Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help

User Tag List

take2 100%cpu on aspire 5515 vista home

This is a discussion on take2 100%cpu on aspire 5515 vista home within the Virus/Trojan/Spyware Help forums, part of the Tech Support Forum category. Second try:/ this time with the problem happening! DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 9.0.8112.16421 Run by Clark at 14:03:12


Closed Thread
 
Thread Tools Search this Thread
Old 11-04-2016, 12:32 PM   #1
Registered Member
 
Join Date: Nov 2016
Location: Kansas
Posts: 2
OS: Vista Home Edition



Second try:/ this time with the problem happening!
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16421
Run by Clark at 14:03:12 on 2016-11-04
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.2813.1353 [GMT -5:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
SP: Microsoft Security Essentials *Enabled/Updated* {CDE0C533-D3CD-62A1-E772-AFADDF863628}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Acer\Mobility Center\MobilityService.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\mobsync.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Common Files\LogiShrd\sp6\LU1\LULnchr.exe
C:\Program Files\Common Files\LogiShrd\sp6\LU1\LogitechUpdate.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Clark\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\servicing\TrustedInstaller.exe
\\?\C:\Windows\system32\wbem\WMIADAP.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uWindow Title = Internet Explorer, optimized for Bing and MSN
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vb32&d=1116&m=aspire_5515
mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vb32&d=1116&m=aspire_5515
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
uRun: [CCleaner Monitoring] "c:\program files\ccleaner\CCleaner.exe" /MONITOR
mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [LManager] c:\progra~1\launch~1\LManager.exe
mRun: [BkupTray] "c:\program files\newtech infosystems\nti backup now 5\BkupTray.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Acer Assist Launcher] c:\program files\acer\acer assist\launcher.exe
mRun: [Acer Product Registration] "c:\program files\acer\acer registration\ACE1.exe" /startup
mRun: [PLFSetI] c:\windows\PLFSetI.exe
mRun: [eRecoveryService] <no file>
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
TCP: NameServer = 192.168.10.1
TCP: Interfaces\{7C5325C8-DDAD-4ABD-B964-171736805526} : DHCPNameServer = 192.168.10.1
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\clark\appdata\roaming\mozilla\firefox\profiles\gz984bmt.default\
FF - prefs.js: browser.startup.homepage - Google
FF - plugin: c:\program files\microsoft silverlight\5.1.50901.0\npctrlui.dll
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2016-11-04 16:35:22 -------- d-----w- c:\program files\Everything
2016-11-04 16:02:20 -------- d--h--w- c:\windows\msdownld.tmp
2016-11-04 15:55:36 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2016-11-04 15:55:36 252928 ----a-w- c:\windows\system32\dxdiag.exe
2016-11-04 15:55:36 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2016-11-04 15:55:30 519680 ----a-w- c:\windows\system32\d3d11.dll
2016-11-04 15:55:29 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2016-11-04 15:55:29 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2016-11-04 15:55:29 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2016-11-04 14:30:36 -------- d-----w- c:\users\clark\appdata\local\Blizzard Entertainment
2016-11-04 12:53:53 2829 ----a-w- c:\windows\DIIUnin.pif
2016-11-04 12:53:50 94208 ----a-w- c:\windows\DIIUnin.exe
2016-11-04 12:38:39 -------- d-----w- c:\program files\Diablo II
2016-11-04 06:21:28 9727984 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{37b1f842-a30c-4765-9ff4-a7d90a1c1fa5}\mpengine.dll
2016-11-04 02:17:10 -------- d-----w- c:\windows\TempFA741812-37EA-DDA1-73B7-5475ABDCE97F-Signatures
2016-11-04 01:51:27 -------- d-----w- c:\windows\system32\eu-ES
2016-11-04 01:51:27 -------- d-----w- c:\windows\system32\ca-ES
2016-11-04 01:51:26 -------- d-----w- c:\windows\system32\vi-VN
2016-11-04 01:42:26 -------- d-sh--w- c:\users\clark\appdata\roaming\.#
2016-11-04 01:27:09 -------- d-----w- c:\users\clark\appdata\local\Microsoft Games
2016-11-04 01:24:44 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2016-11-04 01:14:45 -------- d-----w- c:\windows\system32\EventProviders
2016-11-04 01:10:31 -------- d-----w- c:\users\clark\appdata\roaming\Logishrd
2016-11-04 01:08:00 -------- d-----w- c:\users\clark\appdata\local\Adobe
2016-11-03 22:53:38 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2016-11-03 22:53:38 49472 ----a-w- c:\windows\system32\netfxperf.dll
2016-11-03 22:53:38 297808 ----a-w- c:\windows\system32\mscoree.dll
2016-11-03 22:53:38 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2016-11-03 22:53:37 1130824 ----a-w- c:\windows\system32\dfshim.dll
2016-11-03 22:44:59 958464 ----a-w- c:\program files\microsoft games\minesweeper\MineSweeper.exe
2016-11-03 22:43:57 311808 ----a-w- c:\windows\system32\swprv.dll
2016-11-03 22:42:59 130560 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2016-11-03 22:41:58 226280 ----a-w- c:\windows\system32\drivers\volsnap.sys
2016-11-03 22:40:58 217088 ----a-w- c:\windows\system32\WerFault.exe
2016-11-03 22:39:59 245760 ----a-w- c:\windows\system32\scansetting.dll
2016-11-03 22:38:59 306176 ----a-w- c:\windows\system32\scesrv.dll
2016-11-03 22:37:54 180736 ----a-w- c:\windows\system32\netplwiz.dll
2016-11-03 22:36:59 61952 ----a-w- c:\windows\system32\wbem\xml\wmi2xml.dll
2016-11-03 22:13:40 -------- d-----w- c:\program files\VS Revo Group
2016-11-03 21:30:16 9727984 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2016-11-03 21:25:43 17920 ----a-w- c:\windows\system32\netevent.dll
2016-11-03 21:25:43 125952 ----a-w- c:\windows\system32\srvsvc.dll
2016-11-03 21:25:34 377344 ----a-w- c:\windows\system32\winhttp.dll
2016-11-03 21:25:25 411648 ----a-w- c:\windows\system32\drivers\http.sys
2016-11-03 21:25:25 30720 ----a-w- c:\windows\system32\httpapi.dll
2016-11-03 21:25:25 24064 ----a-w- c:\windows\system32\nshhttp.dll
2016-11-03 21:09:01 915640 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{263cbddb-aa9b-445d-b77c-e597eb7eac8c}\gapaengine.dll
2016-11-03 21:07:47 407720 ------w- c:\windows\system32\MpSigStub.exe
2016-11-03 20:57:00 -------- d-----w- c:\program files\Microsoft Security Client
2016-11-03 20:55:40 221568 ----a-w- c:\windows\system32\drivers\netio.sys
2016-11-03 20:29:00 -------- d-----w- c:\users\clark\appdata\local\Mozilla
2016-11-03 19:01:42 -------- d-----w- c:\windows\system32\MRT
2016-11-03 18:20:17 413696 ----a-w- c:\windows\system32\odbc32.dll
2016-11-03 18:20:14 708608 ----a-w- c:\program files\common files\system\ado\msado15.dll
2016-11-03 18:20:11 57344 ----a-w- c:\program files\common files\system\msadc\msadcs.dll
2016-11-03 18:20:11 253952 ----a-w- c:\program files\common files\system\ado\msadox.dll
2016-11-03 18:20:11 241664 ----a-w- c:\program files\common files\system\ado\msadomd.dll
