Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

can't click on some links, some videos don't play, and more

 
Post new topic   This topic is locked: you cannot edit posts or make replies.    Spyware Warrior Forum Index -> Help with spyware removal
View previous topic :: View next topic  
Author Message
ldybadger
Junior Member


Joined: 06 May 2013
Last Visit: 27 Jun 2016
Posts: 45

PostPosted: Thu May 05, 2016 10:31 am    Post subject: can't click on some links, some videos don't play, and more Reply with quote

I am working on my Mom's computer. It's running Window 7. When you click on some links or try to watch some videos the won't work. I know they should work, because I have used those links or watched the videos on my computer. Her computer also tells her their are java updates and flash updates available, but when she tries to download them, they say her java or flash is up to date. She is using Internet Explorer 11 and it locks up and crashes frequently.

Here are her logs

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.18283 BrowserJavaVersion: 11.71.2
Run by Deborah at 12:12:59 on 2016-05-05
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3061.1698 [GMT -6:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
SP: Microsoft Security Essentials *Enabled/Updated* {CDE0C533-D3CD-62A1-E772-AFADDF863628}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\AERTSrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\CSHelper.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe
C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE
C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\Windows\Explorer.EXE
c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\system32\GWX\GWX.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe
C:\Windows\system32\PSIService.exe
C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\SearchIndexer.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\DoNotTrackPlus\IE\DNTPService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k apphost
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k SDRSVC
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://my.yahoo.com/
uWindow Title = Internet Explorer provided by Dell
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: MHTBPos00 Class: {0C37B053-FD68-456a-82E1-D788EE342E6F} - c:\program files\family toolbar\tbcore3.dll
BHO: Do Not Track Me: {6E45F3E8-2683-4824-A6BE-08108022FB36} - c:\program files\donottrackplus\ie\DNTPAddon.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.8.0_71\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: WOT Helper: {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - c:\program files\wot\WOT.dll
BHO: CBrowserHelperObject Object: {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\program files\dell\bae\BAE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre1.8.0_71\bin\jp2ssv.dll
BHO: Alawar Elements: {E33FF41E-53CB-4D93-885A-FFEFA04CD804} - c:\program files\alawar elements\ScriptHost.dll
BHO: {e86e69ac-a2ce-415a-967e-70ded47d72e2} - <orphaned>
TB: Family Toolbar: {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - c:\program files\family toolbar\tbcore3.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: WOT: {71576546-354D-41C9-AAE8-31F2EC22BF0D} - c:\program files\wot\WOT.dll
TB: Family Toolbar: {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - c:\program files\family toolbar\tbcore3.dll
TB: WOT: {71576546-354D-41c9-AAE8-31F2EC22BF0D} - c:\program files\wot\WOT.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [EPSON Artisan 800(Network)] c:\windows\system32\spool\drivers\w32x86\3\e_fatiema.exe /fu "c:\windows\temp\E_SD49F.tmp" /EF "HKCU"
uRun: [ISUSPM] c:\programdata\flexnet\connect\11\ISUSPM.exe -scheduler
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [WeatherBug] c:\program files\earth networks\weatherbug\WeatherBug.exe /fromrunkey
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [ECenter] c:\dell\e-center\EULALauncher.exe
mRun: [EEventManager] c:\progra~1\epsons~1\eventm~1\EEVENT~1.EXE
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Family Tree Builder Update] c:\myheritage\bin\FTBCheckUpdates.exe
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [InstallerLauncher] "c:\program files\common files\bitdefender\setupinformation\{6f57816a-791a-4159-a75f-cfd0c7ea4fbf}\setuplauncher.exe" /run:"c:\program files

\common files\bitdefender\setupinformation\{6f57816a-791a-4159-a75f-cfd0c7ea4fbf}\Installer.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [1157840481] c:\progra~1\egames\bricks~1\register\egames~1.exe /r "c:\progra~1\egames\bricks~1\register\EGAMES~1.rpd"
mRun: [Logitech Download Assistant] c:\windows\system32\rundll32.exe c:\windows\system32\LogiLDA.dll,LogiFetch
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
StartupFolder: c:\users\deborah\appdata\roaming\micros~1\windows\startm~1\programs\startup\jledwa~1.lnk - c:\program files\jl edwardian advent calendar 2014\JL

Edwardian Advent Calendar 2014.exe
StartupFolder: c:\users\deborah\appdata\roaming\micros~1\windows\startm~1\programs\startup\jlvict~1.lnk - c:\program files\jl victorian calendar\JL Victorian Calendar.exe
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {6E45F3E8-2683-4824-A6BE-08108022FB36} - {23249465-AA46-4DED-BD4B-8EFB20F968FE} - c:\program files\donottrackplus\ie\DNTPAddon.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
Trusted Zone: ancestry.com
DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} - hxxp://content.systemrequirementslab.com/bin/srldetect_intel_4.5.24.0.cab
TCP: NameServer = 192.168.0.1 205.171.202.166
TCP: Interfaces\{170BCFF2-1531-4B40-BC2A-8021A841A780} : NameServer = 4.2.2.2,4.2.2.3
TCP: Interfaces\{170BCFF2-1531-4B40-BC2A-8021A841A780} : DHCPNameServer = 192.168.0.1 205.171.202.166
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - c:\program files\wot\WOT.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
Notify: igfxcui - igfxdev.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\50.0.2661.94\installer\chrmstp.exe" --configure-user-settings --verbose-

logging --system-level --multi-install --chrome
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "c:\windows\system32\rundll32.exe" "c:\program files\adobe\acrobat reader dc\esl

\AiodLite.dll",CreateReaderUserSettings
.
============= SERVICES / DRIVERS ===============
.
R0 AFS;AFS;c:\windows\system32\drivers\AFS.SYS [2008-7-15 79052]
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2015-11-13 253704]
R2 AERTFilters;Andrea RT Filters Service;c:\windows\system32\AERTSrv.exe [2007-12-5 77824]
R2 CSHelper;CopySafe Helper Service;c:\windows\system32\CSHelper.exe [2010-2-1 266240]
R2 DiagTrack;Diagnostics Tracking Service;c:\windows\system32\svchost.exe -k utcsvc [2009-7-13 20992]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-4-17 11032]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2014-7-17 104664]
R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2016-1-29 292816]
R3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
R3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2015-11-5 105144]
S2 pdserv;Bitdefender 60-Second Virus Scanner Service;c:\program files\bitdefender\60-second virus scanner\pdscan.exe \svc --> c:\program files\bitdefender\60-second virus

scanner\pdscan.exe \svc [?]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2010-10-22 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-9-23 1493352]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2016-4-13 102912]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2013-3-16 14848]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2013-3-16 49664]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-5-18 1343400]
S3 WSDScan;WSD Scan Support via UMB;c:\windows\system32\drivers\WSDScan.sys [2009-7-13 20480]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2009-7-22 47128]
S4 RsFx0105;RsFx0105 Driver;c:\windows\system32\drivers\RsFx0105.sys [2011-9-22 238696]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [2015-4-3 380064]
.
=============== File Associations ===============
.
FileExt: .js: Applications\notepad.exe=c:\windows\system32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2016-05-04 15:19:27 9317056 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{ac4ee667-a1b5-4bbf-9d85-838393ba8e12}\mpengine.dll
2016-05-03 13:19:14 912000 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{53a872ff-64ce-4a47-8265-137a19d9602a}\gapaengine.dll
2016-05-03 13:18:49 9317056 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2016-04-23 23:57:38 -------- d-----w- c:\users\deborah\appdata\roaming\SilverTale
2016-04-23 23:53:44 -------- d-----w- c:\program files\Silver Tale
2016-04-20 06:03:00 -------- d-----w- c:\users\deborah\appdata\roaming\quickclick
2016-04-17 22:25:52 -------- d-----w- c:\users\deborah\appdata\roaming\Jewel Match Snowscapes
2016-04-17 20:52:35 -------- d-----w- c:\program files\Jewel Match - Snowscapes
2016-04-15 23:53:31 -------- d-----w- c:\program files\iPod
2016-04-15 23:53:30 -------- d-----w- c:\program files\iTunes
2016-04-15 23:51:54 -------- d-----w- c:\program files\Bonjour
2016-04-13 18:35:42 376320 ----a-w- c:\windows\system32\rpcss.dll
2016-04-13 18:35:33 2397184 ----a-w- c:\windows\system32\win32k.sys
2016-04-13 18:35:24 65536 ----a-w- c:\windows\system32\acmigration.dll
2016-04-13 18:35:24 560640 ----a-w- c:\windows\system32\generaltel.dll
2016-04-13 18:35:24 424960 ----a-w- c:\windows\system32\devinv.dll
2016-04-13 18:35:24 34024 ----a-w- c:\windows\system32\CompatTelRunner.exe
2016-04-13 18:35:24 232960 ----a-w- c:\windows\system32\invagent.dll
2016-04-13 18:35:24 1218048 ----a-w- c:\windows\system32\appraiser.dll
2016-04-13 18:35:23 957952 ----a-w- c:\windows\system32\aeinv.dll
2016-04-13 18:35:23 177664 ----a-w- c:\windows\system32\aepic.dll
2016-04-13 18:33:41 38400 ----a-w- c:\program files\internet explorer\DiagnosticsHub_is.dll
2016-04-13 18:31:44 566272 ----a-w- c:\windows\system32\samsrv.dll
2016-04-13 18:31:43 60416 ----a-w- c:\windows\system32\samlib.dll
2016-04-13 18:31:32 2048 ----a-w- c:\windows\system32\tzres.dll
2016-04-13 18:30:50 57280 ----a-w- c:\windows\system32\drivers\disk.sys
2016-04-13 18:23:18 2048 ----a-w- c:\windows\system32\msxml3r.dll
2016-04-13 18:23:18 1240576 ----a-w- c:\windows\system32\msxml3.dll
2016-04-13 18:22:10 257864 ----a-w- c:\windows\system32\wbem\Win32_Tpm.dll
2016-04-13 18:22:09 97792 ----a-w- c:\windows\system32\fveapibase.dll
2016-04-13 18:22:09 355456 ----a-w- c:\windows\system32\fveapi.dll
2016-04-13 18:22:09 15360 ----a-w- c:\windows\system32\tbs.dll
2016-04-12 19:33:01 -------- d-----w- c:\users\deborah\appdata\roaming\Jewel Match Twilight
2016-04-12 18:29:25 -------- d-----w- c:\users\deborah\appdata\roaming\IteraLabs
2016-04-12 18:20:06 -------- d-----w- c:\program files\Jewel Match - Twilight
2016-04-12 18:17:14 -------- d-----w- c:\program files\Imperial Island 3
2016-04-12 17:48:50 -------- d-----w- c:\program files\ClearIt
.
==================== Find3M ====================
.
2016-04-22 07:57:44 374944 ------w- c:\windows\system32\MpSigStub.exe
2016-04-08 23:39:36 797376 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2016-04-08 23:39:36 142528 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2016-03-31 00:02:57 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2016-03-31 00:02:46 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2016-03-30 23:53:52 496640 ----a-w- c:\windows\system32\vbscript.dll
2016-03-30 23:52:58 62464 ----a-w- c:\windows\system32\iesetup.dll
2016-03-30 23:52:36 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2016-03-30 23:52:30 341504 ----a-w- c:\windows\system32\html.iec
2016-03-30 23:52:15 64000 ----a-w- c:\windows\system32\MshtmlDac.dll
2016-03-30 23:45:45 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2016-03-30 23:45:41 115712 ----a-w- c:\windows\system32\ieUnatt.exe
2016-03-30 23:45:24 620032 ----a-w- c:\windows\system32\jscript9diag.dll
2016-03-30 23:41:07 667648 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2016-03-30 23:34:28 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2016-03-30 23:30:42 4611072 ----a-w- c:\windows\system32\jscript9.dll
2016-03-30 23:23:09 2056192 ----a-w- c:\windows\system32\inetcpl.cpl
2016-03-30 23:22:53 1155072 ----a-w- c:\windows\system32\mshtmlmedia.dll
2016-03-30 23:05:23 2121216 ----a-w- c:\windows\system32\wininet.dll
2016-03-17 22:36:28 3998952 ----a-w- c:\windows\system32\ntkrnlpa.exe
2016-03-17 22:36:28 3943144 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-03-17 22:36:27 67304 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2016-03-17 22:36:27 137960 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2016-03-17 22:33:29 1310528 ----a-w- c:\windows\system32\ntdll.dll
2016-03-17 22:30:52 171008 ----a-w- c:\windows\system32\winsrv.dll
2016-03-17 22:30:43 171520 ----a-w- c:\windows\system32\wdigest.dll
2016-03-17 22:30:35 65536 ----a-w- c:\windows\system32\TSpkg.dll
2016-03-17 22:30:02 99840 ----a-w- c:\windows\system32\sspicli.dll
2016-03-17 22:30:00 43008 ----a-w- c:\windows\system32\srclient.dll
2016-03-17 22:30:00 400896 ----a-w- c:\windows\system32\srcore.dll
2016-03-17 22:29:31 50176 ----a-w- c:\windows\system32\setbcdlocale.dll
2016-03-17 22:29:26 22016 ----a-w- c:\windows\system32\secur32.dll
2016-03-17 22:29:24 251392 ----a-w- c:\windows\system32\schannel.dll
2016-03-17 22:29:22 655360 ----a-w- c:\windows\system32\rpcrt4.dll
2016-03-17 22:29:22 141312 ----a-w- c:\windows\system32\rpchttp.dll
2016-03-17 22:28:21 1414144 ----a-w- c:\windows\system32\ole32.dll
2016-03-17 22:27:53 223232 ----a-w- c:\windows\system32\ncrypt.dll
2016-03-17 22:27:50 260608 ----a-w- c:\windows\system32\msv1_0.dll
2016-03-17 22:27:46 60416 ----a-w- c:\windows\system32\msobjs.dll
2016-03-17 22:27:31 146432 ----a-w- c:\windows\system32\msaudite.dll
2016-03-17 22:26:32 1062400 ----a-w- c:\windows\system32\lsasrv.dll
2016-03-17 22:26:26 553984 ----a-w- c:\windows\system32\kerberos.dll
2016-03-17 22:26:26 294400 ----a-w- c:\windows\system32\KernelBase.dll
2016-03-17 22:25:01 38912 ----a-w- c:\windows\system32\csrsrv.dll
2016-03-17 22:25:00 17408 ----a-w- c:\windows\system32\credssp.dll
2016-03-17 21:42:24 97792 ----a-w- c:\windows\system32\appidpolicyconverter.exe
2016-03-17 21:42:22 50688 ----a-w- c:\windows\system32\drivers\appid.sys
2016-03-17 21:42:15 29696 ----a-w- c:\windows\system32\appidsvc.dll
2016-03-17 21:42:14 16896 ----a-w- c:\windows\system32\appidcertstorecheck.exe
2016-03-17 21:41:01 50176 ----a-w- c:\windows\system32\auditpol.exe
2016-03-17 21:36:22 271360 ----a-w- c:\windows\system32\conhost.exe
2016-03-17 21:35:10 262656 ----a-w- c:\windows\system32\rstrui.exe
2016-03-17 21:30:47 226304 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2016-03-17 21:30:41 98304 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2016-03-17 21:30:35 124416 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2016-03-17 21:29:13 36352 ----a-w- c:\windows\system32\cryptbase.dll
2016-03-17 21:29:12 22016 ----a-w- c:\windows\system32\lsass.exe
2016-03-17 21:29:10 15872 ----a-w- c:\windows\system32\sspisrv.dll
2016-03-17 21:29:07 69632 ----a-w- c:\windows\system32\smss.exe
2016-03-17 21:29:00 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-17 21:29:00 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-17 21:29:00 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-17 21:29:00 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-16 18:28:15 111616 ----a-w- c:\windows\system32\mtxoci.dll
2016-03-16 18:28:12 176128 ----a-w- c:\windows\system32\msorcl32.dll
2016-02-12 18:39:55 2956288 ----a-w- c:\windows\system32\wucltux.dll
2016-02-12 18:39:55 174080 ----a-w- c:\windows\system32\wuwebv.dll
2016-02-12 18:26:42 73728 ----a-w- c:\windows\system32\WinSetupUI.dll
2016-02-12 18:05:17 93696 ----a-w- c:\windows\system32\wudriver.dll
2016-02-12 18:05:13 35328 ----a-w- c:\windows\system32\wuapp.exe
2016-02-12 18:05:07 11776 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2016-02-09 09:51:32 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2016-02-09 09:50:10 21504 ----a-w- c:\windows\system32\seclogon.dll
2016-02-09 09:13:14 4096 ----a-w- c:\windows\system32\msdxm.ocx
2016-02-09 09:13:14 4096 ----a-w- c:\windows\system32\dxmasf.dll
2016-02-09 09:13:10 8192 ----a-w- c:\windows\system32\spwmp.dll
2016-02-05 18:44:42 26112 ----a-w- c:\windows\system32\lpk.dll
2016-02-05 18:44:06 70656 ----a-w- c:\windows\system32\fontsub.dll
2016-02-05 18:42:42 10240 ----a-w- c:\windows\system32\dciman32.dll
2016-02-05 18:42:15 8192 ----a-w- c:\windows\system32\drivers\en-us\tpm.sys.mui
.
============= FINISH: 12:15:36.51 ===============





.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume3
Install Date: 10/28/2009 10:13:36 PM
System Uptime: 5/5/2016 8:40:31 AM (4 hours ago)
.
Motherboard: Dell Inc. | | 0RY007
Processor: Intel(R) Core(TM)2 Duo CPU E4600 @ 2.40GHz | Socket 775 | 2400/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 288 GiB total, 147.577 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 5.314 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e968-e325-11ce-bfc1-08002be10318}
Description: Freedom Scientific Mirror Display Driver
Device ID: ROOT\DISPLAY\0000
Manufacturer: Freedom Scientific
Name: Freedom Scientific Mirror Display Driver
PNP Device ID: ROOT\DISPLAY\0000
Service: fsvidmir
.
Class GUID: {4d36e965-e325-11ce-bfc1-08002be10318}
Description: CD-ROM Drive
Device ID: IDE\CDROMTSSTCORP_DVD+-RW_TS-H653F_______________D200____\5&1DFB5792&0&1.0.0
Manufacturer: (Standard CD-ROM drives)
Name: TSSTcorp DVD+-RW TS-H653F ATA Device
PNP Device ID: IDE\CDROMTSSTCORP_DVD+-RW_TS-H653F_______________D200____\5&1DFB5792&0&1.0.0
Service: cdrom
.
==== System Restore Points ===================
.
RP920: 4/17/2016 9:01:17 AM - Windows Update
RP921: 4/20/2016 9:12:49 AM - Windows Update
RP922: 4/24/2016 9:55:24 AM - Windows Update
RP923: 4/27/2016 10:01:50 AM - Windows Update
RP924: 5/1/2016 10:19:53 AM - Windows Update
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer
3D Knifflis: The Whole World in 3D!
4 Elements II
7 Wonders: Ancient Alien Makeover
7 Wonders: Magical Mystery Tour
7 Wonders: Treasures of Seven
A Magnetic Adventure
Abundante
Acrobat.com
Adobe Acrobat Reader DC
Adobe AIR
Adobe Flash Player 21 ActiveX
Adobe Flash Player 21 NPAPI
Adore Puzzle
Age of Japan 2
Alawar Elements
Amazing Adventures Riddle of the Two Knights ™
Amazing Adventures: Around the World
Amazing Adventures: The Caribbean Secret
Amazing Adventures: The Forgotten Dynasty
Amazing Adventures: The Lost Tomb
Amazing Pyramids
Amazon Kindle For PC v1.0
Amazon MP3 Downloader 1.0.17
Ancient Mosaic
Angelica Weaver: Catch Me When You Can
Apple Application Support (32-bit)
Apple Mobile Device Support
Apple Software Update
Aquaball
Aquascapes
ArcSoft Print Creations
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Photo Prints
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
Arizona Rose and the Pirates' Riddles
Around the World in 80 Days
ArtistScope Plugin IE
Asian Riddles
Atlantic Quest
Atlantis Sky Patrol™
Atlantis: Pearls of the Deep
Aveyond: Lord of Twilight
Azada
Azada: Ancient Magic ™
Azada: In Libro
Aztec Bricks
Banctec Service Agreement
Bengal - Game of Gods
Big City Adventure: Barcelona
Big City Adventure: London Classic
Big City Adventure: Paris
Big City Adventure: Vancouver Collector's Edition
Big Fish: Game Manager
Big Kahuna Reef 3
Bitdefender 60-Second Virus Scanner
Bonjour
Brick Quest 2
Bricks of Atlantis
Bricks of Egypt
Browser Address Error Redirector
Chocolatier 3: Decadence by Design
Christmas Griddlers
Christmas Puzzle
Chuzzle Deluxe 1.0
ClearIt
ClickArt 950,000 v. 2
Conexant D850 PCI V.92 Modem
Corel Painter X
Corel WinDVD
Cradle of Egypt
Cradle of Rome
Cradle of Rome 2
Crystal Reports for Visual Studio
Curse of the Pharaoh: Napoleon's Secret ™
Curse of the Pharaoh: Tears of Sekhmet
D3DX10
Deep Blue Sea
Dell Driver Download Manager
Dell Getting Started Guide
Dell Photo AIO Printer 942
Digital Line Detect
Do Not Track Me Add-on 2.2.8.122
Document Express DjVu Plug-in (autoinstall)
Dotfuscator Software Services - Community Edition
DragonStone ™
Drawn™: Trail of Shadows Collector's Edition
EDocs
eGames GameButler
Emberwing: Lost Legacy Collector's Edition
Empire Builder - Ancient Egypt
EPSON Artisan 800 Series Printer Uninstall
Epson Event Manager
Epson Print CD
EPSON Scan
EpsonNet Config V3
EpsonNet Print
Fairies
Fairway Solitaire
Fairy Treasure
Fantasy Mosaics 5
Fax Solutions
FishCo
Fishdom
Fishdom - Spooky Splash
Fishdom 2
Fishdom 3 Collector's Edition
Fishdom H2O: Hidden Odyssey
Fishdom: Depths of Time Collector's Edition
Fishdom: Frosty Splash
Fishdom: Seasons Under the Sea
Forgotten Riddles - The Mayan Princess
FTDI USB Serial Converter Drivers
GDR 5520 for SQL Server 2008 (KB2977321)
GDR 5538 for SQL Server 2008 (KB3045305)
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
GoToAssist 8.0.0.514
Haunted Legends: The Queen of Spades
Hawaiian Explorer Pearl Harbor
Heroes of Hellas 2: Olympia
Heroes of Hellas 3: Athens
Hidato Adventures
Hidden Expedition &reg; - Devil's Triangle
Hidden Expedition &reg;: Amazon
Hidden Expedition Titanic (remove only)
Hidden Expedition: Smithsonian Castle Collector's Edition
Hidden Expedition: The Fountain of Youth Collector's Edition
Hidden Mysteries &reg;: Civil War
Hidden Mysteries: Buckingham Palace ™
Hidden Mysteries: Notre Dame - Secrets of Paris
Hidden Wonders of the Depths
Hidden Wonders of the Depths 2
Hidden Wonders of the Depths 3: Atlantis Adventures
Hotfix for Microsoft Team Foundation Server 2010 Object Model - ENU (KB2736182)
Hotfix for Microsoft Team Foundation Server 2010 Object Model - ENU (KB2890573)
Hotfix for Microsoft Visual Studio 2010 Professional - ENU (KB2529927)
Hotfix for Microsoft Visual Studio 2010 Professional - ENU (KB2548139)
Hotfix for Microsoft Visual Studio 2010 Professional - ENU (KB2549864)
Hotfix for Microsoft Visual Studio 2010 Professional - ENU (KB2565057)
Hotfix for Microsoft Visual Studio 2010 Professional - ENU (KB2635973)
Hotfix for Microsoft Visual Studio 2010 Professional - ENU (KB2736182)
Hotfix for Microsoft Visual Studio 2010 Professional - ENU (KB2890573)
Hotfix for Microsoft Visual Studio 2010 Professional - ENU (KB3002340)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2280741)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2284668)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2295689)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2420513)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2452649)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2455033)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2485545)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982517)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982721)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB983233)
House of 1000 Doors: Family Secrets
html01sp
html03sp
html05sp
Hungry For Gems
Imperial Island 3
Intel(R) Graphics Media Accelerator Driver
Intel(R) PRO Network Connections 12.1.11.0
Intel(R) TV Wizard
iTunes
Jacquie Lawson Edwardian Advent Calendar
Jacquie Lawson Victorian Calendar
Java 7 Update 71
Java Auto Updater
Jewel Legends: Tree of Life
Jewel Match: Snowscapes
Jewel Match: Twilight
Jigsaw Boom 2
Junk Mail filter update
Laura Jones and the Secret Legacy of Nikola Tesla
League of Mermaids
League of Mermaids: Pearl Saga
Luxor Adventures
Luxor Amun Rising
Luxor HD
Luxor Mahjong (remove only)
Luxor: 5th Passage
Macromedia Shockwave Player
Mae Q`West and the Sign of the Stars
Magic Vines&trade;
Mahjong Towers Eternity
Mahjongg Master 5
Marblez
Mayan Puzzle
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 4 Multi-Targeting Pack
Microsoft .NET Framework 4.6.1
Microsoft Application Error Reporting
Microsoft ASP.NET MVC 2
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools
Microsoft Expression Blend 3
Microsoft Expression Blend 3 SDK
Microsoft Expression Design 3
Microsoft Expression Encoder 3
Microsoft Expression Studio 3
Microsoft Expression Web 3
Microsoft Expression Web 3 SP1
Microsoft Help Viewer 1.1
Microsoft Office 2007 Primary Interop Assemblies
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office Live Add-in 1.5
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft Silverlight 3 SDK
Microsoft Silverlight 4 SDK
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server 2008
Microsoft SQL Server 2008 Browser
Microsoft SQL Server 2008 Common Files
Microsoft SQL Server 2008 Database Engine Services
Microsoft SQL Server 2008 Database Engine Shared
Microsoft SQL Server 2008 Native Client
Microsoft SQL Server 2008 R2 Data-Tier Application Framework
Microsoft SQL Server 2008 R2 Data-Tier Application Project
Microsoft SQL Server 2008 R2 Management Objects
Microsoft SQL Server 2008 R2 Transact-SQL Language Service
Microsoft SQL Server 2008 RsFx Driver
Microsoft SQL Server 2008 Setup Support Files
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft SQL Server Database Publishing Wizard 1.4
Microsoft SQL Server System CLR Types
Microsoft SQL Server VSS Writer
Microsoft Sync Framework Runtime v1.0 SP1 (x86)
Microsoft Sync Framework SDK v1.0 SP1
Microsoft Sync Framework Services v1.0 SP1 (x86)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x86)
Microsoft Team Foundation Server 2010 Object Model - ENU
Microsoft Visual C++ Compilers 2010 Standard - enu - x86
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219
Microsoft Visual F# 2.0 Runtime
Microsoft Visual Studio 2005 Tools for Office Runtime
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools
Microsoft Visual Studio 2010 Office Developer Tools (x86)
Microsoft Visual Studio 2010 Professional - ENU
Microsoft Visual Studio 2010 Service Pack 1
Microsoft Visual Studio 2010 SharePoint Developer Tools
Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
Microsoft Visual Studio Macro Tools
Mirror Mixup
MSVCRT
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
Mummy's Treasure
Music, Photos & Videos Launcher
MyHeritage Family Tree Builder
Mystery Case Files &reg;: 13th Skull ™
Mystery Case Files&reg;: Dire Grove™
Mystery Case Files&reg;: Escape from Ravenhearst™
Mystery Case Files&reg;: Fate's Carnival
Mystery Case Files&reg;: Shadow Lake Collector's Edition
Mystery Case Files: Dire Grove, Sacred Grove Collector's Edition
Mystery Case Files: Huntsville - Detective Training
Mystery Case Files: Key to Ravenhearst Collector's Edition
Mystery Case Files: Madame Fate &reg;
Mystery Case Files: Prime Suspects ™
Mystery Case Files: Ravenhearst Unlocked Collector's Edition
Mystery Case Files: Return to Ravenhearst ™
Mystic Gateways: The Celestial Quest
Nearwood Collector's Edition
NetWaiting
Nightfall Mysteries: Asylum Conspiracy
Nightfall Mysteries: Curse of the Opera
Notepad++
Ocean Express
OGA Notifier 2.0.0048.0
OpenAL
Pahelika: Secret Legends
PDF-XChange 3
Peggle Deluxe
Pharaoh`s Mystery
Product Documentation Launcher
Realtek High Definition Audio Driver
Ricochet: Infinity
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Express Labeler 3
Roxio Update Manager
SandScript
Security Update for Microsoft .NET Framework 4.6.1 (KB3122661)
Security Update for Microsoft .NET Framework 4.6.1 (KB3127233)
Security Update for Microsoft .NET Framework 4.6.1 (KB3136000)
Security Update for Microsoft .NET Framework 4.6.1 (KB3143693)
Security Update for Microsoft Expression Design 3 (KB2667727)
Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687409) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881067) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2956110) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085549) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3085620) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3114542) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB3114742) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3114895) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3114982) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB3114892) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office OneNote 2007 (KB2889915) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB3114429) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB3114983) 32-Bit Edition
Security Update for Microsoft Visual Studio 2010 Professional - ENU (KB2645410)
Security Update for Microsoft Visual Studio Macro Tools (KB2669970)
Sentinel System Driver
Service Pack 3 for SQL Server 2008 (KB2546951)
Settlement: Colossus
Sherlock Holmes and the Hound of the Baskervilles
Silver Tale
Slingo Mystery: Who's Gold
Slingo Quest
Slingo Quest Egypt
Slingo Quest Hawaii
Slingo Supreme (tb) (remove only)
Spelling Dictionaries Support For Adobe Reader 8
Sql Server Customer Experience Improvement Program
Strimko
SupportSoft Assisted Service
System Requirements Lab for Intel
Temple of Tangram
The Alley Strikes Back
The Count of Monte Cristo
The Da Vinci Code
The Flying Dutchman - In The Ghost Prison
The Print Shop 21
The Stone of Destiny
The Treasures of Montezuma 3
The Treasures of Montezuma 4
Tile Quest
Treasure Seekers: Visions of Gold ™
Treasures of the Deep
Ulead Burn.Now 4.5
Ulead Burn.Now 4.5 SE
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Vesuvia
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
WCF RIA Services V1.0 SP1
WeatherBug®
Web Deployment Tool
Whispered Secrets: The Story of Tideville
Windows 7 Upgrade Advisor
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live OneCare safety scanner
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
World Mosaics
World Mosaics 2
World Mosaics 3 - Fairy Tales
World Mosaics 4
World Mosaics 5
World Mosaics 6
World of Zellians: Kingdom Builder ™
World Riddles: Animals
World Riddles: Secrets of the Ages
World Riddles: Seven Wonders
WOT for Internet Explorer
WPF Toolkit June 2009 (Version 3.5.40619.1)
Yahoo! Install Manager
Yahoo! Internet Mail
Yahoo! Software Update
YoWindow
Zuma's Revenge!
.
==== Event Viewer Messages From Past Week ========
.
5/5/2016 8:42:12 AM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server

application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\SYSTEM SID

(S-1-5-1Cool from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
5/5/2016 8:41:28 AM, Error: Service Control Manager [7000] - The Bitdefender 60-Second Virus Scanner Service service failed to start due to the following error: The system cannot

find the file specified.
5/1/2016 10:19:04 AM, Error: Schannel [36888] - The following fatal alert was generated: 43. The internal error state is 252.
4/30/2016 8:39:20 AM, Error: Schannel [36887] - The following fatal alert was received: 20.
.
==== End Of File ===========================



Any help you can give is greatly appreciated. Thanks!
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 11 Dec 2017
Posts: 10190
Location: Yorkshire

PostPosted: Thu May 05, 2016 9:33 pm    Post subject: Reply with quote

Looking over your logs, this may take some time, but I'll be back when I've finished analysing them.
_________________
Gary R Administrator at Malware Removal University


If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 11 Dec 2017
Posts: 10190
Location: Yorkshire

PostPosted: Thu May 05, 2016 11:24 pm    Post subject: Reply with quote

Quote:
Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post a log in the "Help with spyware removal" forum and wait for help.


Unless informed of in advance, failure to post replies within 3 days will result in this thread being closed.


Hi ldybadger

I'm Gary R,

Before we start: Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.

As an added safety precaution, before we start removing anything, I'd like you to make a backup of your Registry, which we can restore to if necessary.

Please click on THIS link, and follow the instructions for installing TCRB and creating a backup of your Registry.

Please observe these rules while we work:

  • Do not edit your logs in any way whatsoever.
  • Perform all actions in the order given.
  • If you don't know, stop and ask! Don't keep going on.
  • Please reply to this thread. Do not start a new topic.
  • Stick with it till you're given the all clear.
  • Remember, absence of symptoms does not mean the infection is all gone.
  • Don't attempt to install any new software (other than those I ask you to) until we've got your computer clean.
  • Don't attempt to clean your computer with any tools other than the ones I ask you to use during the cleanup process. If your defensive programmes warn you about any of those tools, be assured that they are not infected, and are safe to use.

If you can do these things, everything should go smoothly.



Quote:
It may be helpful to you to print out or take a copy of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.


Not too much of any real concern showing in your DDS logs, so I'd like you to run some additional scans for me ....


  • Download FRST to your Desktop.
  • Double click Frst.exe to launch it.
  • FRST will start to run.

    • When the tool opens click Yes to disclaimer.
    • Press the Scan button.
    • When finished scanning 2 logs will open on your Desktop, FRST.txt and Addition.txt
    • Please post them in your next reply.



Next ...

Please download AdwCleaner and save it to your desktop.


  • Double click AdwCleaner.exe to run it.
  • Click Scan.
  • A logfile will automatically open after the scan has finished.
  • Close the adwCleaner window, click ok to the prompt.
  • Please post the contents of that logfile with your next reply.
  • You can also find the logfile at C:\AdwCleaner[R1].txt.


AT THIS POINT, DO NOT ATTEMPT TO CLEAN ANYTHING THAT MAY BE FOUND

Summary of the logs I need from you in your next post:

  • FRST.txt
  • Addition.txt
  • ADWCleaner log


Please post each log separately to prevent it being cut off by the forum post size limiter. Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections.
_________________
Gary R Administrator at Malware Removal University


If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 11 Dec 2017
Posts: 10190
Location: Yorkshire

PostPosted: Sun May 08, 2016 8:38 pm    Post subject: Reply with quote

Quote:
Due to lack of response this topic is now closed.

If you still need help you must open a new thread in the Help with Spyware Removal forum, post a new log, and wait for a new helper.

If you have been helped and wish to donate to help with the costs of this volunteer site, please read Spyware Warrior Donations

Gary R

_________________
Gary R Administrator at Malware Removal University


If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   This topic is locked: you cannot edit posts or make replies.    Spyware Warrior Forum Index -> Help with spyware removal All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group