries on the task manager's start-up. Can you help me figure out if my computer is clean?

Thanks for your time

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 8.1, 64 bit
Processor: Intel(R) Core(TM) i7-4720HQ CPU @ 2.60GHz, Intel64 Family 6 Model 60 Stepping 3
Processor Count: 8
RAM: 16307 Mb
Graphics Card: Intel(R) HD Graphics 4600, 1024 Mb
Hard Drives: C: Total - 476157 MB, Free - 393167 MB;
Motherboard: RAZER, RAZER
Antivirus: Windows Defender, Disabled

Internet Issues: Automatically Completing Passwords, Links in E-Mails Not Working, et

0
0
eddie5659, once again thanks for the help and sorry for the late reply. I think that I have accomplished all of your recent suggestions with the exception of downloading CryptoPrevent. Please see below for a copy of the DelFix report. I have Spyware Blaster and Malwarebytes installed. Thanks again for the help.

# DelFix v10.8 - Logfile created 20/02/2015 at 13:56:43
# Updated 29/07/2014 by Xplode
# Username : home - HOME-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)

~ Removing disinfection tools ...

Deleted : C:\_OTL
Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\home\Desktop\AdwCleaner.exe
Deleted : C:\Users\home\Downloads\SecurityCheck.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #52 [Windows Modules Installer | 11/30/2014 10:33:39]
Deleted : RP #53 [Windows Update | 12/21/2014 12:58:44]
Deleted : RP #54 [Windows Update | 12/26/2014 11:19:35]
Deleted : RP #55 [Windows Update | 01/04/2015 04:33:17]
Deleted : RP #57 [Driver Booster : Atheros AR5B125 Wireless Network Adapter | 01/04/2015 12:31:11]
Deleted : RP #59 [Installed DirectX | 01/04/2015 12:38:17]
Deleted : RP #60 [Windows Update | 01/22/2015 09:02:37]
Deleted : RP #62 [Driver Booster : Adobe Flash Player ActiveX | 01/22/2015 09:05:37]
Deleted : RP #63 [Windows Update | 01/22/2015 11:00:36]
Deleted : RP #64 [Windows Update | 01/30/2015 08:38:21]
Deleted : RP #65 [Installed ESET NOD32 Antivirus | 02/20/2015 04:22:52]
Deleted : RP #66 [Windows Update | 02/20/2015 04:47:36]

New restore point created !

########## - EOF - ##########

there is something wrong with this pc

0
0
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-02-2015
Ran by HUMIK5 at 2015-02-21 20:25:52
Running from C:\Users\HUMIK5\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: 360 Internet Security (Enabled - Up to date) {2B66EE1E-E5C8-C2F7-648F-4E55AC68D37D}
AS: 360 Internet Security (Enabled - Up to date) {90070FFA-C3F2-CD79-5E3F-7527D7EF99C0}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
"Assassin's Creed IV - Black Flag" (HKLM-x32\...\{959CF39B-F3FA-4A80-AECF-8AF6BA639276}_is1) (Version: 1.02.0.0 - )
µTorrent (HKU\S-1-5-21-2464603270-1396714433-1616926655-1000\...\uTorrent) (Version: 3.4.2.32691 - BitTorrent Inc.)
20-20 World Smash v1.0 (HKLM-x32\...\20-20 World Smash_is1) (Version: - Rockingham Software Ltd)
360 Internet Security (HKLM-x32\...\360 Internet Security) (Version: 4.9.0.4900 - Qihu 360 Software Co., Ltd.)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 2.3.0.0 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 2.3.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.4.13090 - Adobe Systems Inc.)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Anomaly Warzone Earth (HKLM-x32\...\Steam App 91200) (Version: - 11 bit studios)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft MediaImpression 2 (HKLM-x32\...\{FB46F473-333E-4A06-A777-31C54188593E}) (Version: 2.0.14.672 - ArcSoft)
ArcSoft PhotoImpression 6 (HKLM-x32\...\{D56401D6-E356-4CA5-97A3-024D666F5E5C}) (Version: 6.1.7.129 - ArcSoft)
Ashes Cricket 2009 (HKLM-x32\...\InstallShield_{8B39736E-7C8C-4A32-82C1-F94245F20D85}) (Version: 1.00.0000 - Codemasters)
Ashes Cricket 2009 (x32 Version: 1.00.0000 - Codemasters) Hidden
Assassin's Creed (HKLM-x32\...\{8CFA9151-6404-409A-AF22-4632D04582FD}) (Version: 1.02 - Ubisoft)
Assassins Creed IV Black Flag (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRJVkJsYWNrRmxhZw==_is1) (Version: 1 - )
Assassin's Creed Revelations 1.03 (HKLM-x32\...\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}) (Version: 1.03 - Ubisoft)
Batman: Arkham City™ (HKLM-x32\...\GFWL_{57520FA0-AC56-469B-9983-FF1000008300}) (Version: 1.0.0000.131 - WB Games)
Batman: Arkham City™ (x32 Version: 1.0.0000.131 - WB Games) Hidden
Batman: Arkham City™ (x32 Version: 1.0.0003.131 - WB Games) Hidden
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
BBC BASIC for Windows (full version) (HKLM-x32\...\BBC BASIC for Windows_is1) (Version: - )
BlackBerry Desktop Software 7.0 (HKLM-x32\...\BlackBerry_Desktop) (Version: 7.0.0.59 - Research In Motion Ltd.)
BlackBerry Desktop Software 7.0 (x32 Version: 7.0.0.59 - Research In Motion Ltd.) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Business Contact Manager for Microsoft Outlook 2010 (HKLM-x32\...\Business Contact Manager) (Version: 4.0.11308.0 - Microsoft Corporation)
Business Contact Manager for Microsoft Outlook 2010 (x32 Version: 4.0.11308.0 - Microsoft Corporation) Hidden
Cars (HKLM-x32\...\76322c23820ae7473cdebbff3eceb262) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 4.02 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DC Universe Online (HKLM-x32\...\Steam App 24200) (Version: - Sony Online Entertainment)
Dead Space™ (HKLM-x32\...\{6E6F22D7-8AD6-4A87-9A47-733E6E996F50}) (Version: 1.0.0.222 - Electronic Arts)
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 2.34 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.3.74 - Dell)
Dell DataSafe Online (HKLM-x32\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.2.0009 - Dell, Inc.)
Dell Dock (HKLM-x32\...\Dell Dock) (Version: - Stardock Corporation)
Dell Dock (Version: 2.0 - Stardock Corporation) Hidden
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell Resource CD (HKLM-x32\...\{42929F0F-CE14-47AF-9FC7-FF297A603021}) (Version: 1.00.0000 - Dell Inc.)
Dino D-Day (HKLM-x32\...\Steam App 70000) (Version: - 800 North and Digital Ranch)
DirectXInstallService (x32 Version: 9.0.2 - Roxio) Hidden
Don Bradman Cricket 14 (HKLM-x32\...\Don Bradman Cricket 14_is1) (Version: - Big Ant Studios)
Don Bradman Cricket 14 Demo (HKLM-x32\...\Steam App 303990) (Version: - Big Ant Studios)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
EA SPORTS online 2007 (HKLM-x32\...\82A44D22-9452-49FB-00FB-CEC7DCAF7E23) (Version: - )
EA Sports™ FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 7.0.0.45489 - Electronic Arts, Inc.)
East India Company Gold (HKLM-x32\...\Steam App 254000) (Version: - )
EMC 10 Content (x32 Version: 1.0.035 - Roxo, Inc.) Hidden
EMCGadgets64 (Version: 1.0.302 - Sonic) Hidden
Enclave (HKLM-x32\...\Steam App 253980) (Version: - Topware)
Epson Copy Utility 3.5 (HKLM-x32\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - )
Epson Event Manager (HKLM-x32\...\{FE5ED0AC-BCC8-482A-8B08-AA11D5F00152}) (Version: 2.40.0002 - SEIKO EPSON CORPORATION)
EPSON Perfection V33/V330 Manual (HKLM-x32\...\EPSON Perfection V33_V330 Manual) (Version: - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
FIFA 12 (HKLM-x32\...\{EA8ADAA9-6671-4839-A51E-0C6792B78F3E}) (Version: 1.6.0.0 - Electronic Arts)
FIFA 13 (HKLM-x32\...\{A29E18C2-7AB1-4b6b-848C-5D5E2C85F0C0}) (Version: 1.7.0.0 - Electronic Arts)
FIFA 14 Demo (HKLM-x32\...\{7A6577E7-F341-430F-9173-91E14E2DE270}) (Version: 1.0.0.0 - Electronic Arts)
Football Manager 2014 Demo (HKLM-x32\...\Steam App 242380) (Version: - )
Free 3GP Video Converter version 3.7.23.324 (HKLM-x32\...\Free 3GP Video Converter_is1) (Version: - DVDVideoSoft Limited.)
Freecorder (HKLM-x32\...\Freecorder4.1) (Version: 4.1 - Applian Technologies Inc.)
Frozen Hearth (HKLM-x32\...\Steam App 257890) (Version: - Epiphany Games)
GamesLeap (HKU\S-1-5-21-2464603270-1396714433-1616926655-1000\...\gamesleapSA) (Version: 1.0.8.0 - Pinball Corporation. )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{C77CC230-7417-3F01-B70D-52583DC9FEC9}) (Version: 5.40.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Gotham City Impostors: Free To Play (HKLM-x32\...\Steam App 206210) (Version: - Monolith Productions, Inc.)
GTR Evolution (HKLM-x32\...\Steam App 8660) (Version: - SimBin)
Gun Monkeys (HKLM-x32\...\Steam App 239450) (Version: - Size Five Games)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Adhesive Games)
ImageScanTool V2.0.1 (HKLM-x32\...\{0946691D-11AD-4226-B1D8-1633902288EB}) (Version: 2.00.1000 - 35mm Film Scanner)
Insurgency (HKLM-x32\...\Steam App 222880) (Version: - New World Interactive)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.0.1006 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.0.1037 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.27 - Irfan Skiljan)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
IZArc 4.1.2 (HKLM-x32\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.1.2 - Ivan Zahariev)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Maintenance Samsung CLP-320 Series (HKLM-x32\...\Samsung CLP-320 Series) (Version: - Samsung Electronics Co., Ltd.)
Marvel Heroes 2015 (HKLM-x32\...\Steam App 226320) (Version: - Gazillion Entertainment)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs (HKLM-x32\...\{90120000-00B0-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (HKLM-x32\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{BA4DA261-CB60-4690-B202-44998DFC6986}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
MobileMe Control Panel (HKLM\...\{56F26668-13DA-497A-883F-61434A10CBAB}) (Version: 3.1.5.0 - Apple Inc.)
Mozilla Firefox 20.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 20.0 (x86 en-US)) (Version: 20.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Multimedia Card Reader (HKLM-x32\...\InstallShield_{9F0A32A5-4EBF-4B9D-A3CD-31579F2E1400}) (Version: 1.4.915.1 - Fitipower)
Multimedia Card Reader (x32 Version: 1.4.915.1 - Fitipower) Hidden
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 6.84.0.0 - )
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: - Psyonix)
NVIDIA 3D Vision Controller Driver 344.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.46 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 344.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.60 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.3 - NVIDIA Corporation)
NVIDIA Graphics Driver 344.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.60 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{86F2B095-3998-41D5-833D-1C5075300950}) (Version: 4.11.9775 - Apache Software Foundation)
OVT Scanner X86 (HKLM-x32\...\{6B566EFE-DC1D-471F-93DD-84832663F140}) (Version: 1.00.0000 - OVT)
Pak Urdu Installer (HKLM-x32\...\{0A16D0C9-265C-4AA8-B4B5-E503BD36FCD0}) (Version: 3.2 - mBILALm.com)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version: - Sony Online Entertainment)
Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
PowerDVD DX (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.3.6029 - CyberLink Corp.)
Programming Editor (HKLM-x32\...\{0098C3C6-854A-4C82-9508-195997170DAC}) (Version: 5.3.1 - Revolution Education Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
RACE 07 (HKLM-x32\...\Steam App 8600) (Version: - SimBin)
RaceRoom Racing Experience (HKLM-x32\...\Steam App 211500) (Version: - SimBin Studios AB)
RealDownloader (x32 Version: 1.3.0 - RealNetworks, Inc.) Hidden
Really Big Sky (HKLM-x32\...\Steam App 201570) (Version: - Boss Baddie)
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.0 - RealNetworks)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5953 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Roblox for HUMIK5 (HKU\S-1-5-21-2464603270-1396714433-1616926655-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Roxio Easy CD and DVD Burning (HKLM-x32\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)
Roxio File Backup (Version: 1.3.0 - Roxio) Hidden
Safari (HKLM-x32\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
Service Pack 1 for SQL Server 2008 (KB968369) (HKLM-x32\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 3.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.56 - NVIDIA Corporation) Hidden
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
SolveigMM AVI Trimmer (HKLM-x32\...\SolveigMM AVI Trimmer) (Version: 2.0.1009.24 - Solveig Multimedia)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden
Space Hack (HKLM-x32\...\Steam App 315260) (Version: - Rebelmind)
SpaceChem (HKLM-x32\...\Steam App 92800) (Version: - Zachtronics)
Sql Server Customer Experience Improvement Program (x32 Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
THX TruStudio PC (HKLM-x32\...\{010A785B-F920-4350-821B-6309909C20BB}) (Version: 1.0 - Creative Technology Limited)
Tux Paint 0.9.21 (HKLM-x32\...\Tux Paint_is1) (Version: - New Breed Software)
Tux Paint Stamps 2009-06-28 (HKLM-x32\...\Tux Paint Stamps_is1) (Version: - New Breed Software)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version: - )
VD64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Visual C++ 8.0 Runtime Setup Package (x64) (HKLM-x32\...\{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}) (Version: 9.0.0.623 - AVG Technologies CZ, s.r.o.)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9603 - Broadcom Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Mobile Device Center (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
Woodle Tree Adventures (HKLM-x32\...\Steam App 299460) (Version: - Fabio Ferrara)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2464603270-1396714433-1616926655-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\HUMIK5\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2464603270-1396714433-1616926655-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\HUMIK5\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2464603270-1396714433-1616926655-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\HUMIK5\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2464603270-1396714433-1616926655-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\HUMIK5\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2464603270-1396714433-1616926655-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\HUMIK5\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2464603270-1396714433-1616926655-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\HUMIK5\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2464603270-1396714433-1616926655-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\HUMIK5\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File
==================== Restore Points =========================
11-02-2015 21:37:00 Windows Update
12-02-2015 23:10:17 Windows Update
13-02-2015 20:05:24 Installed DirectX
13-02-2015 20:41:16 Installed DirectX
13-02-2015 20:44:04 Installed DirectX
14-02-2015 12:44:54 Installed DirectX
14-02-2015 12:51:15 Removed Microsoft Visual C++ 2005 Redistributable
21-02-2015 15:04:17 Scheduled Checkpoint
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 02:34 - 2012-04-03 18:41 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {03A44C11-B09D-427F-925D-600FE7948866} - System32\Tasks\{BD3FDD3B-9921-479B-8925-BFA90FF6C778} => pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {05CBA4B1-A00C-48FC-AFA7-4F1027E50E5C} - System32\Tasks\{B427E378-8F75-428C-863F-E54159B07B8F} => pcalua.exe -a C:\Windows\Freecorder\uninstall.exe -c "/U:C:\Program Files (x86)\Freecorder\Uninstall\uninstall.xml"
Task: {0BA73803-B7F6-4898-BC20-192E429F171C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {0E9B150F-C99C-4EA3-9A47-3A3F58DAFC35} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2464603270-1396714433-1616926655-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {1B59CDE0-94BF-460B-BCD6-720BF34C07B6} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2464603270-1396714433-1616926655-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {266D7693-A782-476D-80EF-B6B06938C2C5} - System32\Tasks\Regwork => C:\Program Files (x86)\RegWork\RegWork.exe
Task: {2B1E4C5D-FC09-48E4-A76F-E21D5168C9D5} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2464603270-1396714433-1616926655-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {332F9954-CFC1-42DC-8EA2-879D3BC6A0F3} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\Windows\TEMP\{60CE847C-A575-48D5-99AF-DA7DFE51BD1F}.exe
Task: {34A506B2-C586-42EE-A26A-62006D16CDCB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.)
Task: {410EC6A6-F4EC-4562-B872-891D87013091} - System32\Tasks\{6C4582E7-CDC3-4E5E-96FA-62F7F2059E66} => pcalua.exe -a C:\PROGRA~1\IZArc\IZArc.exe -d C:\Users\HUMIK5\Downloads -c "C:\Users\HUMIK5\Downloads\Phonetic key board.zip"
Task: {4CDCFC75-3504-4D4C-8A2B-D73308546BBA} - System32\Tasks\{4C8E3066-A1C5-4E02-962F-250AF374D853} => Firefox.exe http://ui.skype.com/ui/0/6.0.0.126/e...=tsProgressBar
Task: {702F2697-C95D-484A-9F1E-DB943FA5F02C} - System32\Tasks\RunAsStdUser Task => C:\Users\HUMIK5\AppData\Local\gamesleapSA\bin\1.0.8.0\GamesLeapSA.exe
Task: {86739CC1-BE57-4A6C-A4A1-68C36875232D} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe [2012-12-14] (http://www.express-files.com/) <==== ATTENTION
Task: {87F3383C-6B8B-4C10-83EF-FCDC99976FF8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-05-24] (Piriform Ltd)
Task: {9709BC3C-F890-47CB-9DC7-CF4369B34694} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2464603270-1396714433-1616926655-1000UA => C:\Users\HUMIK5\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
Task: {A57DC68A-D103-435D-AD9A-314237FD753C} - System32\Tasks\{F80F22A2-F862-4491-8AC3-D356D6F1CD45} => pcalua.exe -a C:\Users\HUMIK5\Downloads\McPreInstall.exe -d C:\Users\HUMIK5\Downloads
Task: {C2A68EC0-9EA0-4CE9-8185-974DDC37753C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05] (Adobe Systems Incorporated)
Task: {C5A9484C-59A6-4A79-8DF6-A7263B9D00D7} - System32\Tasks\{F6F784E2-1117-4137-A454-973C49236E23} => pcalua.exe -a "C:\OLD COMPUTER\Hassan\Cricket Games\Cricket 2007\Alcohol.120.v1.4.8.1222.Retail\setup.exe" -d "C:\OLD COMPUTER\Hassan\Cricket Games\Cricket 2007\Alcohol.120.v1.4.8.1222.Retail"
Task: {D652E508-B5B9-4552-B939-1702068DCAFF} - System32\Tasks\{B88F01F7-B552-494F-8890-DBB55374C74D} => pcalua.exe -a "E:\International Cricket Captain 2002\Setup.exe" -d "E:\International Cricket Captain 2002"
Task: {D91AEDD0-9617-49F3-AB9E-B03347DF46C8} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2464603270-1396714433-1616926655-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {DAE96D31-2FCF-42D8-92B0-14C6F8643347} - System32\Tasks\{ACB2BF36-8554-4FF7-B2D7-F6FD360AB620} => pcalua.exe -a "C:\OLD COMPUTER\Cricket Games\DB 14\Key Generator v11\Key Generator v11 installer\Key Generator Installer V11.exe" -d "C:\OLD COMPUTER\Cricket Games\DB 14\Key Generator v11\Key Generator v11 installer"
Task: {DE925676-13B4-4158-8F4B-65BA88783E0F} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files (x86)\YourFileDownloader Updater\YourFileUpdater.exe <==== ATTENTION
Task: {E2338AA3-7778-4B8C-9B7B-BFDB0F8C754F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.)
Task: {ED9F0F8E-DECE-44A2-B785-2EAADC1EB81B} - System32\Tasks\{1B9DA38F-AA88-43BD-9796-D60ADC74F551} => pcalua.exe -a C:\Users\HUMIK5\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=amt <==== ATTENTION
Task: {EF7D1D5F-4D64-40A3-B0A6-C5E9A11B0AB7} - System32\Tasks\{E3535CA0-FB06-4069-827E-B7BF006CF3B2} => pcalua.exe -a "C:\Users\HUMIK5\Downloads\Sunbird Setup 1.0 Beta 1.exe" -d C:\Users\HUMIK5\Downloads
Task: {F3D30D71-B8AE-4190-8B66-8FAB91836AD1} - System32\Tasks\{56A74CF7-4855-42C1-A25D-AE1E7DF6EE94} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-08-27] (Skype Technologies S.A.)
Task: {F4019D24-550A-48FD-BEB5-5CF27E88CE0B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {F44249CF-1E03-4221-A82F-3496437C7F24} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {F9CCD19C-7632-4C83-974D-79184E00EF2A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2464603270-1396714433-1616926655-1000Core => C:\Users\HUMIK5\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
Task: {FAACC1A5-19EB-4124-947D-4B4452BC77CC} - System32\Tasks\{1A8E1968-6331-4DCC-8667-8536847F5FAB} => pcalua.exe -a "E:\EA Cricket 2004\Cricket 2004.exe" -d "E:\EA Cricket 2004"
Task: {FE825EBA-2EDE-4B20-B60B-F9D753D3BB47} - System32\Tasks\RealCreateProcessScheduledTask48831339S-1-5-21-2464603270-1396714433-1616926655-1000 => c:\program files (x86)\real\realplayer\realplay.exe [2012-12-19] (RealNetworks, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{60CE847C-A575-48D5-99AF-DA7DFE51BD1F}.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2464603270-1396714433-1616926655-1000Core.job => C:\Users\HUMIK5\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2464603270-1396714433-1616926655-1000UA.job => C:\Users\HUMIK5\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Regwork.job => C:\Program Files (x86)\RegWork\RegWork.exe-shed C:\Program Files (x86)\RegWork\RegWork.exe
==================== Loaded Modules (whitelisted) ==============

7zip "Incorrect command line"

0
0
So I've been having a problem where if i click an icon or program with the exception of about 2, being curse client (What?) and nvidia experience, It won't open and a command prompt box opens reading "Incorrect command line". The only way I can open a few things is if i indirectly open them, ex. to get to the chrome im on now I had to open a program I had pinned to chrome that was downloaded on my pc, and from there open a new tab. I looked all over the internet and this seems to be a common problem, sadly, since it's not the same one I'm having. I think it may be some kind of suspicious file as it happened after I bought (torrented*) a game that ended with a .exe file and accidentally clicked "Open with 7zip". No clue what to do at this point, ran all sorts of antivirus.

Under Attack Now!

0
0
Have mistakenly downloaded (from a Mozilla Thunderbird attempted download on Mozilla's website, I thought)
MyPc Backup By JDiBackup; Oprtimizer Pro v 3.2 by PC Utilities Software; Super Optimizer 3.2 by Super PC Tools; RegPro Cleaner Version 2.0 by Reg Pro; Remote Desktop Access (VuuPC) by CMI Ltd; s5mark and Shopperz 2.0.0.457 by Shopperz.
My machine and I are being attacked. I have been unable to uninstall these programs using the Uninstall method which yields only a message stating to wait until other program is finished uninstalling. I have looked for other information on the net and found only hucksters seeking a sale.
If you know how to rid a machine (Windows 7) of these pernicious operators and their programs, please respond ASAP.

Please help.. May have virus/spyware/malware

0
0
I keep on getting pop ups about having a virus, or spyware, malware and so on. Also my computer is running slower than usual, and when I go to any website it keeps popping up to another site.. If anyone can help me get rid of this, I'd greatly appreciate it.

I'm on an hp laptop, running windows 7 and ie11.

Thanks again!
Michele

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Pentium(R) CPU P6200 @ 2.13GHz, Intel64 Family 6 Model 37 Stepping 5
Processor Count: 2
RAM: 3893 Mb
Graphics Card: Intel(R) HD Graphics, 1722 Mb
Hard Drives: C: Total - 461963 MB, Free - 228275 MB; D: Total - 14671 MB, Free - 1501 MB; F: Total - 97 MB, Free - 82 MB;
Motherboard: Hewlett-Packard, 1693
Antivirus: Microsoft Security Essentials, Updated and Enabled

Is this java pop-up malware?


Crypto Virus... Help :(

0
0
Hi
After 8 hours of trying to figure out what is wrong with my computer, I have found the Crypto Virus... I can't use any of my programs or files except for the internet it seems. How can I remove this and get my files back?
I tried to Hijack someone elses thread but I was unable to.
Thanks
Kori

Malware alerts and no internet access

0
0
You`ve posted the wrong log from Malwarebytes, I need to see Scan Log Open Malwarebytes > select "History" > "Application logs" the Applicayion log window will open. From the list double left click on the relevant Scan Log entry. The "Scanning History log" window will open.
At the bottom of that window are two tabs "Export" and "Copy to Clipboard" select the latter, that copies the full scan log, In your reply here right click into the reply text field and select "Paste" The log will be copied to your reply....

Post that log, also give an update on any remaining issues or concerns.....

One other point, Google Chrome is corrupt and will need re-installing. Instructions at the following link, ensure to delete your user profile information, like your browser preferences, bookmarks and history, select the "Also delete your browsing data" tick box.

https://support.google.com/chrome/answer/95319?hl=en-GB

Reinstall from here: https://www.google.com/intl/en_uk/ch...top/index.html make sure to install AdBlock Plus addon..

Kevin..

"Powered by info" Malware....Nightmare!

0
0
Windows 7 Machine. Chrome browser infected with "Powered by Info" malware....lots of pop ups. Tried lots of removal methods but need some more advanced help now!


Thanks!!


Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Professional, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz, Intel64 Family 6 Model 58 Stepping 9
Processor Count: 8
RAM: 16335 Mb
Graphics Card: NVIDIA GeForce GTX 660 Ti, -2048 Mb
Hard Drives: C: Total - 244095 MB, Free - 9733 MB; D: Total - 1907722 MB, Free - 20752 MB; M: Total - 3815431 MB, Free - 1472626 MB;
Motherboard: ASUSTeK COMPUTER INC., P8Z77-V LK
Antivirus: Ad-Aware Antivirus, Disabled

Slow Speeds and Laggy

0
0
Hi! I'm running on a windows 7 computer. I just joined and wanted to see if I'm able to get some help. Thank you!

Virus on PC - Please Help

0
0
Download to Desktop: DDS by sUBs from one of the below locations

http://download.bleepingcomputer.com/sUBs/dds.com
http://download.bleepingcomputer.com/sUBs/dds.exe

double click DDS to run it
Make sure there is a check mark in DDS txt
place a check mark in the attach.txt box and then press start

Do not select any other options unless specifically told to

When complete, DDS.txt will openand attach.txt will be minimized on your taskbar, click on it to open it

Save both reports to your desktop.
DDS.txt
Attach.txt

post the contents of both logs back here.

Google infected by Adware

0
0
Whilst I was searching for a DTP package I clicked on a site and it downloaded a load of malware and adware to my computer and blocked my access to the internet via Google or AOL. I ran AdwareCleaner which allowed me to get back on line. I was still getting loads of adware so I ran Malwarebytes (free) and FSecure which found nothing. Whenever I open Google now I am still constantly getting popups and redirects and cannot use Google properly.
Some of the adware, listed below, I have pick out off Google history:
cdn.adsrmedia.net
cts.adssend.net
slimcleaner clikuemx.com
clickhoofind.com
b3-uk.mookl.com
yxo.warmportrait.com
I wondered if these lurked somewhere in my hard drive and I might be able to manually delete them.

This morning I got the followinging banner when I tried to log onto my email:
Windows Browser Warning
system-kernel-disk-errorx005dsxx-microsoft-windows.errors9983.com

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i5-2400S CPU @ 2.50GHz, Intel64 Family 6 Model 42 Stepping 7
Processor Count: 4
RAM: 4000 Mb
Graphics Card: Intel(R) HD Graphics, 1808 Mb
Hard Drives: C: Total - 942612 MB, Free - 851971 MB; D: Total - 11153 MB, Free - 1361 MB;
Motherboard: Foxconn, 2ABF
Antivirus: Computer Security, Updated and Enabled

Pete

May have virus/spyware/malware...

0
0
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 8.1, 64 bit
Processor: Intel(R) Celeron(R) CPU N2820 @ 2.13GHz, Intel64 Family 6 Model 55 Stepping 3
Processor Count: 2
RAM: 3979 Mb
Graphics Card: Intel(R) HD Graphics, -2042 Mb
Hard Drives: C: Total - 936131 MB, Free - 802701 MB;
Motherboard: Packard Bell, Easynote TE69BM
Antivirus: Windows Defender, Disabled


Web page - homepage-web.com/?s=acer&m=tab, I think my laptop been infected.
Also sometimes no internet as wifi connection stops on this laptop but not on other devices.

Thanks

loading pages problem

0
0
That looks good, if DelFix is still there, you can delete it, as its removed the folders now :)

eddie

imminent

0
0
Hello and welcome to TSG,

Use the instructions in the following link to show hidden files:

http://www.bleepingcomputer.com/tuto...es-in-windows/

Next,

Download AdwCleaner by Xplode onto your Desktop.
  • Double click on Adwcleaner.exe to run the tool.
  • Click on Scan
  • Once the scan is done, click on the Clean button.
  • You will get a prompt asking to close all programs. Click OK.
  • Click OK again to reboot your computer.
  • A text file will open after the restart. Please post the content of that logfile in your reply.
  • You can also find the logfile at C:\AdwCleaner[Sn].txt. Where n in the scan reference number

Next,

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts. (re-enable when done)
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Next,

Download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Let me see those logs in your next reply....

Kevin.

Unable to access Microsoft sites

0
0
Edit:It appears MAsetupcleaner is part of a samsung driver,causing unnecesary concern by my part.Internet access seems to be normal.I will delete this thread In 1 hour,in case someone finds something wrong with the hijackthis log.Excuse my paranoia.

SysInfo
=========================================================================== ==============
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Ultimate, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz, Intel64 Family 6 Model 60 Stepping 3
Processor Count: 4
RAM: 8129 Mb
Graphics Card: NVIDIA GeForce GTX 760, -2048 Mb
Hard Drives: C: Total - 238372 MB, Free - 141648 MB; D: Total - 476937 MB, Free - 83256 MB;
Motherboard: ASUSTeK COMPUTER INC., MAXIMUS VI HERO
Antivirus: ESET Smart Security 7.0, Not Updated

Hello guys/gals.So recently i installed a couple of Usb drivers,trying to root my phone,and after a restart noticed a process called MAsetupcleaner.exe trying to run on startup.Now my computer won't access microsoft websites and i have trouble downloading some files (Mediafire,Microsoft update) I'm including a HijackThis log in case it helps.
Thank you.

HijackThis
=========================================================================== ========
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 9:45:17 PM, on 23-Feb-15
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.18667)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Spiros\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Users\Spiros\AppData\Roaming\uTorrent\uTorrent.exe
D:\Programs\trigger\CMTrigger.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Spiros\AppData\Roaming\Curse Client\Bin\Curse.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
D:\Downloads\HijackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKCU\..\Run: [F.lux] "C:\Users\Spiros\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Spiros\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [CoolerMaster Trigger] "D:\Programs\trigger\CMTrigger.exe" /AutoRun
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify] "C:\Users\Spiros\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Spiros\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Curse.lnk = Spiros\AppData\Roaming\Curse Client\Bin\Curse.exe
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung RAPID Mode Service (SamsungRapidSvc) - Unknown owner - C:\Windows\system32\RAPID\SamsungRapidSvc.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10062 bytes

Spyhunter4

0
0
Help please,
I am being attacked by Spyhunter4 by Enigma Software which opens intermittently especially while I am trying to remove it. I have tried ADWare, IOBit Malware Fighter. Junkware Removal Tool and probably others which I have forgotten. It does not appear in Install/Remove in Control Panel. It usually just identifies programs which I have intentionally installed. Will someone please direct me to the proper program to kill this?
Thanks,
Jim

Bloodhound.MalPE Virus on friends Computer HELP!

0
0
Okay I actually got rid of it by uninstalling programs that carried with it some junk and it seemed to have fixed the issues. I also deleted temp files. Also I want to make sure all viruses are gone. Can you help me to do that? Also The computer is very slow to start up I am hoping we can fix that issue. Also it takes a while for the internet usb connection to connect to internet. Strange! I tried updating drivers it said, " Already up to date. Hummm

Thanks for any help you can provide.
Viewing all 4746 articles
Browse latest View live




Latest Images