2016-11-03 18:20:11 180224 ----a-w- c:\program files\common files\system\msadc\msadco.dll
2016-11-03 18:19:48 105984 ----a-w- c:\windows\system32\netiohlp.dll
2016-11-03 18:19:45 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2016-11-03 18:19:44 19968 ----a-w- c:\windows\system32\ARP.EXE
2016-11-03 18:19:43 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2016-11-03 18:19:42 10240 ----a-w- c:\windows\system32\finger.exe
2016-11-03 18:19:41 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2016-11-03 18:19:40 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2016-11-03 18:19:40 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2016-11-03 18:18:23 515584 ----a-w- c:\program files\windows mail\wab.exe
2016-11-03 18:18:22 66048 ----a-w- c:\program files\windows mail\wabmig.exe
2016-11-03 18:18:21 33280 ----a-w- c:\program files\windows mail\wabfind.dll
2016-11-03 18:18:20 502272 ----a-w- c:\windows\system32\usp10.dll
2016-11-03 18:18:15 75264 ----a-w- c:\windows\system32\drivers\dfsc.sys
2016-11-03 18:18:12 1162240 ----a-w- c:\windows\system32\mfc42u.dll
2016-11-03 18:18:12 1136640 ----a-w- c:\windows\system32\mfc42.dll
2016-11-03 18:18:08 1616384 ----a-w- c:\program files\windows mail\msoe.dll
2016-11-03 18:18:04 81920 ----a-w- c:\windows\system32\iccvid.dll
2016-11-03 18:16:57 10926592 ----a-w- c:\program files\movie maker\MOVIEMK.dll
2016-11-03 18:15:59 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2016-11-03 18:14:24 68096 ----a-w- c:\windows\system32\wlanhlp.dll
2016-11-03 18:14:24 513536 ----a-w- c:\windows\system32\wlansvc.dll
2016-11-03 18:14:24 302592 ----a-w- c:\windows\system32\wlansec.dll
2016-11-03 18:14:24 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2016-11-03 18:14:24 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2016-11-03 18:14:22 65024 ----a-w- c:\windows\system32\wlanapi.dll
2016-11-03 18:14:14 1401856 ----a-w- c:\windows\system32\msxml6.dll
2016-11-03 18:14:05 3602320 ----a-w- c:\windows\system32\ntkrnlpa.exe
2016-11-03 18:14:04 3550096 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-11-03 18:14:02 1205080 ----a-w- c:\windows\system32\ntdll.dll
2016-11-03 18:13:54 218624 ----a-w- c:\windows\system32\msv1_0.dll
2016-11-03 18:11:40 623616 ----a-w- c:\windows\system32\localspl.dll
2016-11-03 18:07:50 -------- d-----w- c:\program files\MSXML 4.0
2016-11-03 18:00:50 954752 ----a-w- c:\windows\system32\mfc40.dll
2016-11-03 18:00:49 954288 ----a-w- c:\windows\system32\mfc40u.dll
2016-11-03 18:00:46 36864 ----a-w- c:\windows\system32\rtutils.dll
2016-11-03 18:00:42 563712 ----a-w- c:\windows\system32\oleaut32.dll
2016-11-03 17:56:58 526336 ----a-w- c:\windows\system32\RMActivate_isv.exe
2016-11-03 17:56:58 518144 ----a-w- c:\windows\system32\RMActivate.exe
2016-11-03 17:56:56 471552 ----a-w- c:\windows\system32\secproc_isv.dll
2016-11-03 17:56:56 471552 ----a-w- c:\windows\system32\secproc.dll
2016-11-03 17:56:55 347136 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2016-11-03 17:56:55 346624 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2016-11-03 17:56:53 332288 ----a-w- c:\windows\system32\msdrm.dll
2016-11-03 17:56:52 152064 ----a-w- c:\windows\system32\secproc_ssp.dll
2016-11-03 17:56:50 152576 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2016-11-03 17:46:24 -------- d-----w- c:\program files\common files\InterVideo
2016-11-03 17:43:55 -------- d-----w- c:\program files\InterVideo
2016-11-03 17:43:11 1696256 ----a-w- c:\windows\system32\gameux.dll
2016-11-03 17:43:10 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2016-11-03 17:43:08 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2016-11-03 17:42:06 255848 ----a-w- c:\windows\system32\xactengine2_6.dll
2016-11-03 17:42:04 251672 ----a-w- c:\windows\system32\xactengine2_5.dll
2016-11-03 17:42:03 440080 ----a-w- c:\windows\system32\d3dx10.dll
2016-11-03 17:42:01 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2016-11-03 17:40:45 784896 ----a-w- c:\windows\system32\rpcrt4.dll
2016-11-03 17:40:24 429056 ----a-w- c:\windows\system32\EncDec.dll
2016-11-03 17:40:22 322560 ----a-w- c:\windows\system32\sbe.dll
2016-11-03 17:40:22 177664 ----a-w- c:\windows\system32\mpg2splt.ax
2016-11-03 17:40:21 153088 ----a-w- c:\windows\system32\sbeio.dll
2016-11-03 17:40:13 677888 ----a-w- c:\windows\system32\mstsc.exe
2016-11-03 17:40:13 2067968 ----a-w- c:\windows\system32\mstscax.dll
2016-11-03 17:40:12 63488 ----a-w- c:\windows\system32\tscupgrd.exe
2016-11-03 17:40:12 53248 ----a-w- c:\windows\system32\tsgqec.dll
2016-11-03 17:40:12 136192 ----a-w- c:\windows\system32\aaclient.dll
2016-11-03 17:40:06 912776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2016-11-03 17:40:03 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2016-11-03 17:38:42 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2016-11-03 17:38:37 49152 ----a-w- c:\windows\system32\csrsrv.dll
2016-11-03 17:38:37 375808 ----a-w- c:\windows\system32\winsrv.dll
2016-11-03 17:38:31 62464 ----a-w- c:\windows\system32\l3codeca.acm
2016-11-03 17:38:31 220672 ----a-w- c:\windows\system32\l3codecp.acm
2016-11-03 17:38:24 2048 ----a-w- c:\windows\system32\tzres.dll
2016-11-03 17:36:54 487424 ----a-w- c:\windows\system32\INT15.dll
2016-11-03 17:36:33 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2016-11-03 17:36:20 17952 ----a-w- c:\windows\system32\drivers\int15_64.sys
2016-11-03 17:36:20 12832 ----a-w- c:\windows\system32\drivers\int15.sys
2016-11-03 17:36:16 43520 ----a-w- c:\windows\system32\msdxm.tlb
2016-11-03 17:36:16 18432 ----a-w- c:\windows\system32\amcompat.tlb
2016-11-03 17:35:29 531968 ----a-w- c:\windows\system32\comctl32.dll
2016-11-03 17:35:21 243712 ----a-w- c:\windows\system32\rastls.dll
2016-11-03 17:34:20 4838 ----a-w- c:\windows\Suyin.reg
2016-11-03 17:34:20 200704 ----a-w- c:\windows\PLFSetI.exe
2016-11-03 17:34:19 626688 ----a-w- c:\windows\Image.dll
2016-11-03 17:34:19 262144 ----a-w- c:\windows\Acer Crystal Eye webcam.EXE
2016-11-03 17:32:56 -------- d-----w- c:\users\clark\appdata\local\ATI
2016-11-03 17:32:47 -------- d-----w- c:\users\clark\appdata\roaming\Acer
2016-11-03 17:32:47 -------- d-----w- c:\users\clark\appdata\local\Google
2016-11-03 17:32:09 -------- d-sh--w- C:\$RECYCLE.BIN
2016-11-03 17:31:25 -------- d-----w- c:\users\clark\appdata\local\VirtualStore
2016-11-03 17:30:31 -------- d-----w- c:\program files\Acer
2016-11-03 17:30:02 1418752 ----a-w- c:\program files\windows media player\setup_wm.exe
2016-11-03 17:30:01 310784 ----a-w- c:\windows\system32\unregmp2.exe
2016-11-03 17:22:50 172032 ----a-w- c:\windows\system32\wintrust.dll
2016-11-03 17:22:01 98304 ----a-w- c:\windows\system32\cabview.dll
.
==================== Find3M ====================
.
2016-11-04 16:01:53 979456 ----a-w- c:\windows\system32\MFH264Dec.dll
2016-11-04 15:55:39 4096 ----a-w- c:\windows\system32\drivers\en-us\dxgkrnl.sys.mui
.
============= FINISH: 14:11:33.26 ===============
Attached Files
File Type: txt attach.txt (3.7 KB, 15 views)
crossguy is offline  
Sponsored Links
Advertisement
 
Old 11-07-2016, 11:59 PM   #2
Security Team
Analyst
 
tekir06's Avatar
 
Join Date: Oct 2010
Location: Turkiye
Posts: 1,859
OS: Windows 7 (32 Bit)



Hello crossguy, Welcome to TSF.

My name is Tolga and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

If you haven't already, please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.
First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
Please download to and run all requested tools from your Desktop.
Perform everything in the correct order. Sometimes one step requires the previous one.
If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
My native language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
Back up important files before we start.

Now, let's get started, shall we? Please do the below steps.

STEP 1

Please download AdwCleaner from here and save it to your desktop.

Click the green 'Download now @bleepingcomputer' button.
Run AdwCleaner and select Scan
Once the Scan is done, select Clean
Once done it will ask to reboot, please allow the reboot.
On reboot, a log will be produced. It can also be found at C:\AdwCleaner\AdwCleaner[C#].txt
Please copy/paste the contents of the log in your next reply.

STEP 2

Please download Farbar Recovery Scan Tool and save it to your desktop.

Double-click to run it. When the tool opens click Yes to the disclaimer.
Make sure the Addition.txt button is ticked.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply.

=========================================================

Things I need to see in your next post:

  • AdwCleaner[C#].txt
  • FRST.txt
  • Addition.txt
__________________
tekir06 is offline  
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
updateflashplayer********.exe
I seem to have a Virus/Trojan/Malware (one of them anyways) that keeps randomly asking me to update something called updateflashplayer(random numbers and letters).exe. It says the path is: c:\users\S&L'Sh~1\AppData\Local\Temp\update... AVG Free (my anti-virus program) tells me that it is a threat...
smallfrie Resolved HJT Threads 30 06-09-2014 08:13 PM
Web page being redirected to other site while loading
Please help me to stop this. My email or any page I go to was being redirected to other site before being loaded and it is running very slowly. Sorry to post it on the wrong forum. I was nervous. Thank you so much for your help. ============================= DDS (Ver_2012-11-20.01) -...
carolynhoang75 Resolved HJT Threads 9 04-16-2013 05:17 PM
Vista Home Premium 32 won't boot
My Vista installation didn't startup one day after I installed Quicktax, it would just show the mobo splash screen, the POST info and then would just go black and freeze. It had been slowing down for a week or so then quit after I installed Quicktax. When I tried Safe Mode, it would load half of...
raiden1701 Motherboards, Bios & CPU 4 03-25-2011 01:34 PM
[SOLVED] Windows 7 pc can't see Vista pc on home network
I installed a new wireless router(Vizio) today. I have a Dell Windows 7 Professional pc, and HP Vista pc, and a Lenovo XP netbook. All 3 had no problem connecting to the internet after the installation of the new router. However, within the home network, the Windows 7 pc can't see the Vista pc. ...
avuncular Windows 7 , Windows Vista Support 9 02-27-2011 06:09 PM
Changing OS from Vista Home to XP Pro
Good morning! Needing a little help here. I have a desktop computer, an eMachines T3646, which I had at home that I have moved to my office. Our OS and software at the office runs on XP Pro SP2, and the desktop had Vista Home Basic 32 bit. I have successfully formatted the C: partition of the...
johnwyork Windows XP Support 2 02-03-2011 08:57 AM

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 08:11 PM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts