Page 1 of 7 12345 ... LastLast
Results 1 to 10 of 63

Thread: Trovi Attached

  1. #1
    Member Beadbud5000's Avatar
    Join Date
    Nov 2010
    Location
    Saint Petersburg, FL - USA
    Posts
    72

    Default Trovi Attached

    Trovi.com indicated a "brand" has attached itself to your browser. Firefox was affected here.
    I ran the diagnostic tool DLD?
    I can not zip
    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft® Windows Vista™ Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 3/30/2014 1:33:52 PM
    System Uptime: 4/28/2014 8:38:21 AM (1 hours ago)
    .
    Motherboard: ASUSTek Computer INC. | | A8V-XE
    Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ | Socket 939 | 2200/200mhz
    .
    ==== Disk Partitions =========================
    .
    A: is Removable
    C: is FIXED (NTFS) - 298 GiB total, 197.139 GiB free.
    D: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
    Description: Microsoft 6to4 Adapter
    Device ID: ROOT\*6TO4MP\0000
    Manufacturer: Microsoft
    Name: 6TO4 Adapter
    PNP Device ID: ROOT\*6TO4MP\0000
    Service: tunnel
    .
    Class GUID:
    Description:
    Device ID: ACPI\PNPB006\3&2411E6FE&0
    Manufacturer:
    Name:
    PNP Device ID: ACPI\PNPB006\3&2411E6FE&0
    Service:
    .
    ==== System Restore Points ===================
    .
    .
    ==== Installed Programs ======================
    .
    Adobe Flash Player 13 Plugin
    Google Chrome
    Google Update Helper
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Linux_Mint_Main
    Microsoft .NET Framework 3.5 SP1
    Microsoft Office XP Media Content
    Microsoft Office XP Small Business
    Mozilla Firefox 28.0 (x86 en-US)
    Mozilla Maintenance Service
    NVIDIA Display Control Panel
    NVIDIA Drivers
    PVSonyDll
    Spybot - Search & Destroy
    Ubuntu
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    VIA Rhine Family Fast Ethernet Adapter
    .
    ==== End Of File ===========================
    Please help!

    Also
    DDS (Ver_2012-11-20.01) - NTFS_x86
    Internet Explorer: 7.0.6000.16386
    Run by budzone at 9:33:19 on 2014-04-28
    Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1033.18.2046.932 [GMT -4:00]
    .
    .
    ============== Running Processes ================
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Windows\system32\CISVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
    C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = about:blank
    uProxyOverride = <-loopback>
    BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
    uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
    uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
    uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
    uRun: [Spybot-S&D Cleaning] "c:\program files\spybot - search & destroy 2\SDCleaner.exe" /autoclean
    uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
    uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
    mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide
    mRun: [SDTray] "c:\program files\spybot - search & destroy 2\SDTray.exe"
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000
    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
    .
    INFO: HKCU has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    .
    INFO: HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    TCP: NameServer = 65.32.5.111 65.32.5.112
    TCP: Interfaces\{97A0C729-663E-455B-B1FD-4EA2B468DA2F} : DHCPNameServer = 65.32.5.111 65.32.5.112
    Notify: SDWinLogon - SDWinLogon.dll
    AppInit_DLLs= c:\progra~1\searchprotect\searchprotect\bin\spvc32loader.dll c:\progra~1\optimi~1\optpro~2.dll
    LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\34.0.1847.131\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
    Hosts: 127.0.0.1 www.spywareinfo.com
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\users\budzone\appdata\roaming\mozilla\firefox\profiles\dn0p235l.default\
    FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?gd=&ctid=CT3325805&octid=EB_ORIGINAL_CTID&ISID=MC7C07C40-D17D-4175-BB31-27F6BC352BBB&SearchSource=55&CUI=&UM=5&UP=SPD04EF258-F5DF-4F9B-9C33-0211D70826E1&SSPV=
    FF - plugin: c:\program files\google\update\1.3.23.9\npGoogleUpdate3.dll
    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_182.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 SDHookDriver;Hook Test Driver;c:\program files\spybot - search & destroy 2\SDHookDrv32.sys [2014-3-30 46248]
    R1 tStLibG;tStLibG;c:\windows\system32\drivers\tStLibG.sys [2014-3-30 55224]
    R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2014-3-30 1153368]
    R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\spybot - search & destroy 2\SDFSSvc.exe [2014-3-30 3921880]
    R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\spybot - search & destroy 2\SDUpdSvc.exe [2014-3-30 1042272]
    R2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files\spybot - search & destroy 2\SDWSCSvc.exe [2014-3-30 171416]
    R3 FETND6V;VIA Rhine Family Fast Ethernet Adapter Driver;c:\windows\system32\drivers\fetnd6v.sys [2009-5-15 43520]
    S2 ca82e1a5;Optimizer Pro Crash Monitor;c:\windows\system32\rundll32.exe [2006-11-2 44544]
    S2 CltMngSvc;Search Protect by Conduit Service;c:\progra~1\searchprotect\main\bin\cltmngsvc.exe --> c:\progra~1\searchprotect\main\bin\CltMngSvc.exe [?]
    S2 Level Quality Watcher;Level Quality Watcher;c:\program files\level quality watcher\v1.01\levelqualitywatcher32.exe run options=01110010010000000000000000000000 sourceguid=bba5481a-926b-4561-bd79-249f618495e6 --> c:\program files\level quality watcher\v1.01\levelqualitywatcher32.exe run options=01110010010000000000000000000000 sourceguid=BBA5481A-926B-4561-BD79-249F618495E6 [?]
    S2 Update PlurPush;Update PlurPush;"c:\program files\plurpush\updateplurpush.exe" --> c:\program files\plurpush\updatePlurPush.exe [?]
    .
    =============== Created Last 30 ================
    .
    2014-04-26 10:53:29 -------- dc----w- c:\program files\SearchProtect
    2014-04-25 11:06:52 8050496 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{52e41676-e821-4cc7-a7b1-c7595233dd5b}\mpengine.dll
    2014-04-24 12:42:47 -------- d-----w- c:\users\budzone\appdata\local\Google
    2014-04-13 17:56:25 -------- d-----w- C:\ubuntu
    2014-04-12 12:14:25 -------- d-----w- C:\mint
    2014-04-10 02:15:47 -------- dc----w- C:\bud
    2014-04-08 16:08:13 -------- dc----w- C:\787a51d3de09fd4ab9
    2014-04-08 00:36:23 -------- dc----w- c:\program files\NVIDIA Corporation
    2014-04-08 00:32:44 -------- dc----w- C:\3a0cf218a18bad4512376e
    2014-04-08 00:29:38 229888 ----a-w- c:\windows\system32\msshsq.dll
    2014-04-05 10:26:34 378368 ----a-w- c:\windows\system32\winhttp.dll
    2014-04-05 10:25:27 268800 ----a-w- c:\windows\system32\es.dll
    2014-04-05 10:25:06 549888 ----a-w- c:\windows\system32\rpcss.dll
    2014-04-05 10:25:05 654336 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
    2014-04-05 10:25:05 614912 ----a-w- c:\windows\system32\wbem\fastprox.dll
    2014-04-05 10:25:05 501760 ----a-w- c:\windows\system32\wbem\WmiPrvSD.dll
    2014-04-05 10:25:05 247296 ----a-w- c:\windows\system32\wbem\WmiPrvSE.exe
    2014-04-05 10:25:05 24576 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
    2014-04-05 10:25:05 130560 ----a-w- c:\windows\system32\wbem\WmiDcPrv.dll
    2014-04-05 10:25:04 97280 ----a-w- c:\windows\system32\iasrecst.dll
    2014-04-05 10:25:04 53248 ----a-w- c:\windows\system32\iasads.dll
    2014-04-05 10:25:04 37888 ----a-w- c:\windows\system32\iasdatastore.dll
    2014-04-05 10:25:04 158720 ----a-w- c:\windows\system32\sdohlp.dll
    2014-04-05 10:24:05 9728 ----a-w- c:\windows\system32\LAPRXY.DLL
    2014-04-05 10:24:05 223232 ----a-w- c:\windows\system32\WMASF.DLL
    2014-04-05 10:24:05 2048 ----a-w- c:\windows\system32\asferror.dll
    2014-04-05 10:23:52 712192 ----a-w- c:\windows\system32\WindowsCodecs.dll
    2014-04-05 10:23:52 425472 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
    2014-04-05 10:23:51 347136 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
    2014-04-05 10:23:15 61440 ----a-w- c:\windows\system32\ntprint.exe
    2014-04-05 10:23:15 220160 ----a-w- c:\windows\system32\ntprint.dll
    2014-04-05 10:23:14 120320 ----a-w- c:\windows\system32\dhcpcsvc6.dll
    2014-04-05 10:23:14 10240 ----a-w- c:\windows\system32\dhcpcmonitor.dll
    2014-04-05 10:23:13 1984512 ----a-w- c:\windows\system32\authui.dll
    2014-04-05 10:23:11 8138240 ----a-w- c:\windows\system32\ssBranded.scr
    2014-04-05 10:23:11 69632 ----a-w- c:\windows\system32\sendmail.dll
    2014-04-05 10:22:32 441856 ----a-w- c:\windows\system32\win32spl.dll
    2014-04-05 10:22:32 37376 ----a-w- c:\windows\system32\printcom.dll
    2014-04-05 10:22:13 2031104 ----a-w- c:\windows\system32\win32k.sys
    2014-04-05 10:21:53 14848 ----a-w- c:\windows\system32\wshrm.dll
    2014-04-05 10:21:53 113664 ----a-w- c:\windows\system32\drivers\rmcast.sys
    2014-04-05 10:21:24 43520 ----a-w- c:\windows\system32\msdxm.tlb
    2014-04-05 10:21:24 313344 ----a-w- c:\windows\system32\wmpdxm.dll
    2014-04-05 10:21:24 18432 ----a-w- c:\windows\system32\amcompat.tlb
    2014-04-05 10:20:32 312320 ----a-w- c:\windows\system32\msdrm.dll
    2014-04-05 10:20:31 435712 ----a-w- c:\windows\system32\RMActivate_ssp.exe
    2014-04-05 10:20:31 154112 ----a-w- c:\windows\system32\secproc_ssp.dll
    2014-04-05 10:20:30 523776 ----a-w- c:\windows\system32\RMActivate_isv.exe
    2014-04-05 10:20:30 515584 ----a-w- c:\windows\system32\RMActivate.exe
    2014-04-05 10:20:30 472576 ----a-w- c:\windows\system32\secproc.dll
    2014-04-05 10:20:30 431104 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
    2014-04-05 10:20:30 154624 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
    2014-04-05 10:20:29 473088 ----a-w- c:\windows\system32\secproc_isv.dll
    2014-04-05 10:18:42 53760 ----a-w- c:\windows\system32\drivers\hdaudbus.sys
    2014-04-04 23:19:07 97800 ----a-w- c:\windows\system32\infocardapi.dll
    2014-04-04 23:19:07 622080 ----a-w- c:\windows\system32\icardagt.exe
    2014-04-04 23:19:07 37384 ----a-w- c:\windows\system32\infocardcpl.cpl
    2014-04-04 23:19:07 11264 ----a-w- c:\windows\system32\icardres.dll
    2014-04-04 23:19:02 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
    2014-04-04 23:19:02 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll
    2014-04-04 23:19:02 326160 ----a-w- c:\windows\system32\PresentationHost.exe
    2014-04-04 23:19:02 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2014-04-03 14:02:51 -------- d-----w- c:\users\budzone\appdata\local\Adobe
    2014-03-31 23:02:33 72704 ----a-w- c:\windows\system32\fontsub.dll
    2014-03-31 23:02:33 34304 ----a-w- c:\windows\system32\atmlib.dll
    2014-03-31 23:02:33 289792 ----a-w- c:\windows\system32\atmfd.dll
    2014-03-31 23:02:33 24064 ----a-w- c:\windows\system32\lpk.dll
    2014-03-31 23:02:33 156672 ----a-w- c:\windows\system32\t2embed.dll
    2014-03-31 23:02:33 10240 ----a-w- c:\windows\system32\dciman32.dll
    2014-03-31 23:00:43 84992 ----a-w- c:\windows\system32\drivers\srvnet.sys
    2014-03-31 23:00:43 306688 ----a-w- c:\windows\system32\drivers\srv.sys
    2014-03-31 23:00:06 241152 ----a-w- c:\windows\system32\PortableDeviceApi.dll
    2014-03-31 23:00:05 95232 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
    2014-03-31 23:00:05 160768 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
    2014-03-31 22:58:53 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
    2014-03-31 22:58:53 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
    2014-03-31 22:58:53 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
    2014-03-31 22:58:53 19968 ----a-w- c:\windows\system32\ARP.EXE
    2014-03-31 22:58:53 17920 ----a-w- c:\windows\system32\ROUTE.EXE
    2014-03-31 22:58:53 15360 ----a-w- c:\windows\system32\netevent.dll
    2014-03-31 22:58:53 11264 ----a-w- c:\windows\system32\MRINFO.EXE
    2014-03-31 22:58:53 103936 ----a-w- c:\windows\system32\netiohlp.dll
    2014-03-31 22:58:53 10240 ----a-w- c:\windows\system32\finger.exe
    2014-03-31 22:57:52 704000 ----a-w- c:\windows\system32\PhotoScreensaver.scr
    2014-03-31 22:57:51 356352 ----a-w- c:\windows\system32\wbem\wbemcomn.dll
    2014-03-31 22:57:50 258232 ----a-w- c:\windows\system32\drivers\acpi.sys
    2014-03-31 22:57:50 24064 ----a-w- c:\windows\system32\wtsapi32.dll
    2014-03-31 22:57:48 542720 ----a-w- c:\windows\system32\sysmain.dll
    2014-03-31 22:57:47 67584 ----a-w- c:\windows\system32\wlanhlp.dll
    2014-03-31 22:57:47 502784 ----a-w- c:\windows\system32\wlansvc.dll
    2014-03-31 22:57:47 47104 ----a-w- c:\windows\system32\wlanapi.dll
    2014-03-31 22:57:47 297984 ----a-w- c:\windows\system32\wlansec.dll
    2014-03-31 22:57:47 290816 ----a-w- c:\windows\system32\wlanmsm.dll
    2014-03-31 22:57:17 194560 ----a-w- c:\windows\system32\WebClnt.dll
    2014-03-31 22:57:17 110080 ----a-w- c:\windows\system32\drivers\mrxdav.sys
    2014-03-31 22:56:44 2048 ----a-w- c:\windows\system32\msxml6r.dll
    2014-03-31 22:56:44 2048 ----a-w- c:\windows\system32\msxml3r.dll
    2014-03-31 22:56:44 1406464 ----a-w- c:\windows\system32\msxml6.dll
    2014-03-31 22:56:44 1260032 ----a-w- c:\windows\system32\msxml3.dll
    2014-03-31 22:55:58 58368 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
    2014-03-31 22:55:58 211968 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
    2014-03-31 22:55:58 102400 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
    2014-03-31 22:55:26 49664 ----a-w- c:\windows\system32\csrsrv.dll
    2014-03-31 22:55:26 376320 ----a-w- c:\windows\system32\winsrv.dll
    2014-03-31 22:54:53 98816 ----a-w- c:\windows\system32\mfps.dll
    2014-03-31 22:54:53 52736 ----a-w- c:\windows\system32\rrinstaller.exe
    2014-03-31 22:54:53 2855424 ----a-w- c:\windows\system32\mf.dll
    2014-03-31 22:54:53 24576 ----a-w- c:\windows\system32\mfpmp.exe
    2014-03-31 22:54:53 2048 ----a-w- c:\windows\system32\mferror.dll
    2014-03-31 22:54:07 3502480 ----a-w- c:\windows\system32\ntkrnlpa.exe
    2014-03-31 22:54:06 3468168 ----a-w- c:\windows\system32\ntoskrnl.exe
    2014-03-31 22:51:51 434176 ----a-w- c:\windows\system32\vbscript.dll
    2014-03-31 22:51:10 71680 ----a-w- c:\windows\system32\atl.dll
    2014-03-31 22:50:06 297472 ----a-w- c:\windows\system32\gdi32.dll
    2014-03-31 22:49:35 41984 ----a-w- c:\windows\system32\drivers\monitor.sys
    2014-03-31 22:49:35 1060920 ----a-w- c:\windows\system32\drivers\ntfs.sys
    2014-03-31 22:49:05 500736 ----a-w- c:\windows\system32\msdtcprx.dll
    2014-03-31 22:49:05 30208 ----a-w- c:\windows\system32\xolehlp.dll
    2014-03-31 22:48:27 156160 ----a-w- c:\windows\system32\wkssvc.dll
    2014-03-31 22:47:43 36352 ----a-w- c:\windows\system32\tsgqec.dll
    2014-03-31 22:47:43 1871872 ----a-w- c:\windows\system32\mstscax.dll
    2014-03-31 22:47:43 116736 ----a-w- c:\windows\system32\aaclient.dll
    2014-03-31 22:46:53 303616 ----a-w- c:\windows\system32\wmpeffects.dll
    2014-03-31 22:45:58 414208 ----a-w- c:\windows\system32\msscp.dll
    2014-03-31 22:45:33 713728 ----a-w- c:\windows\system32\timedate.cpl
    2014-03-31 22:45:03 356864 ----a-w- c:\windows\system32\MediaMetadataHandler.dll
    2014-03-31 22:44:37 86016 ----a-w- c:\windows\system32\icfupgd.dll
    2014-03-31 22:44:37 63488 ----a-w- c:\windows\system32\drivers\mpsdrv.sys
    2014-03-31 22:44:37 396800 ----a-w- c:\windows\system32\MPSSVC.dll
    2014-03-31 22:44:37 392192 ----a-w- c:\windows\system32\FirewallAPI.dll
    2014-03-31 22:44:37 16896 ----a-w- c:\windows\system32\wfapigp.dll
    2014-03-31 22:44:36 61952 ----a-w- c:\windows\system32\cmifw.dll
    2014-03-31 22:44:09 150016 ----a-w- c:\program files\movie maker\MOVIEMK.exe
    2014-03-31 22:44:08 23040 ----a-w- c:\program files\movie maker\WMM2EXT.dll
    2014-03-31 22:44:08 195072 ----a-w- c:\program files\movie maker\WMM2AE.dll
    2014-03-31 22:44:08 10922496 ----a-w- c:\program files\movie maker\MOVIEMK.dll
    2014-03-31 22:42:51 1244672 ----a-w- c:\windows\system32\mcmde.dll
    2014-03-31 22:42:50 80896 ----a-w- c:\windows\system32\MSNP.ax
    2014-03-31 22:42:50 68608 ----a-w- c:\windows\system32\Mpeg2Data.ax
    2014-03-31 22:42:50 57856 ----a-w- c:\windows\system32\MSDvbNP.ax
    2014-03-31 22:42:50 428032 ----a-w- c:\windows\system32\EncDec.dll
    2014-03-31 22:42:50 292352 ----a-w- c:\windows\system32\psisdecd.dll
    2014-03-31 22:42:50 217088 ----a-w- c:\windows\system32\psisrndr.ax
    2014-03-31 22:42:50 177152 ----a-w- c:\windows\system32\mpg2splt.ax
    2014-03-31 22:40:44 2048 ----a-w- c:\windows\system32\tzres.dll
    2014-03-31 22:40:05 696832 ----a-w- c:\windows\system32\localspl.dll
    2014-03-31 22:38:55 45112 ----a-w- c:\windows\system32\drivers\pciidex.sys
    2014-03-31 22:38:55 21560 ----a-w- c:\windows\system32\drivers\atapi.sys
    2014-03-31 22:38:55 211000 ----a-w- c:\windows\system32\drivers\volsnap.sys
    2014-03-31 22:38:55 20024 ----a-w- c:\windows\system32\drivers\viaide.sys
    2014-03-31 22:38:55 154624 ----a-w- c:\windows\system32\drivers\nwifi.sys
    2014-03-31 22:38:55 109624 ----a-w- c:\windows\system32\drivers\ataport.sys
    2014-03-31 22:38:43 104448 ----a-w- c:\windows\system32\DWWIN.EXE
    2014-03-31 22:38:28 2923520 ----a-w- c:\windows\explorer.exe
    2014-03-31 22:37:55 8704 ----a-w- c:\windows\system32\hcrstco.dll
    2014-03-31 22:37:55 8704 ----a-w- c:\windows\system32\hccoin.dll
    2014-03-31 22:37:55 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
    2014-03-31 22:37:55 192000 ----a-w- c:\windows\system32\drivers\usbhub.sys
    2014-03-31 22:37:54 73216 ----a-w- c:\windows\system32\drivers\usbccgp.sys
    2014-03-31 22:37:54 38400 ----a-w- c:\windows\system32\drivers\usbehci.sys
    2014-03-31 22:37:54 23040 ----a-w- c:\windows\system32\drivers\usbuhci.sys
    2014-03-31 22:37:54 224768 ----a-w- c:\windows\system32\drivers\usbport.sys
    2014-03-31 22:37:37 97792 ----a-w- c:\windows\system32\cabview.dll
    2014-03-31 22:37:09 171520 ----a-w- c:\windows\system32\wintrust.dll
    2014-03-31 22:36:34 494592 ----a-w- c:\windows\system32\kerberos.dll
    2014-03-31 22:36:33 272384 ----a-w- c:\windows\system32\schannel.dll
    2014-03-31 22:36:03 24064 ----a-w- c:\windows\system32\netcfg.exe
    2014-03-31 22:32:03 1585664 ----a-w- c:\windows\system32\setupapi.dll
    2014-03-31 22:30:49 62464 ----a-w- c:\windows\system32\l3codeca.acm
    2014-03-31 22:30:49 220672 ----a-w- c:\windows\system32\l3codecp.acm
    2014-03-31 22:30:26 25088 ----a-w- c:\windows\system32\drivers\tunnel.sys
    2014-03-31 22:30:26 22016 ----a-w- c:\windows\system32\netiougc.exe
    2014-03-31 22:30:26 213592 ----a-w- c:\windows\system32\drivers\netio.sys
    2014-03-31 22:30:26 179712 ----a-w- c:\windows\system32\iphlpsvc.dll
    2014-03-31 22:30:26 167424 ----a-w- c:\windows\system32\tcpipcfg.dll
    2014-03-31 22:30:26 15360 ----a-w- c:\windows\system32\drivers\TUNMP.SYS
    2014-03-31 22:30:25 815104 ----a-w- c:\windows\system32\drivers\tcpip.sys
    2014-03-31 22:29:55 25600 ----a-w- c:\windows\system32\amxread.dll
    2014-03-31 22:29:55 14848 ----a-w- c:\windows\system32\apilogen.dll
    2014-03-31 22:28:42 33280 ----a-w- c:\windows\system32\slwmi.dll
    2014-03-31 22:28:42 268288 ----a-w- c:\windows\system32\mcbuilder.exe
    2014-03-31 22:28:42 223232 ----a-w- c:\windows\system32\SLC.dll
    2014-03-31 22:28:41 57856 ----a-w- c:\windows\system32\SLUINotify.dll
    2014-03-31 22:28:41 566784 ----a-w- c:\windows\system32\SLCommDlg.dll
    2014-03-31 22:28:41 351232 ----a-w- c:\windows\system32\SLUI.exe
    2014-03-31 22:28:41 186368 ----a-w- c:\windows\system32\SLLUA.exe
    2014-03-31 22:28:38 39936 ----a-w- c:\windows\system32\slcinst.dll
    2014-03-31 22:28:38 2605568 ----a-w- c:\windows\system32\SLsvc.exe
    2014-03-31 21:20:49 96760 ----a-w- c:\windows\system32\dfshim.dll
    2014-03-31 21:20:49 41984 ----a-w- c:\windows\system32\netfxperf.dll
    2014-03-31 21:20:47 83968 ----a-w- c:\windows\system32\mscories.dll
    2014-03-31 21:20:47 282112 ----a-w- c:\windows\system32\mscoree.dll
    2014-03-31 21:20:47 158720 ----a-w- c:\windows\system32\mscorier.dll
    2014-03-31 21:04:16 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
    2014-03-31 21:04:15 4247552 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
    2014-03-31 21:04:15 1686528 ----a-w- c:\windows\system32\gameux.dll
    2014-03-31 21:03:31 1645568 ----a-w- c:\windows\system32\connect.dll
    2014-03-31 20:59:36 -------- d-----w- c:\windows\system32\MRT
    2014-03-31 20:58:35 974336 ----a-w- c:\windows\system32\crypt32.dll
    2014-03-31 20:57:29 8147968 ----a-w- c:\windows\system32\wmploc.DLL
    2014-03-31 20:57:29 7680 ----a-w- c:\windows\system32\spwmp.dll
    2014-03-31 20:57:28 4096 ----a-w- c:\windows\system32\msdxm.ocx
    2014-03-31 20:57:28 4096 ----a-w- c:\windows\system32\dxmasf.dll
    2014-03-31 20:57:28 168960 ----a-w- c:\program files\windows media player\wmplayer.exe
    2014-03-31 20:57:28 107520 ----a-w- c:\program files\windows media player\wmpshare.exe
    2014-03-31 20:57:28 107520 ----a-w- c:\program files\windows media player\wmpconfig.exe
    2014-03-31 20:57:26 311296 ----a-w- c:\windows\system32\unregmp2.exe
    2014-03-31 20:57:26 1418240 ----a-w- c:\program files\windows media player\setup_wm.exe
    2014-03-31 18:19:16 -------- d-----w- c:\program files\Microsoft ActiveSync
    2014-03-31 18:17:49 -------- dc----w- c:\program files\common files\L&H
    2014-03-31 15:15:30 -------- d-----w- c:\users\budzone\appdata\roaming\DriverFinder
    2014-03-31 13:20:08 -------- d-----w- c:\users\budzone\appdata\local\WindowsUpdate
    2014-03-31 12:43:14 707072 ----a-w- c:\program files\common files\system\wab32.dll
    2014-03-31 12:43:14 41984 ----a-w- c:\program files\windows mail\wabimp.dll
    2014-03-31 12:43:14 39424 ----a-w- c:\windows\system32\ACCTRES.dll
    2014-03-31 12:43:14 1098752 ----a-w- c:\program files\common files\system\wab32res.dll
    2014-03-31 12:43:13 87040 ----a-w- c:\windows\system32\msoert2.dll
    2014-03-31 12:43:13 2836992 ----a-w- c:\program files\windows mail\MSOERES.dll
    2014-03-31 12:43:13 205824 ----a-w- c:\windows\system32\msoeacct.dll
    2014-03-31 12:43:13 1614848 ----a-w- c:\program files\windows mail\msoe.dll
    2014-03-31 12:43:11 397312 ----a-w- c:\program files\windows mail\WinMail.exe
    2014-03-31 12:43:10 81408 ----a-w- c:\program files\windows mail\oeimport.dll
    2014-03-31 12:43:10 24064 ----a-w- c:\program files\common files\system\DirectDB.dll
    2014-03-31 12:42:42 175104 ----a-w- c:\windows\system32\wdigest.dll
    2014-03-31 12:42:41 7680 ----a-w- c:\windows\system32\lsass.exe
    2014-03-31 12:42:41 72704 ----a-w- c:\windows\system32\secur32.dll
    2014-03-31 12:42:41 408136 ----a-w- c:\windows\system32\drivers\ksecdd.sys
    2014-03-31 12:42:41 216576 ----a-w- c:\windows\system32\msv1_0.dll
    2014-03-31 12:42:41 1233920 ----a-w- c:\windows\system32\lsasrv.dll
    2014-03-31 11:26:48 -------- d-----w- c:\users\budzone\appdata\local\Macromedia
    2014-03-31 00:04:50 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2014-03-31 00:04:50 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
    2014-03-30 21:50:47 18968 ----a-w- c:\windows\system32\sdnclean.exe
    2014-03-30 21:47:52 -------- d-----w- c:\program files\Spybot - Search & Destroy 2
    2014-03-30 21:25:19 -------- d-----w- c:\windows\Panther
    2014-03-30 19:26:43 55224 ----a-w- c:\windows\system32\drivers\tStLibG.sys
    2014-03-30 18:46:09 -------- d-----w- c:\programdata\Spybot - Search & Destroy
    2014-03-30 18:46:09 -------- d-----w- c:\program files\Spybot - Search & Destroy
    2014-03-30 18:30:32 454656 ----a-w- c:\program files\common files\system\msadc\msadce.dll
    2014-03-30 18:30:10 66048 ----a-w- c:\program files\windows sidebar\sbdrop.dll
    2014-03-30 18:30:10 1232896 ----a-w- c:\program files\windows sidebar\sidebar.exe
    2014-03-30 18:30:10 11776 ----a-w- c:\windows\system32\sbunattend.exe
    2014-03-30 18:29:57 83968 ----a-w- c:\windows\system32\dnsrslvr.dll
    2014-03-30 18:29:57 24576 ----a-w- c:\windows\system32\dnscacheugc.exe
    2014-03-30 18:29:42 996352 ----a-w- c:\windows\system32\WMNetMgr.dll
    2014-03-30 18:29:42 94720 ----a-w- c:\windows\system32\logagent.exe
    2014-03-30 18:29:13 84480 ----a-w- c:\windows\system32\INETRES.dll
    2014-03-30 18:29:13 737792 ----a-w- c:\windows\system32\inetcomm.dll
    2014-03-30 18:28:55 60928 ----a-w- c:\windows\system32\msasn1.dll
    2014-03-30 18:28:41 5120 ----a-w- c:\windows\system32\wmi.dll
    2014-03-30 18:28:41 152576 ----a-w- c:\windows\system32\imagehlp.dll
    2014-03-30 18:28:41 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
    2014-03-30 18:28:27 788992 ----a-w- c:\windows\system32\rpcrt4.dll
    2014-03-30 18:27:55 148480 ----a-w- c:\windows\system32\iisRtl.dll
    2014-03-30 18:27:54 8192 ----a-w- c:\windows\system32\iisrstap.dll
    2014-03-30 18:27:54 51200 ----a-w- c:\windows\system32\admwprox.dll
    2014-03-30 18:27:54 14848 ----a-w- c:\windows\system32\iisreset.exe
    2014-03-30 18:27:54 10752 ----a-w- c:\windows\system32\wamregps.dll
    2014-03-30 18:27:51 396800 ----a-w- c:\windows\system32\drivers\http.sys
    2014-03-30 18:27:51 31232 ----a-w- c:\windows\system32\httpapi.dll
    2014-03-30 18:27:51 24064 ----a-w- c:\windows\system32\nshhttp.dll
    2014-03-30 18:26:22 130048 ----a-w- c:\windows\system32\drivers\srv2.sys
    2014-03-30 18:26:07 274432 ----a-w- c:\windows\system32\raschap.dll
    2014-03-30 18:26:07 232960 ----a-w- c:\windows\system32\rastls.dll
    2014-03-30 18:25:50 321536 ----a-w- c:\windows\system32\WSDApi.dll
    2014-03-30 18:25:35 633856 ----a-w- c:\windows\system32\user32.dll
    2014-03-30 18:25:04 50176 ----a-w- c:\windows\system32\iyuv_32.dll
    2014-03-30 18:25:04 22528 ----a-w- c:\windows\system32\msyuv.dll
    2014-03-30 18:25:04 1327616 ----a-w- c:\windows\system32\quartz.dll
    2014-03-30 18:25:04 11776 ----a-w- c:\windows\system32\tsbyuv.dll
    2014-03-30 18:25:03 88576 ----a-w- c:\windows\system32\avifil32.dll
    2014-03-30 18:25:03 82944 ----a-w- c:\windows\system32\mciavi32.dll
    2014-03-30 18:25:03 65024 ----a-w- c:\windows\system32\avicap32.dll
    2014-03-30 18:25:03 31232 ----a-w- c:\windows\system32\msvidc32.dll
    2014-03-30 18:25:03 13312 ----a-w- c:\windows\system32\msrle32.dll
    2014-03-30 18:25:03 123904 ----a-w- c:\windows\system32\msvfw32.dll
    2014-03-30 18:24:43 750080 ----a-w- c:\windows\system32\qmgr.dll
    2014-03-30 18:24:18 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
    2014-03-30 18:23:57 8050496 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
    2014-03-30 18:23:28 231584 ------w- c:\windows\system32\MpSigStub.exe
    2014-03-30 17:58:45 -------- d-----w- c:\users\budzone\appdata\local\Mozilla
    2014-03-30 17:58:18 -------- d-----w- c:\program files\Mozilla Maintenance Service
    2014-03-30 17:56:26 -------- d-sh--w- c:\windows\Installer
    2014-03-30 17:56:21 -------- d-----w- C:\temp
    2014-03-30 17:56:17 -------- d-----w- c:\program files\Level Quality Watcher
    2014-03-30 17:55:40 -------- d-----w- c:\program files\PlurPush
    2014-03-30 17:08:18 -------- dcsh--w- C:\Boot
    .
    ==================== Find3M ====================
    .
    2014-04-05 10:24:31 36864 ----a-w- c:\windows\system32\drivers\en-us\http.sys.mui
    2014-03-31 22:35:41 1793536 ----a-w- c:\windows\system32\NlsLexicons0045.dll
    2014-03-31 22:31:51 5632 ----a-w- c:\windows\system32\drivers\en-us\sermouse.sys.mui
    2014-03-31 22:29:55 40960 ----a-w- c:\windows\apppatch\apihex86.dll
    2014-03-31 21:04:16 449024 ----a-w- c:\windows\apppatch\AcSpecfc.dll
    2014-03-31 21:04:16 2560 ----a-w- c:\windows\apppatch\AcRes.dll
    2014-03-31 21:04:16 2143744 ----a-w- c:\windows\apppatch\AcGenral.dll
    2014-03-31 21:04:15 537600 ----a-w- c:\windows\apppatch\AcLayers.dll
    2014-03-31 21:04:15 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll
    .
    ============= FINISH: 9:37:21.78 ===============
    Last edited by tashi; 2014-04-28 at 17:25. Reason: Merged two posts, removed self quote. :-)
    Bud

  2. #2
    Emeritus-Security Expert
    Join Date
    Nov 2005
    Location
    Florida's SpaceCoast
    Posts
    15,208

    Default



    You have a lot of bogus toolbars and garbage installed, lets do this

    Do this first...Important

    Disable the TeaTimer, leave it disabled, do not turn it back on until we're done or it will prevent fixes from taking

    • Run Spybot-S&D in Advanced Mode.
    • If it is not already set to do this Go to the Mode menu select "Advanced Mode"
    • On the left hand side, Click on Tools
    • Then click on the Resident Icon in the List
    • Uncheck "Resident TeaTimer" and OK any prompts.
    • Restart your computer.<--You need to do this for it to take effect

    Please do not proceed until the TeaTimer is disabled






    -AdwCleaner-by Xplode

    Click on this link to download : ADWCleaner
    Click on ONE of the Two Blue Download Now buttons That have a blue arrow beside them and save it to your desktop.

    Do not click on any links in the top Advertisment.



    • Close all open programs and internet browsers.
    • Double click on AdwCleaner.exe to run the tool.
    • Click on Scan.
    • After the scan is complete click on "Clean"
    • Confirm each time with Ok.
    • Your computer will be rebooted automatically. A text file will open after the restart.
    • Please post the content of that logfile with your next reply.
    • You can find the logfile at C:\AdwCleaner[S1].txt as well.







    Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    Microsoft MVP Consumer Security 2007-2008-2009-2010-2011-2012-2013-2014

    ERROR MESSAGE 386
    No KeyBoard Detected
    Press F1 To Continue

    Just a reminder that threads will be closed if no reply in 3 days.

  3. #3
    Member Beadbud5000's Avatar
    Join Date
    Nov 2010
    Location
    Saint Petersburg, FL - USA
    Posts
    72

    Default Re:trovi

    Hi

    I have the web version of Spybot. TeaTimer does not exist here.
    I ran spybot scan several times. I tried the Deep Root scan too and it found nothing.
    I just today loaded the Firefox update that was just released.
    I will only know for sure if that fixed the problem when I reboot my computer so you will get a second note today.

    Trovi.com zapped Firefox with hereto sexual ads that are annoy as I am A GAY Male!
    I will know after I reboot.
    Please do not close this ticket!

    Thanks! Bud
    Bud

  4. #4
    Member Beadbud5000's Avatar
    Join Date
    Nov 2010
    Location
    Saint Petersburg, FL - USA
    Posts
    72

    Default After Reboot

    Hi
    The new Firefox did NOT work! I got trovi.com start page with a distorted image of Oprah Windfery on it!
    So the problem is not fixed and trovi is still attached.

    Please advise.
    Thanks!
    Bud



    Quote Originally Posted by Beadbud5000 View Post
    Hi

    I have the web version of Spybot. TeaTimer does not exist here.
    I ran spybot scan several times. I tried the Deep Root scan too and it found nothing.
    I just today loaded the Firefox update that was just released.
    I will only know for sure if that fixed the problem when I reboot my computer so you will get a second note today.

    Trovi.com zapped Firefox with hereto sexual ads that are annoy as I am A GAY Male!
    I will know after I reboot.
    Please do not close this ticket!

    Thanks! Bud
    Bud

  5. #5
    Emeritus-Security Expert
    Join Date
    Nov 2005
    Location
    Florida's SpaceCoast
    Posts
    15,208

    Default

    Follow the instructions I posted and run AdwCleaner, Junkware removal tool and post the logs
    Microsoft MVP Consumer Security 2007-2008-2009-2010-2011-2012-2013-2014

    ERROR MESSAGE 386
    No KeyBoard Detected
    Press F1 To Continue

    Just a reminder that threads will be closed if no reply in 3 days.

  6. #6
    Member Beadbud5000's Avatar
    Join Date
    Nov 2010
    Location
    Saint Petersburg, FL - USA
    Posts
    72

    Default

    It worked! Thank you!
    # AdwCleaner v3.205 - Report created 29/04/2014 at 16:57:29
    # Updated 28/04/2014 by Xplode
    # Operating System : Windows Vista (TM) Home Premium (32 bits)
    # Username : budzone - HOMEPC
    # Running from : C:\Users\budzone\Downloads\AdwCleaner.exe
    # Option : Clean

    ***** [ Services ] *****

    [#] Service Deleted : ca82e1a5
    [#] Service Deleted : CltMngSvc
    [#] Service Deleted : Level Quality Watcher
    [#] Service Deleted : tStLibG
    [#] Service Deleted : Update PlurPush

    ***** [ Files / Folders ] *****

    Folder Deleted : C:\Program Files\Level Quality Watcher
    Folder Deleted : C:\Program Files\PlurPush
    Folder Deleted : C:\Program Files\SearchProtect
    File Deleted : C:\Windows\system32\drivers\tStLibG.sys
    File Deleted : C:\Users\budzone\AppData\Roaming\Mozilla\Firefox\Profiles\dn0p235l.default\searchplugins\conduit-search.xml
    File Deleted : C:\Users\budzone\AppData\Roaming\Mozilla\Firefox\Profiles\dn0p235l.default\user.js

    ***** [ Shortcuts ] *****

    Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftwareWatcher bundle\SoftwareWatcher bundle.lnk

    ***** [ Registry ] *****

    Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10AD2C61-0898-4348-8600-14A342F22AC3}
    Key Deleted : HKCU\Software\Conduit
    Key Deleted : HKCU\Software\IM
    Key Deleted : HKCU\Software\SearchProtectINT
    Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
    Key Deleted : HKCU\Software\AppDataLow\Software\Savings Bull
    Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
    Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
    Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
    Key Deleted : HKLM\Software\LevelQualityWatcher
    Key Deleted : HKLM\Software\Savings Bull
    Key Deleted : HKLM\Software\Uniblue
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PlurPush
    Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~1\searchprotect\searchprotect\bin\spvc32loader.dll
    Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~1\optimi~1\optpro~2.dll

    ***** [ Browsers ] *****

    -\\ Internet Explorer v7.0.6000.16386


    -\\ Mozilla Firefox v29.0 (en-US)

    [ File : C:\Users\budzone\AppData\Roaming\Mozilla\Firefox\Profiles\dn0p235l.default\prefs.js ]

    Line Deleted : user_pref("browser.newtab.url", "hxxp://search.conduit.com/?gd=&ctid=CT3325805&octid=EB_ORIGINAL_CTID&ISID=MC7C07C40-D17D-4175-BB31-27F6BC352BBB&SearchSource=69&CUI=&SSPV=&Lay=1&UM=5&UP=SPD04EF258-F5D[...]
    Line Deleted : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?gd=&ctid=CT3325805&octid=EB_ORIGINAL_CTID&ISID=MC7C07C40-D17D-4175-BB31-27F6BC352BBB&SearchSource=55&CUI=&UM=5&UP=SPD04EF258-F5DF-4F9B[...]

    -\\ Google Chrome v34.0.1847.131

    [ File : C:\Users\budzone\AppData\Local\Google\Chrome\User Data\Default\preferences ]

    Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
    Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
    Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3325805&octid=EB_ORIGINAL_CTID&ISID=MC7C07C40-D17D-4175-BB31-27F6BC352BBB&SearchSource=58&CUI=&UM=5&UP=SPD04EF258-F5DF-4F9B-9C33-0211D70826E1&q={searchTerms}&SSPV=
    Deleted [Startup_urls] : hxxp://search.conduit.com/?gd=&ctid=CT3325805&octid=EB_ORIGINAL_CTID&ISID=MC7C07C40-D17D-4175-BB31-27F6BC352BBB&SearchSource=55&CUI=&UM=5&UP=SPD04EF258-F5DF-4F9B-9C33-0211D70826E1&SSPV=
    Deleted [Extension] : gjkpcnacdgdlpfejlgflolpaigoicibh

    *************************

    AdwCleaner[R0].txt - [4079 octets] - [29/04/2014 16:56:08]
    AdwCleaner[S0].txt - [3864 octets] - [29/04/2014 16:57:29]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3924 octets] ##########

    Thanks again!
    Bud
    Bud

  7. #7
    Emeritus-Security Expert
    Join Date
    Nov 2005
    Location
    Florida's SpaceCoast
    Posts
    15,208

    Default

    We have a saying around these forums that is really true... THE ABSENCE OF SYMPTOMS DOES NOT GUARANTEE A CLEAN COMPUTER. Still more to do, run the Junkware removal tool and then when you post the log I have a couple of more scans for you to run to make sure we got it all
    Microsoft MVP Consumer Security 2007-2008-2009-2010-2011-2012-2013-2014

    ERROR MESSAGE 386
    No KeyBoard Detected
    Press F1 To Continue

    Just a reminder that threads will be closed if no reply in 3 days.

  8. #8
    Member Beadbud5000's Avatar
    Join Date
    Nov 2010
    Location
    Saint Petersburg, FL - USA
    Posts
    72

    Default Junkware Removal Tool

    Hi

    I ran a : Junkware Removal Tool by Thisisu – Version 6.1.4. I found it on Major Geeks. I used the author download.
    It ran for hours today and it tested just about everything but disappeared when it was through. I fell asleep.



    Still more further problems with my PC now.

    Thanks!
    Bud
    Last edited by ken545; 2014-05-01 at 02:13. Reason: Removed Link
    Bud

  9. #9
    Emeritus-Security Expert
    Join Date
    Nov 2005
    Location
    Florida's SpaceCoast
    Posts
    15,208

    Default

    I'm sure the version you ran is ok, but you need to use the download links that we post for the tools we want you to run, this way we can be sure its the right one and not bogus

    Still more further problems with my PC now.
    This is not telling me much ?????


    Please download Malwarebytes Anti-Malware to your desktop.



    • Right-click and Run as Administrator mbam-setup.exe and follow the prompts to install the program.
    • Once installed, Malwarebytes will ask if you want to Launch Now. Please select to do so and then Malwarebytes will open and update on its own. Please allow this to complete.
    • If an update is found, it will download and install the latest version.
    • Let's be sure to run a Hyper Scan. Press the Scan tab and then select Hyper Scan.
    • Press Scan Now then Skip Update (since we just updated it).
    • When the scan is complete, click View Detailed Log, then Export to save the log to your Desktop (name the log MBAM Scan).
    • Copy and Paste all of the information in that file to your next reply.
    Microsoft MVP Consumer Security 2007-2008-2009-2010-2011-2012-2013-2014

    ERROR MESSAGE 386
    No KeyBoard Detected
    Press F1 To Continue

    Just a reminder that threads will be closed if no reply in 3 days.

  10. #10
    Member Beadbud5000's Avatar
    Join Date
    Nov 2010
    Location
    Saint Petersburg, FL - USA
    Posts
    72

    Default MalwareBytes scan

    I ran this twice this morning. I exported after the second scan. The first scan found 5 items I chose to quarantine. The second for one item which I also quarantined; Here is the result:

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scan Date: 5/1/2014
    Scan Time: 7:19:35 AM
    Logfile: malwareBrun5-1.txt
    Administrator: Yes

    Version: 2.00.1.1004
    Malware Database: v2014.05.01.07
    Rootkit Database: v2014.03.27.01
    License: Trial
    Malware Protection: Enabled
    Malicious Website Protection: Enabled
    Chameleon: Disabled

    OS: Windows Vista
    CPU: x86
    File System: NTFS
    User: budzone

    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 217567
    Time Elapsed: 4 min, 42 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Shuriken: Enabled
    PUP: Enabled
    PUM: Enabled

    Processes: 0
    (No malicious items detected)

    Modules: 0
    (No malicious items detected)

    Registry Keys: 0
    (No malicious items detected)

    Registry Values: 0
    (No malicious items detected)

    Registry Data: 0
    (No malicious items detected)

    Folders: 0
    (No malicious items detected)

    Files: 1
    PUP.Optional.Conduit.A, C:\Users\budzone\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://search.conduit.com/?gd=&ctid=CT3325805&octid=EB_ORIGINAL_CTID&ISID=MC7C07C40-D17D-4175-BB31-27F6BC352BBB&SearchSource=55&CUI=&UM=5&UP=SPD04EF258-F5DF-4F9B-9C33-0211D70826E1&SSPV=" ],), Replaced,[5cdf004c6d0e6acc6581b2b0a163be42]

    Physical Sectors: 0
    (No malicious items detected)


    (end)


    Quote Originally Posted by Beadbud5000 View Post
    Hi

    I ran a : Junkware Removal Tool by Thisisu – Version 6.1.4. I found it on Major Geeks. I used the author download.
    It ran for hours today and it tested just about everything but disappeared when it was through. I fell asleep.



    Still more further problems with my PC now.

    Thanks!
    Bud
    Bud

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •