Computer Support Forum

Farbar found: LinkSwift while EEK found: Application.Win32.WSearch (A)

Question: Farbar found: LinkSwift while EEK found: Application.Win32.WSearch (A)

After using several different malware/adware, rootkit, and virus scan tools I attempted to clean up my system of multiple issues. Some of these are recurring and it seems I have an increase in " <====== ATTENTION" entries on the Farbar log from previous scans. Obviously, I don't have the expertise to fix any remaining issues and need help. Here are the 2 Farbar scan logs:
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by xnamex (administrator) on GW01 (09-04-2016 14:06:52)
Running from C:\Users\xnamex\Desktop
Loaded Profiles: xnamex (Available Profiles: xnamex)
Platform: Windows 8.1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\n360.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Gateway MyBackup\IScheduleSvc.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\symerr.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\n360.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2873744 2012-11-20] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-10] (Realtek Semiconductor)
HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe [400384 2015-03-12] (Seagate)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [839648 2016-03-10] (DivX, LLC)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKLM Group Policy restriction on software: *.wma*.js <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.js <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.js <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: cipher.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.com <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.js <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.js <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.com <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\Appdata\Roaming\Microsoft\Windows\IEUpdate\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: scsvserv.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.com <====== ATTENTION
HKLM Group Policy restriction on software: syskey.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.js <====== ATTENTION
HKLM Group Policy restriction on software: vssadmin.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.com <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.exe <====== ATTENTION
HKLM Group Policy restriction on software: lsassw86s.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.jse <====== ATTENTION
HKLM Group Policy restriction on software: ** <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.js <====== ATTENTION
HKLM Group Policy restriction on software: lsassvrtdbks.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.js <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.js <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.js <====== ATTENTION
HKLM Group Policy restriction on software: %systemdrive%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.js <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.js <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %programfiles(x86)%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.com <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.js <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %programfiles%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.bat <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.js <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.pif <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.js <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.bat <====== ATTENTION
HKLM Group Policy restriction on software: *:\$Recycle.Bin <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.js <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.jse <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.bat <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*.cmd <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.js <====== ATTENTION
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2198574098-558535509-1888455575-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7943072 2016-02-29] (SUPERAntiSpyware)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1    localhost
Tcpip\Parameters: [DhcpNameServer] 209.18.47.61 209.18.47.62
Tcpip\..\Interfaces\{699D9D75-EC47-4094-9A1F-C4DD8DEE0FE1}: [DhcpNameServer] 209.18.47.61 209.18.47.62
Internet Explorer:
==================
HKU\S-1-5-21-2198574098-558535509-1888455575-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?rb=0
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-01] (Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-01] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
FireFox:
========
FF ProfilePath: C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default
FF DefaultSearchEngine: Bing
FF DefaultSearchEngine.US: Bing
FF Homepage: hxxp://www.bing.com/?rb=0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-09] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-09] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2016-03-04] (DivX, LLC)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-01] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Extension: Greasemonkey - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-02-22]
FF Extension: FlashGot - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-03-17]
FF Extension: NoScript - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-04-09]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\Extensions\[email protected] [2016-03-04]
FF Extension: Adguard AdBlocker - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\Extensions\[email protected] [2016-03-21]
FF Extension: Card Games - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\Extensions\[email protected] [2015-11-24]
FF Extension: YouTube™ HD Plus - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\Extensions\[email protected] [2015-11-28]
FF Extension: NoSquint - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\Extensions\[email protected] [2015-05-29]
FF Extension: Bluhell Firewall - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\Extensions\{6BB5760D-F97E-421B-AF5B-8457A90C3CED}.xpi [2016-01-21]
FF Extension: gtranslate - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\Extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi [2016-01-15]
FF Extension: YouTube Flash Video Player - C:\Users\xnamex\AppData\Roaming\Mozilla\Firefox\Profiles\b584bszs.default\Extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi [2016-03-25]
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-21] [not signed]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.4.24\coFFAddon
FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.4.24\coFFAddon [2016-03-01]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.4.24\coFFAddon
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\Exts\Chrome.crx [2016-03-01]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\Exts\Chrome.crx [2016-03-01]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
S3 DeviceFastLaneService; C:\Program Files\Gateway\Gateway Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\N360.exe [289080 2016-02-26] (Symantec Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Gateway MyBackup\IScheduleSvc.exe [259136 2012-11-02] (NTI Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-04-03] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 bbcap; C:\Windows\system32\DRIVERS\bbcap.sys [4608 2015-12-08] (Windows ® Codename Longhorn DDK provider)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\22.5.4.24\Definitions\BASHDefs\20160405.001\BHDrvx64.sys [1766640 2016-03-03] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1606000.08E\ccSetx64.sys [173808 2015-09-23] (Symantec Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2016-03-04] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [157520 2016-03-29] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\22.5.4.24\Definitions\IPSDefs\20160408.001\IDSvia64.sys [767224 2016-02-13] (Symantec Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\22.5.4.24\Definitions\VirusDefs\20160408.019\ENG64.SYS [138488 2016-03-29] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\22.5.4.24\Definitions\VirusDefs\20160408.019\EX64.SYS [2148080 2016-03-29] (Symantec Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-04-03] (Dritek System Inc.)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation                           )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1606000.08E\SRTSP64.SYS [928504 2016-02-23] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1606000.08E\SRTSPX64.SYS [50936 2015-09-23] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\N360x64\1606000.08E\SYMEFASI64.SYS [1621232 2016-02-23] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1606000.08E\SymELAM.sys [24192 2015-09-23] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [111344 2015-12-23] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1606000.08E\Ironx64.SYS [295664 2016-02-23] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1606000.08E\SYMNETS.SYS [577768 2016-02-23] (Symantec Corporation)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2015-06-10] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2015-06-10] (Acronis)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-06 16:10 - 2016-04-06 16:10 - 00001878 _____ C:\WINDOWS\system32\.crusader
2016-04-04 15:53 - 2016-04-04 15:55 - 00720224 _____ C:\TDSSKiller.3.1.0.9_04.04.2016_15.53.50_log.txt
2016-04-04 15:50 - 2016-04-04 15:51 - 00008510 _____ C:\TDSSKiller.3.1.0.9_04.04.2016_15.50.56_log.txt
2016-04-03 15:29 - 2016-04-08 11:15 - 00000000 ____D C:\Users\xnamex\AppData\LocalLow\boost_interprocess
2016-04-03 15:29 - 2016-04-03 15:29 - 00000000 ____D C:\Users\xnamex\AppData\Local\DDMSettings
2016-04-02 07:03 - 2016-04-02 07:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-04-02 05:27 - 2016-04-02 05:28 - 00706800 _____ C:\TDSSKiller.3.1.0.9_02.04.2016_05.27.08_log.txt
2016-04-02 05:25 - 2016-04-02 05:25 - 00008510 _____ C:\TDSSKiller.3.1.0.9_02.04.2016_05.25.03_log.txt
2016-04-02 03:31 - 2016-04-02 03:32 - 00000258 __RSH C:\Users\xnamex\ntuser.pol
2016-04-01 18:01 - 2016-04-01 18:01 - 00000000 ____D C:\ProgramData\Trend Micro
2016-04-01 17:50 - 2015-12-24 09:03 - 00316168 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmcomm.sys
2016-04-01 17:47 - 2016-04-01 17:47 - 02527376 _____ (Trend Micro Inc.) C:\Users\xnamex\Downloads\HousecallLauncher64 (1).exe
2016-04-01 14:49 - 2016-04-01 14:49 - 00003640 _____ C:\WINDOWS\System32\Tasks\DivXUpdate
2016-04-01 14:49 - 2016-04-01 14:49 - 00001635 _____ C:\Users\xnamex\Desktop\DivX Movies.lnk
2016-04-01 14:49 - 2016-04-01 14:49 - 00001070 _____ C:\Users\Public\Desktop\DivX Converter.lnk
2016-04-01 14:49 - 2016-04-01 14:49 - 00001045 _____ C:\Users\Public\Desktop\DivX Player.lnk
2016-04-01 14:49 - 2016-04-01 14:49 - 00000000 ____D C:\Program Files\DivX
2016-04-01 14:48 - 2016-04-01 14:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2016-04-01 13:48 - 2016-04-01 13:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-01 13:48 - 2016-04-01 13:47 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-03-31 04:26 - 2016-03-31 04:27 - 00000000 ____D C:\ProgramData\Sophos
2016-03-31 04:26 - 2016-03-31 04:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2016-03-31 04:25 - 2016-03-31 04:25 - 00000000 ____D C:\Program Files (x86)\Sophos
2016-03-29 16:50 - 2016-03-29 16:52 - 00661830 _____ C:\TDSSKiller.3.1.0.9_29.03.2016_16.50.31_log.txt
2016-03-29 16:48 - 2016-03-29 16:49 - 00008510 _____ C:\TDSSKiller.3.1.0.9_29.03.2016_16.48.48_log.txt
2016-03-25 12:57 - 2016-03-25 12:57 - 02374144 _____ (Farbar) C:\Users\xnamex\Desktop\FRST64.exe
2016-03-24 05:39 - 2016-03-27 19:11 - 00000000 ____D C:\Program Files (x86)\SpywareBlaster
2016-03-24 05:39 - 2016-03-24 05:39 - 00001058 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2016-03-24 05:39 - 2016-03-24 05:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2016-03-24 05:39 - 2012-05-02 11:17 - 01070152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCOMCTL.OCX
2016-03-24 05:39 - 2009-03-24 12:52 - 00129872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTDFMT.DLL
2016-03-24 05:37 - 2016-04-09 13:56 - 00007168 ___SH C:\Users\xnamex\Downloads\Thumbs.db
2016-03-24 05:37 - 2016-03-24 05:37 - 04274096 _____ (BrightFort LLC ) C:\Users\xnamex\Downloads\spywareblastersetup54.exe
2016-03-23 17:45 - 2016-03-23 17:46 - 00009398 _____ C:\TDSSKiller.3.1.0.9_23.03.2016_17.45.54_log.txt
2016-03-23 09:48 - 2016-03-23 09:48 - 00000000 ____D C:\Program Files (x86)\ESET
2016-03-23 09:44 - 2016-04-08 15:23 - 00173568 ___SH C:\Users\xnamex\Desktop\Thumbs.db
2016-03-23 05:46 - 2016-03-23 05:46 - 02870984 _____ (ESET) C:\Users\xnamex\Desktop\esetsmartinstaller_enu.exe
2016-03-23 04:16 - 2016-04-06 15:53 - 00146432 ___SH C:\Users\xnamex\Documents\Thumbs.db
2016-03-23 04:09 - 2016-03-23 04:09 - 05658151 _____ (Swearware) C:\Program Files (x86)\ComboFix.exe
2016-03-23 01:27 - 2016-03-23 01:29 - 00665658 _____ C:\TDSSKiller.3.1.0.9_23.03.2016_01.27.17_log.txt
2016-03-22 05:25 - 2016-02-05 10:46 - 01455104 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-03-22 05:25 - 2016-02-02 14:16 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-22 05:25 - 2016-01-31 15:17 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-03-22 05:25 - 2016-01-31 14:07 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-03-22 05:25 - 2016-01-31 13:42 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-03-22 05:25 - 2016-01-31 13:14 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-03-22 05:25 - 2016-01-31 12:24 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-03-22 05:25 - 2016-01-31 12:20 - 02464256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-03-22 05:25 - 2016-01-27 11:18 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-03-22 05:25 - 2016-01-21 15:35 - 00952928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-22 05:25 - 2016-01-21 14:42 - 00786152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-03-22 05:24 - 2016-02-08 21:31 - 22365472 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-22 05:24 - 2016-02-08 21:31 - 19794896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-03-22 05:24 - 2016-02-08 21:31 - 02757616 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-03-22 05:24 - 2016-02-08 21:31 - 02412576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-03-22 05:24 - 2016-02-08 21:31 - 00273264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-03-22 05:24 - 2016-02-08 16:55 - 02712576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-03-22 05:24 - 2016-02-08 16:15 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-03-22 05:24 - 2016-02-08 16:02 - 01197056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-03-22 05:24 - 2016-02-08 15:48 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-03-22 05:24 - 2016-02-08 15:43 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-03-22 05:24 - 2016-02-08 15:40 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-03-22 05:24 - 2016-02-08 15:39 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-03-22 05:24 - 2016-02-08 15:37 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-03-22 05:24 - 2016-02-08 15:35 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-03-22 05:24 - 2016-02-08 15:34 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-03-22 05:24 - 2016-02-08 15:33 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-03-22 05:24 - 2016-02-08 14:50 - 03120640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-22 05:24 - 2016-02-08 13:55 - 02592256 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-03-22 05:24 - 2016-02-08 13:33 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-03-22 05:24 - 2016-02-08 13:12 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-03-22 05:24 - 2016-02-08 13:02 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-03-22 05:24 - 2016-02-08 13:00 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-03-22 05:24 - 2016-02-08 12:58 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-03-22 05:24 - 2016-02-08 12:55 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-03-22 05:24 - 2016-02-08 12:53 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-03-22 05:24 - 2016-02-08 12:53 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-22 05:24 - 2016-02-08 12:50 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-03-22 05:24 - 2016-02-08 12:50 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-22 05:24 - 2016-02-08 12:48 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-03-22 05:24 - 2016-02-08 12:47 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2016-03-22 05:24 - 2016-02-08 12:44 - 00955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-22 05:24 - 2016-02-03 11:14 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2016-03-22 05:24 - 2016-02-02 13:51 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-03-22 05:24 - 2016-02-02 13:19 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-03-22 05:24 - 2016-02-02 13:01 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-03-22 05:24 - 2016-02-02 12:51 - 02609152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-03-22 05:24 - 2016-02-02 12:48 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-03-22 05:24 - 2016-02-02 12:46 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-03-22 05:24 - 2016-02-02 12:41 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-03-22 05:24 - 2016-02-02 12:39 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-03-22 05:23 - 2016-02-06 13:02 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2016-03-22 05:23 - 2016-02-06 12:35 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2016-03-22 05:23 - 2016-02-05 15:07 - 00378712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-03-22 05:23 - 2016-02-04 14:07 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpsapi.dll
2016-03-22 05:23 - 2016-02-04 13:35 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2016-03-22 05:23 - 2016-02-03 11:11 - 01673728 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-03-22 05:23 - 2016-02-02 13:18 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-03-22 05:23 - 2016-02-02 13:15 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2016-03-22 05:23 - 2016-01-31 13:17 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-03-22 05:23 - 2016-01-26 15:15 - 00072024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-03-22 05:23 - 2016-01-22 01:22 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-03-22 05:23 - 2016-01-22 01:11 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-03-22 05:23 - 2016-01-20 18:40 - 00099672 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-03-22 05:22 - 2016-02-11 16:17 - 07452504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-22 05:22 - 2016-02-11 16:17 - 01737088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-03-22 05:22 - 2016-02-11 16:17 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-22 05:22 - 2016-02-11 16:17 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-22 05:22 - 2016-02-11 16:17 - 01490120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-03-22 05:22 - 2016-02-11 16:17 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-22 05:22 - 2016-02-11 16:16 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-03-22 05:22 - 2016-02-09 14:07 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-03-22 05:22 - 2016-02-06 19:05 - 00551256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-03-22 05:22 - 2016-02-05 11:11 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-03-22 05:22 - 2016-02-05 11:11 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-03-22 05:22 - 2016-02-05 11:07 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-03-22 05:22 - 2016-02-05 11:02 - 01083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-03-22 05:22 - 2016-02-04 12:23 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-03-22 05:22 - 2016-02-04 12:22 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-03-22 05:21 - 2016-02-06 18:41 - 00316760 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-03-22 03:58 - 2016-03-22 04:01 - 01225828 _____ C:\TDSSKiller.3.1.0.9_22.03.2016_03.58.34_log.txt
2016-03-21 11:57 - 2016-03-23 01:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-21 10:14 - 2016-03-21 10:15 - 00009132 _____ C:\TDSSKiller.3.1.0.9_21.03.2016_10.14.55_log.txt
2016-03-21 10:12 - 2016-03-21 10:14 - 01226778 _____ C:\TDSSKiller.3.1.0.9_21.03.2016_10.12.35_log.txt
2016-03-19 03:07 - 2016-03-19 03:09 - 00665634 _____ C:\TDSSKiller.3.1.0.9_19.03.2016_03.07.29_log.txt
2016-03-19 03:03 - 2016-03-19 03:04 - 00009398 _____ C:\TDSSKiller.3.1.0.9_19.03.2016_03.03.37_log.txt
2016-03-12 03:38 - 2016-03-22 02:58 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
2016-03-12 02:45 - 2016-03-12 02:45 - 00001138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-03-12 02:45 - 2016-03-12 02:45 - 00001126 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-12 02:37 - 2016-03-12 02:37 - 00242104 _____ C:\Users\xnamex\Firefox Setup Stub 45.0.exe
2016-03-11 15:14 - 2016-03-11 15:14 - 28777312 _____ (Adlice Software ) C:\Users\xnamex\Downloads\setup (2).exe
2016-03-11 15:06 - 2016-03-11 15:06 - 00000000 ____D C:\SUPERDelete
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-09 14:06 - 2014-09-05 01:15 - 00000000 ____D C:\FRST
2016-04-09 13:58 - 2013-08-22 22:49 - 00000000 ____D C:\Users\xnamex\AppData\Local\Adobe
2016-04-09 11:13 - 2014-06-04 21:09 - 00000000 ____D C:\Users\xnamex\AppData\Roaming\Free Download Manager
2016-04-09 11:10 - 2014-05-20 13:53 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-08 19:26 - 2015-12-05 02:51 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2016-04-08 19:21 - 2013-07-16 11:51 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2198574098-558535509-1888455575-1001
2016-04-08 17:07 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\Inf
2016-04-08 16:18 - 2016-03-06 09:18 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-04-08 16:16 - 2015-11-08 10:24 - 00000000 ____D C:\Program Files\RogueKiller
2016-04-08 15:50 - 2014-07-20 07:36 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-04-08 12:17 - 2015-05-05 08:22 - 00000000 ____D C:\Users\xnamex\AppData\Roaming\vlc
2016-04-08 09:02 - 2013-08-22 11:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-07 12:58 - 2015-07-06 12:25 - 00000000 ____D C:\Users\xnamex\AppData\Roaming\dvdcss
2016-04-07 00:21 - 2015-05-11 15:53 - 00000000 ____D C:\Users\xnamex\Documents\BB FlashBack Movies
2016-04-06 16:16 - 2013-08-22 09:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-04-06 16:13 - 2013-08-22 10:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-06 16:10 - 2015-02-01 03:17 - 00000000 ____D C:\ProgramData\HitmanPro
2016-04-05 18:56 - 2014-05-22 23:37 - 00000000 ____D C:\EEK
2016-04-03 15:29 - 2014-05-19 18:23 - 00000000 ____D C:\ProgramData\DivX
2016-04-03 13:23 - 2013-12-31 10:12 - 00000000 ____D C:\Users\xnamex\AppData\Local\NPE
2016-04-02 03:32 - 2014-10-26 21:49 - 00000000 ____D C:\Users\xnamex
2016-04-01 18:37 - 2014-12-07 11:43 - 00630938 _____ C:\Users\xnamex\AppData\Local\census.cache
2016-04-01 18:36 - 2014-12-07 11:43 - 00185822 _____ C:\Users\xnamex\AppData\Local\ars.cache
2016-04-01 18:08 - 2014-12-07 11:40 - 00000010 _____ C:\Users\xnamex\AppData\Local\sponge.last.runtime.cache
2016-04-01 15:04 - 2013-12-31 10:09 - 00091136 _____ C:\Users\xnamex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-04-01 14:50 - 2014-05-19 18:29 - 00000000 ____D C:\Users\xnamex\AppData\Roaming\DivX
2016-04-01 14:49 - 2014-05-19 18:28 - 00000000 ____D C:\Program Files (x86)\DivX
2016-04-01 13:48 - 2015-09-07 15:04 - 00000000 ____D C:\Users\xnamex\.oracle_jre_usage
2016-04-01 13:48 - 2014-05-30 17:10 - 00000000 ____D C:\ProgramData\Oracle
2016-04-01 13:47 - 2014-08-10 03:37 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-31 09:13 - 2014-12-07 11:35 - 00000000 ____D C:\Users\xnamex\HCBackup
2016-03-31 06:26 - 2014-08-04 07:18 - 00000000 ____D C:\AdwCleaner
2016-03-31 03:25 - 2014-09-24 03:15 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-31 02:24 - 2014-05-20 13:52 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-03-31 02:22 - 2013-09-16 23:11 - 00001081 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-03-29 16:46 - 2013-08-22 09:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-29 02:42 - 2014-07-25 03:26 - 00000000 ____D C:\Users\xnamex\Desktop\mbar
2016-03-29 02:42 - 2014-07-25 03:26 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-03-28 19:22 - 2013-10-14 09:40 - 00000000 ____D C:\Users\xnamex\AppData\Local\CrashDumps
2016-03-27 19:11 - 2012-12-27 05:10 - 00000000 ____D C:\ProgramData\Temp
2016-03-27 13:13 - 2013-08-22 11:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-03-24 23:24 - 2013-08-22 11:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-23 04:16 - 2015-11-13 16:17 - 00000000 ____D C:\Users\xnamex\Documents\a few pix
2016-03-23 01:11 - 2014-11-01 14:24 - 00000000 ____D C:\Users\xnamex\Documents\First Run - Tube Enhancer Plus_files
2016-03-22 23:59 - 2013-07-16 11:44 - 00000000 ____D C:\Users\xnamex\AppData\Local\Packages
2016-03-22 07:29 - 2013-08-22 11:36 - 00000000 ____D C:\WINDOWS\rescache
2016-03-22 05:39 - 2015-01-18 11:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-03-22 05:30 - 2013-08-22 11:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-03-22 05:28 - 2012-07-26 03:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-16 11:17 - 2015-05-18 16:50 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-10 14:09 - 2014-05-20 13:52 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-03-10 14:08 - 2014-05-20 13:52 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-03-10 14:08 - 2013-09-16 23:11 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
==================== Files in the root of some directories =======
2015-10-06 11:52 - 2015-10-06 11:52 - 25186399 _____ (Audacity Team                                               ) C:\Program Files (x86)\audacity-win-2.1.1.exe
2016-03-23 04:09 - 2016-03-23 04:09 - 5658151 _____ (Swearware) C:\Program Files (x86)\ComboFix.exe
2015-10-07 01:49 - 2015-10-07 01:50 - 9957947 _____ (                                                            ) C:\Program Files (x86)\ffmpeg-win-2.2.2.exe
2014-05-27 12:10 - 2014-05-27 12:10 - 0921512 _____ (Oracle Corporation) C:\Program Files (x86)\JavaSetup7u55.exe
2015-10-07 01:46 - 2015-10-07 01:46 - 0527423 _____ (                                                            ) C:\Program Files (x86)\Lame_v3.99.3_for_Windows.exe
2016-02-21 11:21 - 2015-12-11 23:50 - 4727984 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\TDSSKiller.exe
2015-12-23 03:30 - 2015-12-23 03:30 - 11543552 _____ () C:\Program Files (x86)\wmm6_win7_64bit.msi
2014-12-07 11:43 - 2016-04-01 18:36 - 0185822 _____ () C:\Users\xnamex\AppData\Local\ars.cache
2014-12-07 11:43 - 2016-04-01 18:37 - 0630938 _____ () C:\Users\xnamex\AppData\Local\census.cache
2013-12-31 10:09 - 2016-04-01 15:04 - 0091136 _____ () C:\Users\xnamex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-07 11:35 - 2014-12-07 11:35 - 0000036 _____ () C:\Users\xnamex\AppData\Local\housecall.guid.cache
2013-12-26 16:36 - 2014-06-18 03:53 - 0007609 _____ () C:\Users\xnamex\AppData\Local\resmon.resmoncfg
2014-12-07 11:40 - 2016-04-01 18:08 - 0000010 _____ () C:\Users\xnamex\AppData\Local\sponge.last.runtime.cache
2016-01-07 12:39 - 2016-01-14 20:48 - 0000020 ____H () C:\Users\xnamex\AppData\Local\xftredahs.dat
Files to move or delete:
====================
C:\Users\xnamex\directx_mar2009_redist.exe
C:\Users\xnamex\fdminst.exe
C:\Users\xnamex\Firefox Setup Stub 45.0.exe
C:\Users\xnamex\Silverlight_x64.exe
Some files in TEMP:
====================
C:\Users\xnamex\AppData\Local\Temp\dllnt_dump.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer

Relevance 100%
Preferred Solution: Farbar found: LinkSwift while EEK found: Application.Win32.WSearch (A)

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Answer: Farbar found: LinkSwift while EEK found: Application.Win32.WSearch (A)

Hello chriffan and Welcome to the BleepingComputer.   
 
My name is Yılmaz and I'll help you with the cleanup of malware from your computer.
Before we move on, please read the following points carefully.
Please complete all steps in the specified order.
Even if tools don't find malware, I want you to post the logfiles anyway.
Please copy and paste the logfiles directly into your posts. Please do not attach them unless you are instructed to do so.
Read the instructions carefully. If you have problems, stop what you  were doing and describe the problems you encountered as precisely as  you can.
Don't install or uninstall software during the cleanup unless you are told to do so.
Ensure your external and/or USB drives are inserted during always the scan.
If you can't answer for the next few days, please let me know. If  you haven't answered within 5 days, I am assuming that you don't need  help anymore and your topic will be closed.
If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now!
I can not guarantee that we will find and be able to remove all  malware. The cleaning process is not instant. Please continue to review  my answers until I tell you that your computer is clean
Please reply to this thread. Do not start a new topic
As my first language is not English, please do not use slang or idioms. It could be hard for me to understand.
Please open as administrator  the computer. How is open as administrator  the computer?
Disable your AntiVirus and AntiSpyware applications, as they will  interfere with our tools and the removal. If you are unsure how to do  this, please refer to get help here
Thanks
 
You are  using too much security software.This is wrong. Always creates problems.foremost   is your security knowledge level !
=========================
Please Uninstall:
Trend Micro Inc
Sophos Virus Removal Tool
 
And PC restart
====================================================
Step 1:
Scan with Zemana AntiMalware Free:
Turn off the real time scanner of any existing antivirus and firewall programs while performing scan
Please download and install Zemana AntiMalware Free
Double-click software shortcut on the desktop and follow the prompts to install the program .
If an update is available, click the Update now button.
At the end Click Settings > Advanced > ''I have read the warning an wish to proceed anyway'' Click
Auto Launch > Untick the box next
Scan type > Smart scan (Default)
Close all open files, folders and browsers
Click scan now ''Run as Administrator'' and a threat Scan will begin.
When the scan is complete, Press report and send me report.
Please PC restart now.
 
Step 2:
Please run Farbar Service Scanner.
Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center
Windows Update
Windows Defender
Other Services

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.
Step 3:
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

28 more replies
Relevance 95.12%

Manufacturer: Hewlett-Packard
Re: Model: 23-b320
Running from "C:\Users\Mom\Desktop"
Microsoft Windows 8.1  (X64)Boot Mode: Normal
 
Emsisoft Emergency Kit - Version 11.0
Last update: 7/1/2016 12:57:58 AM
User account: LIVINGROOM-PC\Mom
 
Scan settings:
 
Scan type: Malware Scan
Objects: Rootkits, Memory, Traces, Files
 
Detect PUPs: On
Scan archives: Off
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off
 
Scan start: 7/1/2016 8:46:51 AM
Key: HKEY_USERS\S-1-5-21-3493290847-1453576955-1801232407-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} detected: Application.Win32.WSearch (A)
Key: HKEY_USERS\S-1-5-21-3493290847-1453576955-1801232407-500\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} detected: Application.Win32.WSearch (A)
Key: HKEY_USERS\S-1-5-21-3493290847-1453576955-1801232407-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} detected: Application.Win32.WSearch (A)
 
Scanned 103256
Found 3
 
Scan end: 7/1/2016 9:07:33 AM
Scan time: 0:20:42

 emisoft.JPG   79.16KB
  0 downloads

Answer:Emisoft found "Application.Win32.WSearch(A) Key:HKey_Users\....

Is it SAFE to Remove or Quarantine the found objects?

0 more replies
Relevance 99.63%

I wonder if someone would be able to have a look over my log?
Win32/Somoto.A application and Win32/ELEX application found after running eset online scanner and deleted, i am not sure if I have any other nasties hiding so your help would be very much appreciated?

Answer:Win32/Somoto.A application and Win32/ELEX application found after running eset online scanner

Please post any logs that you have. We will be more than happy to have a look.

1 more replies
Relevance 86.51%

Nod32 keeps coming popping up with: Win32/Adware.Virtumonde application found in operating memory. System memory infection originated from file C:\WINDOWS\system32\nnnkjhg.dll

Answer:Win32/adware.virtumonde.o Application Found In Operating Memory

How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo.

2 more replies
Relevance 84.05%

I have ESET anti-virus and it has quarantined a few things trying to access my comp. Win32/daurso found by MS Defender. Ran combofix and malware bytes to try and get rid of stuff, but Defender and ESET still block high risk things. After following instructions (ie. defogger to GMER) GMER also said Rootkits may have changed something. Please help! I have posted most recent logs for your review. I did not post Attach.txt as it said not to unless requested. Thank you. GMER 1.0.15.15281 - http://www.gmer.netRootkit scan 2010-05-25 12:59:29Windows 6.0.6002 Service Pack 2Running: gmer.exe; Driver: C:\Users\Ryan\AppData\Local\Temp\pxldrpog.sys---- Kernel code sections - GMER 1.0.15 ----? System32\Drivers\pmeamhy.sys A device attached to the system is not functioning. !.text C:\Windows\system32\DRIVERS\nvlddmkm.sys section is writeable [0x8DA0D340, 0x345217, 0xE8000020].text bridge.sys 8E498462 519 Bytes [8B, FF, 55, 8B, EC, 81, EC, ...]---- User code sections - GMER 1.0.15 ----.text C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe[316] kernel32.dll!SetUnhandledExceptionFilter 7796A84F 4 Bytes [C2, 04, 00, 00].text C:\... Read more

Answer:Rootkit changes found by GMER, win32/daurso found by MS Defender

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

13 more replies
Relevance 83.23%

I'm not sure when my computer was infected, but on Wednesday morning I logged into my email and saw that my eBay selling account had been hacked, and the hacker(s) made 55 transactions through my PayPal account (draining my existing PayPal funds, then my bank account, then my credit card...the latter two were attached to my PayPal account and those transactions were still pending). I made all the necessary phone calls, then changed my eBay and PayPal emails using a friend's computer (which had just been reformatted the day before and hadn't been online before I used it that day). I neglected to change the password for the email I had associated with my eBay account, and the next day, my eBay account had been hacked again, but eBay had unlinked my PayPal account due to the suspicious activity the day before so no transactions went through. I then changed all passwords again, including my email password. That seemed to do the trick. I got home today and got back on my computer, then ran a scan on avast, which found Win32-Spyware (I clicked "Move to Chest"). I also ran Malwarebytes and it found Codec-C.exe (Affiliate.Downloader), I quarantined this. And I'm not sure what else may be lurking on my computer, so I would be very grateful for any help.
DDS.txt log:
DDS (Ver_2012-11-07.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_37
Run by Dad at 21:47:29 on 2012-11-10
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033... Read more

Answer:eBay, PayPal accts hacked - avast found Win32-Spyware, Malwarebytes found Codec-C.exe (Affiliate.Downloader)

Hi nachtkitten and welcome to BC. Can you please post the resulting log of MBAM and Avast if they are still available.Download TDSSKiller.zip from Kaspersky and save it to your Desktop.Extract the zip file to its own folder.Double click TDSSKiller.exe to run the program (Run as Administrator for Vista/Windows 7).Click Start scan to start scanning.If infection is detected, the default setting for "action" is Cure (Please click on it and change it to skip).Click on Report to generate a log. Please post that log when you reply.

6 more replies
Relevance 81.59%

Hi
 
After experiencing a few unusual pop-ups whilst using Google Chrome I decided to download Malwarebytes (from the official website). Each attempt to install it was met with the message 'is not a valid win32 application'. I've tried downloading several times and from one or two sources. One forum I read recommended using the Farbar recovery scan tool and I had the same issues with this programme too. Here is my DDS log. All help much appreciated thanks!
 
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17344  BrowserJavaVersion: 10.67.2
Run by Claire at 22:09:09 on 2014-10-26
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.44.1033.18.6092.3270 [GMT 0:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
SP: Microsoft Security Essentials *Enabled/Updated* {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGro... Read more

Answer:Malwarebytes / Farbar Recovery Scan Tool is not a valid win32 application

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/553437 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

8 more replies
Relevance 78.31%

Hello,I was hit by some sort of bad ad today. Long story short, after a variety of steps, I thought I had it under control. Computer was working fine and then Microsoft Security Essentials said it had to reboot to finish a removal. I let it do so and now, Windows won't boot, even in Safe Mode. Turned off the automatic reboot so I was able to read the error:STOP: c0000135 {Unable To Locate Component}This application has failed to start because consrv was not found. Re-installing the application may fix this problem.I did some Google searching and found that people here posted with similar errors and they had all been asked to post a Farbar log. So, to save time, I went ahead and did that and it is attached to this message.I really appreciate the service that you provide here. Thank you for your time, consideration and any assistance.Sincerely,Patrick

Answer:STOP: c0000135 {Unable To Locate Component} ... consrv was not found (Farbar Log Included)

Hello Patrick,Welcome to this forum.Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste). Save it on the flashdrive as fixlist.txt
start
AppInit_DLLs:
SubSystems: [Windows] ==> ZeroAccess
1 ahxfyopx; \??\C:\Windows\system32\drivers\ahxfyopx.sys [x]
1 ddbswlit; \??\C:\Windows\system32\drivers\ddbswlit.sys [x]
1 nkmzmfsj; \??\C:\Windows\system32\drivers\nkmzmfsj.sys [x]
2011-12-04 16:40 - 2011-12-04 16:56 - 0004674 __ASH C:\Users\Patrick O'Keefe\Local Settings\Application Data\6m87wd2e03u886
2011-12-04 16:40 - 2011-12-04 16:56 - 0004674 __ASH C:\Users\Patrick O'Keefe\Local Settings\6m87wd2e03u886
2011-12-04 16:40 - 2011-12-04 16:56 - 0004674 __ASH C:\Users\Patrick O'Keefe\AppData\Local\6m87wd2e03u886
2011-12-04 16:40 - 2011-12-04 16:56 - 0004674 __ASH C:\Users\All Users\Application Data\6m87wd2e03u886
2011-12-04 16:40 - 2011-12-04 16:56 - 0004674 __ASH C:\Users\All Users\6m87wd2e03u886
2011-12-04 16:40 - 2011-12-04 16:56 - 0004674 __ASH C:\ProgramData\6m87wd2e03u886
2011-12-04 16:40 - 2011-12-04 16:40 - 0297984 ____A (Micro... Read more

19 more replies
Relevance 75.85%

So, this is a newer netbook, almost 8 months old, i dont know how i got these because i have had anti-virus runing from day one

Anyway it all started when i was on facebook it just went to a diffrent page and i never clicked on anything, then MS security center popped up saying everything was infected, and kept tellin me that i didnt have an antivirus program and i coudlnt do anthing thing but keep going to this ADD to buy one... Which was odd because Avast was running. I opend avast and did a quick check and found the first one Dracur_c, But when i tied to do the the action to mvoe to chest it was telling me that there was not enough room on disc... and my disc is NOT FULL ODD, so i deleted it and it worked i can not coppy and paste the results if i can i dont know how But i will tell you it was in: C:/system volume information/_restore{ number letters}.dll and .EXE and it was also in C:/windows/system32/fwcfg32.dll listed TWICE

I then restarted the computer in safemode and did a full scan and it then found it again in system volume information/restore{letter numbers}.DLL twice And then in Windows/system32/75.tmp..

this morning it was still acting wierd when i started EI redirecting me when i would use google and When i would send an error log to MS the page never loded and then i would get a poppup add So i ran another Avast scan and GOT the win32:trojan-gen,win32:alureon-hd, win32crypt-gwl that came up... This time it was found in my TEMP folder as an EXE and one in my ... Read more

Answer:avast found win32:dracur_c, win32:trojan-gen,win32:alureon-hd, win32crypt-gwl

14 more replies
Relevance 73.39%

Someone please help I was doing a system restore when the computer turned off when i rebooted it, the next time i turned my laptop on it goes to the log on screen but when I click my name it begins to log on but then an error message pops up titled Explorer.EXE - Unable To Locate Component and it says 'This application has failed to start because WININET.dll was not found. Re-installing the application may fix this problem.' So I click 'OK' and all that shows up is my wallpaper. No icons on the desktop no toolbar on the bottom no start menu no nothing just my picture. I really don't have a clue what to do at all. If anyone could give me clear instructions or any tips on how to fix this problem it would be greatly appreciated, I have tried using the drivers disks to try to install but i cant access the dvd /cd drive wont open the disk juast sits in the dvd cd drive as well please help plus now it laptop whn i try to boot it stays at the windows xp screen but does not want to go any further then scanning there its a acer aspire 5670 with widows xp professional, sincerely frankp747

Answer:'This application has failed to start because WININET.dll was not found. Re-installing the application may fix this problem

Hello frankp747,From what I read, the "Wininet.dll" error can be caused by software, hardware, or malware. Why were you performing a system restore? Have you tried to access Safe Mode?As the computer is booting, tap the "F8 key" continuously until you get the "Advanced Boot Options" Menu.Use your arrow keys to move to "Last Known Good Configuration" then press the <Enter> key. Reboot the computer.If that doesn't work, try "Safe Mode."If Safe Mode loads then try to do a System Restore using a point before your troubles began. Click "Start," "All Programs," "Accessories," "System Tools," "System Restore."

54 more replies
Relevance 71.75%

Hello computer saviors,

I need help. I have a Motion Computing LE1600 tablet PC running XP service pack 3. I was surfing the web and Avast said a threat was detected, and I thought it was stopped. Sadly, it wasn't and when I turned my computer back on the desktop was without a start bar or desktop icons. Through cont/alt/del I was able to access task manager, and run some things through there. I tried to run a system restor, but the only point I could access didn't change the situation. I restarted the computer in safe mode, and scanned with Malwarebytes, which found nothing, and Avast, which found 4 infected files. The flies are C:\Windows\Explorer.EXE (Threat Win32:Patched-UE [Tr]), c:\windows\system32\winlogon.exe (threat win32:winpatch), c:\windows\explorer.exe (threat win32:winpatch), c:\windows\system32\winlogon.exe (threat win32:winpatch) When I try to "move to chest" the error says the files are read only. Interestingly, when I went in the windows folder, there are 3 files explorer.exe, explorer(2).exe and explorer(3).exe I don't know why that is. I tried changing the file access to allow changes, but that didn't help.

I am currently running the system in safe mode, because I can see and use the desktop that way and I am logging this on another PC. I am attaching the dds logs, and I am waiting on gmer to stop scanning. I made the logs in safe mode. If I need to reboot and go ... Read more

Answer:Win32:Patched-UE, win32:winpatch found by Avast. No desktop, in safe mode

gmer log

10 more replies
Relevance 71.34%

MY PROBLEM
==================================================
i was using win xp sp1 since may 2005. my system was very clean.. yesterday due to a crash i have to re-install the windows so i switched to sp2.. than i used a flash stick of a friend. that has viruses and my kasper AV was not updated that time to detect them.. now i have updated my kasper AV it has detected some viruses and removed them.. they were

1. svchost.exe in windows directory
2. RavMon.exe in every partitaion of my disk
3. trojan.win32.agent.abt
4. email-worm.win32.brontok.q
5. win32.hidrage.a (kasper AV) also known as win32/jeefo
6. MDM.exe in c:/windows

where it says open & explore there are some strange symbols...
those symbols still there and when i double click any of the partitaion to open it... it opens a dialog box saying " open with" choose the program to open the file c:/ or D:/ .......

here is screenshot


yea and another problem. i can't see hidden files.. when i enable show hidden files. and click ok
but again don't show hidden files option is selected..
other than this i haven't noticed anything else.

im hopeful that i will get good response
thanks in advance..
========================================================
LOGS
========================================================
Emulating logfile of HijackThis v1.99.1
Scan saved at 2007-07-10 19:44:16
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (6.00.2900.2180)

Run... Read more

Answer:many probs. AV found. trojan.win32.agent.abt, win32.hidrage.a etc

hi guys.. im still waiting for the reply... so i can avoide formating...
or shall i go with formating??

10 more replies
Relevance 70.52%

Started having popups on my wife's laptop so I ran a scan with Avast and it detected win32:rootkit-gen[rtk].
I used Avast to try and get rid of win32:rootkit-gen[rtk] and it said it was successful.
I ran another scan and now there are about a dozen files with win32:webcake-a[adw].
I am currently running a boot scan with Avast.
The operating system is windows 8.
Any help would be appreciated.

Answer:Avast found win32:rootkit-gen[rtk] now I have win32:webcake-a [adw]

Hi BoneFish -win32:rootkit-gen[rtk] seems to be a favorite of avast! Antivirus (I assume you have avast! installed) -  While this program runs see How To Temporarily Disable Your Anti-virusScan your machine with ESET OnlineScanThis is best done with Internet Explorer as it uses Active X to download -Directions for alternate browsers are included if you do not use Internet Explorer1. Hold down Control and click HERE to open ESET OnlineScan in a new window.2. Click the ESET Online Scanner button.3. NOTE :.For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)  - 1. Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.- 2. Double click on the ESET Online Scanner icon on your desktop.  4. Check "YES, I accept the Terms of Use." 5. Click the Start button. 6. Accept any security warnings from your browser. 7. Under scan settings, check "Scan Archives" and "Remove found threats"8. Click "Advanced settings" and select the following:Scan potentially unwanted applications (PUPs)Scan for potentially unsafe applicationsEnable Anti-Stealth technology 9. ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this will take some time to download the program for a first time, and then download updated data base (1 to 2  hours is not unusual)10. When the scan completes, click List Threats11. Click Export, and ... Read more

12 more replies
Relevance 70.11%

Hi,

As topic mentions, this computer had a whole bunch of infections which seemed to have been removed by MSSE and MBAM... Running both those tools now report nothing but I would like to know whether the computer is really clean or some infections still linger on?

Thanks a lot!

Answer:Win32/Karagany.I, Win32/Winwebsec, Java/CVE-2012-1723*, Trojan.Vundo, PUP.MyWebSearch found and cleaned by MSSE & MBAM - Is...

Hi Skale I will be handling your log to help you get cleaned up. Please give me some time to look it over and I will get back to you as soon as possible.

12 more replies
Relevance 68.47%

Here's some technical data:

the computer is a Dell Inspiron 530
Intel Core 2 Duo DPU
E4600 @ 2.4 GHz
2.39GHz, 2.99 GB Ram
Physical Address Extension

XP Home edition, version 2002, SP3, with Internet Explorer 7
All of a sudden this computer stopped recognizing applications. When you click on word or excel (or just about anything for that matter) you get a box that says "application not found".

This is my daughters computer, and according to her, it just happened out of nowhere - she didn't do anything out of the ordinary, just stopped working.

Any ideas?

Thanks!

Answer:application not found

How about...exact wording of onscreen error messages received?

"Application not found" is just totally meaningless without context and specific wording, IMO.

Louis

5 more replies
Relevance 68.47%

I am having problems opening links within windows mail. Every time I click on the link I get an error pop up message that says, "application not found" and shows the link that I clicked.

This just started about a week ago.

More replies
Relevance 68.47%

I'm running Windows Vista with Windows mail. Suddenly when I want to use a link in an email message instead of everything working smoothly I get 'Application not found' and have to copy the link and paste it into my browser which is time consuming. I'm told this can be cured by making Windows Explorer my default but this hasn't cured the problem.Any help gratefully accepted.

Answer:Application not found

You need to set both Windows Mail and Internet Explorer as your defaults - see hereclick here

1 more replies
Relevance 68.47%

I am trying to open a file 137.jpg (554kb) but I get an Application not found error. I use .jpg in my photo processing so why can't it open these? I did check past threads.

Tom:confused
 

Answer:Application not found

Is this an attachment or just a regular file on your computer?
 

3 more replies
Relevance 68.47%

Every time I try and open a link in windows mail i get a popup saying application not found ,Its a red circle with a white x through it.I happens outside of the mail sometime ,but everytime in windows mail. I can copy the link and paste it and it will open .Any help is appreciated ,as i can get no tech support

Answer:Application not found

Download RunScanner ->RunScanner freeware startup, hijack and malware analyzer
Set this program to expert mode and remove all empty values

1 more replies
Relevance 68.47%

hi everyone,
i have a problem which is going on for a long time, and blocking everything.
got a second hand laptop with vista home premium os. don't have a recovery cd.
want to do internet connection, but i can't use the cd/dvd drive. when i put any cd/dvd in it, it gives the above message.
i have tried uninstalling, installing again, removing the drive.
when i check the properties the device seems 'working properly'.
i have been advised to change that drive, which seems to me a quick but expensive solution and i'm not sure if this will solve the problem.
i am thinking there may be some problem in the settings.
thanks for your advices in advance.

Answer:f:\ application not found --help please!!!!!!!!

hi now this is first and foremost for you to read this may not be the answer however there have been instances where ms have issued this advice http://support.microsoft.com/kb/929461 but that has nothing to do with he internet also if you go to the mfr web site support page for your make and model the info on how to access the recovery partition will be there (depending how old) you should also be able to get driver updates and with the info of that site you may be able to find out which make and model of cd/dvd drive you have and allow you to do a firmware update if yo wish also try using an av and other malware progs to scan for problems

3 more replies
Relevance 68.47%

Hello, I have a Vaio vgn-nr32s that runs on vista, and yesterday i got some sort of virus that popped up on the toolbar on the bottom right, saying that I had a virus and that i had to pay for a program to get rid of it.
So I ran a full norton 360 scan, it found a trojan, and I told it to fix it. So it fixed it, the message on the bottom right went away, BUT now whenever I open a program (on start shortcuts, desktop shortcuts or toolbar shortcuts), it either says "application not found", or it makes me "open with". I can't even find norton anti-virus anymore either, and its not running under my processes either.
Please help me, I have no idea what's going on!

Thank you!
 

Answer:Application not found

6 more replies
Relevance 68.47%

everytime i try to go to a program it says application not found what do i do??

Answer:application not found HELP!!!

You need to provide a LOT more information.What is new or different since the last time everything worked properly (ie, new hw, new sw, virus, error, etc)?What are the general specs of your system?Anything else you can think of that might be helpful.

1 more replies
Relevance 68.47%

I'm running Windows Vista. Today I inserted a CD and when I went to run the CD, I got a message that says "E:\ Application not found". This CD worked perfectly fine on this computer not long ago. I tried rebooting my computer but that didn't work. I tried a different CD and, although I didn't get the "E:\ Application not found" message, and it opened an autoplay window, it started "Not Responding".

Why is this and what can I do to fix it?
 

Answer:E:\ Application Not Found

Anyway if E is the CD drive, the first thing to do is test the same disks in another computer. It sounds like the drive or it's software holds the problem while the disk content is fine (that is E:\Application exists but isn't being read.)

In such a case here are a few things which might possibly home in on (and maybe sort out) the problem:

Right click E: in Computer and explore it. If you cannot or there are no files, skip to the serious measures. If there are some files look for and run the application, or try copying the entire disk to and running it from a folder on your hard disk. Remember to try both disks; they have different types of content.

Should this work the issue is probably with Autoplay. Whether it is as simple as poorly chosen defaults or as complicated as program corruption I cannot tell (interestingly if the E: drive is the data partition of your Hard disk rather than the CD drive Autoplay defaults would be the first thing to check, as the computer would automatically be trying to open it with a program stored locally on the E partition.)

Should it fail the issue is probably that either the hardware or driver of the disk drive is damaged. Look at downloading a new driver, if that fails you probably have a hardware issue needing physical repair or replacement.

Hope you track down your Issue
Ent
 

1 more replies
Relevance 68.47%

Hi all

I dont know what I did fiddling around in folder options, i am getting this error message when i try to go into any actions in control panel

C:\ systems 32\rundll.32.exe application not found

any ideas ?
 

More replies
Relevance 68.47%

When I try to open attachment the system give me a respond of application not found.

Answer:Application not found

What kind of attachment. What filetype.

5 more replies
Relevance 68.47%

Recently I have noticed that when I try to print out vouchers a message comes up with 'Application Not Found' and a list of errors and numbers appear. I have never had this problem before and wonder what has now caused it to happen. Any suggestions please.

Answer:Application Not Found

"Print out vouchers" using Word or what special software?Can you print everything else?Your computer which operating system XP Vista etc?Your printer is ?Lastly, have you made any changes recently to either hardware or software?

2 more replies
Relevance 68.47%

In the past when I receive an e-mail with a web site on it, I used to click on it and go straight to the wed page, Now or some reason or other when I do it now I get ?Application not found? I have to cut & paste.I?m running Vista home 32, Internet Explorer 8

Answer:Application not found

This click here any help? G

1 more replies
Relevance 68.47%

When I click a link from Windows Mail email messages, I recieve a warning box. "Application has failed" so I can't access the the link. Help pleaseFabrica

Answer:Application not found

Try copy and paste into your address bar in browser

2 more replies
Relevance 68.47%

Hi there. Can someone help me how to solve this?? My mother always scold me becoz i do like this picture, but it's not. Please help me?

Answer:Application not found

It would appear that the Acers Recovery Partition is almost twice the size of System Volume (C) partition. Why Acer is wasting so much space of a Recovery Partition is anybody's guess. Normally about 10 gigabytes should have sufficed.

Please let us know what exactly resides in the AFIQ LAN partition that has become inaccessible? What exactly did you do for it to have become inaccessible?

6 more replies
Relevance 68.47%

When I insert a dvd into my disc drive the error message f:\ application not found pops up. If I go to my computer it shows the dvd and works fine when I click to open it. I dont know how to make the message stop popping up everytime I insert a new dvd. I already reinstalled the driver for the dvd/cd drive. Any help?

Answer:f:\ application not found

Hey, it sounds as if your pc is trying to autorun the dvd and doesn't find an autorun.inf file. (which is normal)... Or possibly the application you use to open dvd's (automatically) is missing.

To stop it i suggest you try and change the autorun settings:

Code:
- Open the control panel and find "AutoPlay"(Click on it)
- Down the list of items find the DVD content (e.g. "DVD movie" or others like that)
- Take a look at the current action,
Either change it to
> "Take no action" and see if the error goes away
or
> Find another item (e.g. a program) which you use to play dvds with
If that doesn't work then post back with more info on what happens.

Cheers,
Jamey

7 more replies
Relevance 68.47%

I recently tried to start a program I haven't used for about two months. An error message came up telling me a file was missing and to reinstall the program. No problem, I think. I delete and unistall all the original files (a process I have done many times before without problem). Then I go to install the program again and I get an error message;

C:\Users\jacofox\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H32LV4WB\epsxe170[1].zip

Application not found

It may be important to note the program Im downloading is epsxe and jacofox is my username (on the file directory)
I dont understand this. It seems to me my computer shouldnt be looking for the application if ive unistalled it and removed it and am trying to install it.

What steps do I need to take in order to install the program again

Answer:Application not found??

If you download the file to your desktop and try to unzip it from there, do you still get the error?

3 more replies
Relevance 68.47%

Hoping someone can help me with this error. I had Firefox installed and have since uninstalled it. Now when even I want to go to a website that I copy and pasted from my favorites tab in IE I get the error application not found. I can however click on the link that is in my favorites tab and it will work properly.

More replies
Relevance 68.47%

On Windows Vista when I insert a dvd into my disk drive I get an error message that says 'E:\ Application not found'. I can still play the disk if I go through Computer-Edrive but it is starting to get annoying. This doesn't happen with a CD. I'd be grateful for any help.
 

Answer:E:\ Application not found

6 more replies
Relevance 68.47%

how do i get this message to stop coming up each time i put a dvd into my laptop ?
 

More replies
Relevance 68.47%

This is confusing me, just switched to Vista home premium. When I type into Google I.E. " lloyds bank", then make a short cut on to desktop.When I click on that icon all I am getting is Application not found? So have to go through Google everytime. Hope soeone can assist many thanks in advance.Sandy

Answer:Application not found

Why clutter your desktop with shortcuts? Instead add it to your Favourites and then have Favourites showing when you click on the Start Orb. That way you can go to any of your favourites and any one of them will automatically start IE.

1 more replies
Relevance 68.47%

I've had this problem for awhile, but I've kinda blew it off until now.
I just got a capture card for my xbox, and when I went to go install the software, it wouldn't start.

The autorun didn't pop up, the disc didn't spin, nothing.

I would click on my disc drive , and it would say f:/ Application not found.
The disc doesn't pop up either.

I tried to do the autorun with the cmd script that was posted on here but it said F;/ not found or something like that.

I think the problem might be my fault though.
Awhile ago I tried to install Linux, and I had to create a virtual disc drive.. and I think that messed up my current one.
No CDs/DVD's play on it, so that might be the case.

I have pretty much looked at every page that google brings up, but nothing has really worked.

P.S. I've tried uninstalling the device, and restarting my PC, but that didn't change anything.

Answer:F:/ Application not found

open device manager and uninstall the drive.
reboot and all should be good.

1 more replies
Relevance 68.47%

hello, I have encountered an issue with my dvd drivers. It won't run any of my disks I try to run, it is visible however when I go to Computer, but I get the messege "E:\ Application not found" I am not exactly sure what to do to solve this so any help I would be appreciated for.
OS- Vista Home Premiinium
DVD driver-TSSTcorp CDDVDW TS- H653Q SCSI Cdrom Device

~herkles~

Answer:application not found

*bump* any help with this?

1 more replies
Relevance 68.47%

if i open the gtalk file and other download software ,my computer said that "applocation not found".i had try to fix in default program.it's not work.,.,pls help me.,

Answer:application not found

khingoo, What's the file extension of the files you can't open? Try the appropriate File Association Fix at the link below.File Association Fixes for Windows 7http://www.winhelponline.com/blog/f...Tufenuf

2 more replies
Relevance 68.47%

Hello,A few days ago, I put a CD into my CD/DVD Drive. It read the CD, but it caused the computer to freeze up. I tried to log off, but the Windows Explorer window would not close, so I turned my computer off the "illegal" way (just cut the power) with the CD still inside. When I restarted my computer, the drive would not read the CD or any other CD I tried. When I click on the CD/DVD drive in Computer, it says "E:\ Application Not Found." Please help! I have a Dell Inspiron 530 running Vista Home Premium. Thanks in advance!

Answer:E:\ Application Not Found

Is the disc damaged ?

14 more replies
Relevance 68.47%

Hi, 1st poster here! :D

I have a problem and its driving me INSAAAANNNEEEEE

I want to reformat my hdd and to do this I need to use my Vista cd.

My DVD drive isn't working. When i insert the Vista CD nothing happens, no autorun. When i right click and go to explore it ejects the disk and sais please enter a disk. When I double click the drive icon it says D:/Application Not Found. When i change boot settings to boot from DVD drive nothing happens it tries to read it for a while then skips past and loads via HDD.

If i put a game cd in the same thing happens, yet, when i load the game via desktop shortcut the game loads and plays fine so the DVD drive is obviously still reading the disk (the game cannot play without the CD)

This appears to be a common problem as ive scoured forums throughout google but i have found no solutions.

So, I am looking for help to fix the problem or reformat via a USB Drive. My motherboard allows to boot via USB so getting a Vista recovery disk onto USB could be an option.

Any help is greatly appreciated!

Thanks
Neil

Answer:D:/ Application Not Found

Bump :(

2 more replies
Relevance 68.47%

When I receive an email which contains the address of a web site, I cannot connect to that site. All I get is a message saying "application not found". I cannot copy and paste either and it is causing frustration. This situaton has only occurred over the last few weeks, before that it was working normally. Any thoughts?

More replies
Relevance 68.47%

Hi there.
My HP dv9000 laptop has been running slow. I am fairly new to computers so my husband decided to run a disc clean-up and defrag. The defrag was dc'd before it was finished. Eversince, when I try to open an icon on my desktop a message says "application not found." eg. Google and Windows Live Home. They will open if I take them from my bookmarks though. When I make a new shortcut they still won't open. Itunes, my home page and other sites will open. Puzzled.
Any help would greatly be appreciated. Thanks a lot.

Answer:application not found

What is your default browser?

18 more replies
Relevance 68.47%

hi all,can anyone suggest what i should do.i recently took my laptop back to factory settings.now when i get emails from various sites i subscribe to i cant click on the links they send me as i get a message saying application not found.

Answer:application not found?

Hi pete7


It would probably be easiest to go to the sites, unsubscribe, and the re-subscribe. Should you have any plug-ins missing, the subscription process will likely prompt you to install them. They were likely removed when you reverted to the factory-original disk image.

Best of luck
. . . Gary

[examples of such plug-ins: Adobe Reader, Adobe Flash, Adobe Shockwave . . . ]

2 more replies
Relevance 68.47%

Running apps from the run box yields "application not found" errors. Seems to be related to the .exe issue many have been having (antispyware 2010, vista defender pro etc...) I can run stuff like services.msc but notepad or even regedit seem to be giving up errors. Has anyone found a solution?Truth can become lie, but if lies become truth we're in trouble.

Answer:run box(application not found)

rwn, Try the exe file association at the link below. Usage Instructions are on the page.http://www.winhelponline.com/articl...Tufenuf

3 more replies
Relevance 68.47%

When I click the icon for Windows Office Word 2007. I receive an application not found pop up. I can get into windows by using previous saved documents and then open a new word. But can not use the "shortcut' or program select in the program list to accomplish this. What can i do?

Answer:Application not found

uninstall and re-install the programSome HELP in posting on Computing.net plus free progs and instructions Cheers

2 more replies
Relevance 68.47%

Hello,

Anytime i put in a cd into the cd rom drive, i recieve an error that says. "Application not found" error. It does it on both my cd and dvd roms. Does anyone know what this problem is about? Thank you.

Peter
 

More replies
Relevance 68.47%

I guess after i had some virus, I have not been able to open or associate any file. What I get is application not found

Answer:application not found

you had the open with virus

4 more replies
Relevance 68.47%

I'm trying to install Rome: Total War but whenever I put the disk in, firstly it doesn't automatically open up the install window. So I have to go on on My Computer and click on the drive (it has he symbol for Rome: Total War, so it does recognise it) then it comes up with a small window saying E:/ application not found. This disk has worked on other computers before and I have been absent from using this game for about a year or so (since last time I tried the same error happened).
 

More replies
Relevance 68.47%

Memory stick appears under devices but when I click on the icon it gives me the error F/ Application not found. Tried different memory stick and same error!Any help would be greatly appreciated!

Answer:F:/ Application not found?

can you read the usb stick in another system?what file types does it contain?all usb drivers loaded and everything looks great in device manager?virus/malware free?

2 more replies
Relevance 68.47%

Hello,
I tried to unzip a file-I downloaded a couple of zip programs. I think I screwed something up-so I uninstalled the zip programs. I had changed a couple of things showing open so and so with default programs. Some of my programs are showing up like a piece of paper on my desktop. I can't open anything up, including my mail. I can't re-install them either. I don't know what in the world I did or how to change it.
I have Windows 7, HP computer.
Please help!
 

Answer:Application not found

6 more replies
Relevance 68.47%

When I attempt to download any application that downloads and then automatically installs itself, after it downloads, I get a message stating that the application cannot be found.
Example: ...ContentIE5\38LP4ZIA\BIOS_Gateway_1.08_A_.zip  application cannot be found

Answer:Application not found...

Hi,
Have you tried using the 'save as' feature to designate where the file is to be saved? Might eliminate the search - if there are no other error messages that display.
Keep us posted

3 more replies
Relevance 68.47%

I have a Dell Inspiron 1501 Model# PP23LA, runs Windows Vista
Every time I try to play a CD or DVD it gives me the message: E:/ application not found.
I also cannot open the drive without pushing a paper clip into the hole to pop it open. Am i needing to replace the whole player or drive?
 

Answer:E:/ application not found

It wouldn't hurt to check the internal connections (Power and Data), but it's very possible the drive is dead.
They're cheap, and easy to replace.
 

3 more replies
Relevance 68.47%

Alright well I was going through my old CD's I had backed up a long time ago and found some music files.

I then copied them off the CD to my computer but when I right click the folder I put them in, I get "C:\Users\Brandon\Desktop\Music --- Application not found".

I am running Windows 7 Ultimate - 64-bit.

I also have a 32 bit windows 7 computer and it worked there, so why is the 64-bit version acting up?
 

More replies
Relevance 68.47%

I can't do nothing on my computer. I try to get on the internet and a message pops up...C:\Program Files\internet explorer\iexplore.exe Application not found. I tried using task manager but a message pops up saying internet explorer has stopped working and check online for a solution and close the program. I click..check online but nothing happens. Everything i click on....a message pops up with application not found. Someone please help me!!!!
 

Answer:application not found

Are you only having problems with IE? what version do you have? IE7? IE8?
Have you tried Firefox.
When did this problem start?
Will leave the rest for more experts than me, hopefully you did not get hit with any viruses or malware.

Good luck
Ray
 

3 more replies
Relevance 68.47%

Hi

I have been having problems with my laptop lately. Application not found keeps appearing even when I'm not accessing something. Sometimes I can't use the system C and other times I can.

I have noticed that my main admin account google chrome stopped working and I'm using the guest account and started having this application not found problem.

I only have SUPERAntispyware and Malwarebytes as virus scanner. I'm not sure if this is enough. I think there is several problems with my laptop it's very slow when starting it and it keeps freezing with no flash in the middle of using the net. I'm clueless about spotting virus problems, so I kept using it with all those problems.

I would appreciate your help.


Thanks
 

Answer:Application not found

I just did a scan:



alwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Database version: 6828

Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421

08/02/2012 12:17:36
mbam-log-2012-02-08 (12-17-36).txt

Scan type: Quick scan
Objects scanned: 147663
Time elapsed: 28 minute(s), 43 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 3
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Windows\System32\f3PSSavr.scr (PUP.FunWebProducts) -> Not selected for removal.
&nbs... Read more

5 more replies
Relevance 68.47%

Hi, first post and it's a doozy!

My laptop cd drive won't read or play any cds or dvds. When I insert a disk I can hear the drive spin up then it stops. The icon in my computer doesn't change and when I double click on the F drive a window pops up saying 'F:\ Application not found'.

In properties it says the driver is up to date and working properly. Iv'e tried uninstalling it and rebooting but that didn't do anything.

I've blown into the drive and the lens looks clean.

Please help!!!

More replies
Relevance 68.47%

When I click internet shortcuts that I have created on my desktop or internet links in an email someone sent me, I get a "Application Not Found"
and nothing happens. This is a PAIN!! Any suggestions??
 

Answer:Application Not Found

Which web browser you're using? Does resetting it as the default using "Default Programs" help? See: Fix for Application not found error when opening a hyperlink or URL
 

3 more replies
Relevance 68.47%

Well i recently cleaned out my computer and i think i got rid of something important because when i try to open certain files is says "application not found"
can anyone help?

Answer:application not found

Quote:





Originally Posted by xxmantisxx


Well i recently cleaned out my computer and i think i got rid of something important because when i try to open certain files is says "application not found"
can anyone help?




Hello, to open the files you will need to re-install that application associated with the files. Theres no need to delete the files if they are music, video or documents just download the application and install.

7 more replies
Relevance 67.65%

Hello everyone
I have a problem and it is all icons shows google chrome icon, and none of the system32 applications work
when I try to open cmd it shows error
C:/windows/system32/cmd.exe application not found
I tried to run system restore but it shows the window when you click on "open with"
any help would be appreciated, thanks.

Answer:system32/cmd.exe application not found

no one can help me?

2 more replies
Relevance 67.65%

Hi

when clicking on the following links from my start bar:

Default Programs
Control Panel
Computer
Network
Devices and Printers

A window comes up that look something like this (see error.png)

When clicking on "OK" I then get the following window - Explore.EXE Application not found.

Running Explorer.exe via Task Manager works. But running Control Panel via Control.exe results in the same problems.

When running gmer.exe I am unable to make the screen as per your Newbie instructions - see gamerexe.png...I can not select the other tick boxes

I have a feeling it may be similar to: http://www.bleepingcomputer.com/forums/topic398074.html/page__st__45

Thanks for any help!

Logs:

DDS (Ver_2011-07-14.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16421
Run by Guy at 14:07:25 on 2011-07-15
Microsoft Windows 7 Professional 6.1.7601.1.1252.44.1033.18.4091.2194 [GMT 1:00]
.
AV: Symantec Endpoint Protection *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Symantec Endpoint Protection *Enabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:&#... Read more

Answer:Explorer.EXE Application not found

Hi - any chance of any help at all? I posted the original plea on the 15th July...

Don't mean to be pushy but I could do with some help on this

Thank you

50 more replies
Relevance 67.65%

Hello

Your help would be very appreciated. Many people have this problem, but I haven;t found a solution that I could use. I'm also not familiar with technical terms. So:

I had a virus that affected the security and firewalls settings (It seemed as if another software is used for protection- which was a virus).

I cleaned my computer through an anti-virus software.

Now I have this problem:
* I can?t open almost any program |(almost). When I try to access items at the control panel (such as adding accounts or anything else) I get ?rundll32.exe? application not found.
* I can?t install anything.
* If I try to open exe files I get a windows in which I?m asked what program should be used to run the file.
* I cannot enter the restore point tool.

>> This thing is that:
- The rundll32.exe file does exist. Replacing it with the same file from another computer hasn?t worked.
- I saw many solutions that said I use a dll fixer from a site that isn?t available anymore.
>>> I would very appreciate anyhelp. I?m desperate here.
Many thanks!

Answer:rundll32.exe- application not found

Hello and to BleepingComputer.Let's see what we're dealing with here.Please download RKill by Grinler from one of the 4 links below and save it to your desktop.Link 1Link 2Link 3Link 4Before we begin, you should disable any anti-malware software you have installed so it does not interfere with RKill running. This is because some anti-malware software mistakenly detects RKill as malicious. Please refer to this page if you are not sure how to disable your security software.Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed. If nothing happens or if the tool does not run, please let me know in your next reply***************************************************Please download Malwarebytes Anti-Malware and save it to your desktop.alternate download linkIMPORTANT!!! - when you save the file, rename it to something random, such as bubbles.exe This must be done before beginning the download!MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.Make sure you are connected to the Internet.Double-click on mba... Read more

1 more replies
Relevance 67.65%

Sir,

I get the above message when I click control panel and/or the start menu. Kindly suggest solution.

Regards,

sirdeshmukh

More replies
Relevance 67.65%

I am trying to download a texture pack file into a game, and every pack I have downloaded says "application not found" when I try to open it. I have installed mods into the same game with the same method, and they've worked perfectly.

Can someone help?

More replies
Relevance 67.65%

Guyz plz help help help! i try to run any exe file it doesnt work, pc instead shows me a list of open with softwares to chose one for running EXE file.
Tried many ways to install new windows but all in vain. From windows setup window for windows xp doesnt come at all, from boot cd also setup or repair of windows doesnt start. I saw in windows\system32\ folder there rundll.exe is present, but pc says it cant find it. Pls help me out!

My hijackthis log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:11:00 PM, on 7/20/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy1.emirates.net.ae:8080
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: 61.129.115.198 www.xldd.com
O1 - Hosts: 61.129.115.198 www.ojiang.com
O1 - Hosts: 61.129.115.198 www.shuixian.net
O1 - Hosts: 61.129.115.198 www.xlarea.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - ... Read more

Answer:Application not found [rundll32.exe]

16 more replies
Relevance 67.65%

Hi,

Everytime I try to download something, then a pop up comes up saying:
Application not found.

would anybody know why this is, and how I can fix this problem

regards
spencer

Answer:Says application not found when downloading

Moved to Windows & Softwaare.

What browser are you using? How big of a file is it? Where are you downloading from? What OS are you using?

1 more replies
Relevance 67.65%

I am having some major problems with opening photos. I have always been able to open any photos recevied via email & the past couple of days (since uninstalling Corel 6.0), I can no longer open any pictures - new pictures I receive nor pictures I was able to open 2 weeks ago. When receiving emails w/ pictures & even the older emails, the attachment it shows as a jpg file, but when I go to open any of the files, a dialog box pops up that reads "application not found". If when opening, I choose 'save to disk' and then save the file as a jpg file, I can then go to My Pictures and open the file but WHAT A PAIN IT WOULD BE TO GO BACK & HAVE TO SAVE ALL ATTACHMENTS I HAVE EVER RECEIVED. Does anyone have ANY IDEAS... PLEASE??? This is DRIVING ME CRAZY!! Thanks!!! Trena
 

Answer:Photos - Application Not Found

7 more replies
Relevance 67.65%

The programme from an educational DVD has been installed on my computer (Windows XP) However when I place the DVD in the drive to play one of the videos a message says No application found for this file.By going into the programme file where all the files and various video icons are I can launch a video which comes up with InterVideo Win DVD4. This has always been on the computer but there has been no cause to use it.The DVD has a series of DVDs as well as inter active material on it. It needs to be played from its menu and not via the above method for obvious reasons. I also have Windows MediaPlayer from which other DVD educational videos launch. Can you help me?

Answer:No application found for this file

My computer - tools -folder options - file types scroll down choose the file extension and assign it to the video player of your choice (media player or Intervideo)

6 more replies
Relevance 67.65%

When I try to open Skype or any .exe program, I receive a message application not found. What can I do???

Answer:application not found message

Hello Mschneir and welcome to TSF!

I am assuming you had a virus that deleted all your windows file association's?. Could you be more specific about the error? do you get "Application not Found", or a "Choose which file you want to use to open with.." message?

Also could you provide us with what OS you are currently using (Windows XP, Vista, 7 etc)

Thanks,
Altie

3 more replies
Relevance 67.65%

after recently removing fake AV-When trying to use any .exe program under 1 user's profile it says application not found. although run as admimistrator allows the program to work fine and unchecking protecting my computer data. I have checked DEP and it is correct. What am I overlooking?

Answer:application not found problem

jgreenkc, Try the EXE File Association Fix at the link below.http://www.dougknox.com/xp/file_ass...Tufenuf

5 more replies
Relevance 67.65%

Hi, lately I've been having trouble using my E drive. In some instances the computer would display "E:\ Application not found" error when I try to access it, other times it would say "insert disc into drive" when I already have a disc inserted! I have tried the disc on another PC so I know it is not damaged. Additionally, my PC would not start up properly when I have a disc in my drive; it gets stuck on the "blinking white dash in the left corner" screen. Only when I physically take the disc out, would the computer start up. I've asked Omni tech support for help, and they've told that malicious file had damaged and corrupted my registry files, and it would take 30-40 minutes to fix the issue, and will cost 40$. But they ain't gonna get my money! Afterwards I installed "Free Windows Registry Repair", and fixed whatever issue it had detected. I am also scanning my computer of viruses, but so far nothing seems to be out of the ordinary (I am using Trend Micro BTW). I've also Google this error, and so far it appears that people are experiencing this problem, but no one knows how to fix it.I'm not in desperate need of the E drive, but help would be greatly appreciated.
 

Answer:Solved: E:\ Application not found

15 more replies
Relevance 67.65%

Hi,

I had th AntiVirus 2010 virus, and i manged to remove it using MBAM and SUPERAntiSpyware. After rebooting my computer on instuction, i was prompted with the "open with" menu.

If i try to run a program such as Itunes it come up with the message "Error: Application Not Found"

if i try to run IE or MBAM then it comes up with the "open with" window.

When i try to access add/remove programs in control panel it comes up with C:\WINDOWS\system32\rundll32.exe

I found a "fix" on another site that lots of people said had worked so i tried it......but it didn't work. The fix was:

Windows Registry Editor version 5.00
[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\"%*"

i saved it as fix.reg and ran it, rebooted my computer but it hasn't worked.

Sorry if this is posted in the wrong section, i wasn't sure whether to post it here or "Am i infected"

Cheers

Answer:Error: Application Not Found

Hi,I had th AntiVirus 2010 virus, and i manged to remove it using MBAM and SUPERAntiSpyware. After rebooting my computer on instuction, i was prompted with the "open with" menu.If i try to run a program such as Itunes it come up with the message "Error: Application Not Found"if i try to run IE or MBAM then it comes up with the "open with" window.When i try to access add/remove programs in control panel it comes up with C:\WINDOWS\system32\rundll32.exeI found a "fix" on another site that lots of people said had worked so i tried it......but it didn't work. The fix was:Windows Registry Editor version 5.00[HKEY_CLASSES_ROOT\exefile\shell\open\command]@="\"%1\"%*"i saved it as fix.reg and ran it, rebooted my computer but it hasn't worked.Sorry if this is posted in the wrong section, i wasn't sure whether to post it here or "Am i infected"CheersPost in the am I infected portion. More than likely you maybe keep getting reinfected.

1 more replies
Relevance 67.65%

Hello,

My computer have lot of problems. I cannot run any program like DDS.Scr or any exe to the logs to be helped here. I somehow got to run kaspersky online scan and got a log. It seems I have alot of trojans and virus. Please help.

Kaspersky log is attached here.
Thanks

Answer:rundll32 application not found

Please close this tread. Thanks

2 more replies
Relevance 67.65%

Hello,

Everytime i run either one of my cd or dvd rom drives, I recieve "application not found" error. The drives work but i have to go the long way of going into my computer and click on the drive. I have been expieriencing this problem for a while now, Does anyone have a solution? Thank you..

peter
 

More replies
Relevance 67.65%

I am currently running Windows Vista Premium Home Edition (32 bit). A few months back, I installed a program that I can't remember the name of because iTunes was acting weird. Long story short, it wasn't what I wanted, and deleted it- I think it changed the location of my music files as well. I've been having problems ever since and cannot do a System Restore because it fails to complete, and it deleted any Restore Point prior to my problem.
 
Anytime I double-click on one of my folders, it says 'Application Not Found'. The only way for me to open the folder is to right-click and scroll down to 'open'. When I right-click, the first thing in bold says 'Compress files'...I've tried Googling this, but haven't gotten very far.
 
I'm pretty good with computers, but far from an expert, so I'm uncomfortable doing registry edits, I'm afraid I would render my computer unusable, and I am without a CD to re-install if I screw it up.
 
Any advice would be appreciated, but please explain it in plain English, sometimes I get lost if it gets too technical

Answer:Keep getting an 'application not found' error....

Download Security Check from here or here and save it to your Desktop. Double-click SecurityCheck.exe Follow the onscreen instructions inside of the black box. A Notepad document should open automatically called checkup.txt; please post the contents of that document.NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me. Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.Make sure the following options are checked:
Internet ServicesWindows FirewallSystem RestoreSecurity Center/Action CenterWindows UpdateWindows DefenderOther ServicesPress "Scan".It will create a log (FSS.txt) in the same directory the tool is run.Please copy and paste the log to your reply. Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList Devices (do NOT change any settings here)List Users, Partitions and Memory sizeClick Go and post the result. Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/products/malwarebytes_free to your desktop.* Double-click mbam-setup.exe and follow the prompts to install the program.* At the end, be sure a checkmark is placed next to Update Malwarebytes' Ant... Read more

8 more replies
Relevance 67.65%

due to a virus everytime i try to open a program i get the open with dialog box, and when i download anything i  get in a circle of save as/open then again save as/open. unable to open anything, even when downloaded off another computer and placed on usb. only way i get on line is by using a hyperlink found on the malware bytes chameleon screen. need help. i have windows xp and i know that this will happen alot, but until more fund become available i am stuck with this. i still need to use it.

Answer:rundll32.exe application not found

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/590990 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

2 more replies
Relevance 67.65%

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz, Intel64 Family 6 Model 37 Stepping 5
Processor Count: 4
RAM: 3766 Mb
Graphics Card: Intel(R) HD Graphics, 1755 Mb
Hard Drives: C: Total - 463525 MB, Free - 351231 MB;
Motherboard: Gateway, NV59C
Antivirus: Norton Internet Security, Updated and Enabled


Cannot open links in E-mails. Using Windows live mail 2011 I receive an error message that says "Application not found"
 

Answer:Solved: Application not found

8 more replies
Relevance 67.65%

So I ran AVG this morning and it found a "hidden application" that was high severity and was "idle", whatever that means. I went ahead and removed it and did a little research online. A quick google search is showing a ton of people having this issue and it is more than likely a false positive. Please tell me if I am wrong on that assumption.
Also, when I looked at the report, it said the file was "part of the operating system". This has me pretty worried because I deleted it. Did I potentially delete something that my operating system needs to run properly? At this point is there anything I need to do past this to protect and or fix my computer? Thanks ahead of time for the help.
I should mention that I was running Malware Bytes at the same time and it found nothing. Also, the virus vault in AVG was empty so i have no way of checked for a file path or anything.

Answer:AVG Found "Hidden Application". What now?

Bump.

5 more replies
Relevance 67.65%

Hi everyone,

Pls I need your valuable help.
My DVD RW drive as been working normally since I had my Dell Inspiron 530, but recently for 2 weeks now anytime I insert a cd or dvd it gives me this message: Applicantion not found. Pls what can I do. Its affecting my projects.

Thanks in anticipation
Kuham

Answer:DVD RW Drive: Application Not Found

Welcome
Several thing to try
Go to search by the start button.
Type device manager
Inside device manager look for any small yellow warning markers. If none found go to the driver for the drive and make sure that it is up to date
If that does not work, try a system restore from about 3 days before the problem began.
System Restore - How to

If that does not work, here are various suggestions from Microsoft
http://answers.microsoft.com/en-us/w...f-b658685a8383

9 more replies
Relevance 67.65%

Hi,

I have recently built a new computer and installed Windows 7 on it. At first the operating system could only see 1 of my 1TB hard drives. So i formated the second to NTFS by using ubuntu live cd. Now my windows system can see the hard drive and i can open it with right mouse click--->open, and can write to it. When i try and double click the drive in My Computer it comes up with a pop up saying E:\ Application not found. Does anyone know where i can set the double mouse click to open it?

Regards Andrew,
 

Answer:Solved: E:\ Application Not Found

If you go to Start and type disk management in the search box, you can click on Create and format hard disk drives. I think it will show disk 0 as being your C drive and disk 1 for E. What does it say for E? Is it a healthy Active, Primary partion? If not you can right click on the drive and select options from the menu.
 

3 more replies
Relevance 67.65%

I saved a bunch of photos and videos (.jpg and .mpg) on CDs. One of them won't open and I get an "application not found message". The computer 'knows' that the CD is nearly full as it indicates how much space is free (very little) but I can't, as said above, open the media.

What gives?

More replies
Relevance 67.65%

Hi

I'm having a number of issues with my PC at present.
I'm using a desktop with Windows XP SP3.

Here is a list of some of my serious problems.

-At first my PC was running very slow.
-Unable to run I.E. since updated to I.E 7. I always got a message about "plugins?" But since I normally use Firefox, it was never a major concern to me.
-Last week whilst downloading some software my ESET anti-virus told me I had attracted a number of trojans.
-These are the notices I rec'd from ESET.
Http://nadsam/temp internet\content\pqz(10.exe
Threat win 32/agent.HTW trojan
IP Address 195.2.253.242:80
NADSAMCABRAN12.com/pqz.exe
etc, etc,.

Since then I came on Major Geeks site and followed your advice on Malware removal. I downloaded and ran CCleaner, de-fragmented my HD's and Installed the anti Malware program.
However, every-time I rebooted my PC I kept on getting a "DEP" pop-up message telling me I had to turn off something in order to run my PC.
This event occurred regularly.
I then as instructed by MG turned on the normal start up using Msconfig.
Since then these are some more of the issues I've encountered.
-PC freezes entire desktop, only mouse is active and my desktop icons disappears.
-I cannot open any programs in either safe mode or normal
-Can no longer use MSconfig or Regedit
-When attempting to open any prog PC asks me "which program do I want to use to open program!"
-I can open or access my email Microsoft Of... Read more

Answer:C:\windows\exe Application not found

You need to turn off DEP....go to the control panel ( you may have to do this in safe mode). Open the system icon. Under performance options you will find the Data Execution Prevention tab. Click the turn off button. Now see if you can run the scans. You may need to rename them. Neither MGTools nor ComboFix need to be installed. I would suggest that you keep this computer disconnected from the internet and transfer any logs you can get to a different computer via cd and then upload them as an attachment to your next reply.
 

3 more replies
Relevance 67.65%

Hi everyone,

When I insert my memory card or flash drive, I see that it comes up under "my computer;" however, when I click on the icon (Remove Disk F:) to open it, I get the following error message:

F:/ Application Not Found

How would I go about fixing this?

I would greatly appreciate your help!

Thanks,
Kelly

Answer:F:/ Application Not Found error

Hi, probably a problem with the autorun.inf file, easiest way to fix:-

Put the device into the computer

Go to start, all programs, accessories and right click on command prompt select "run as administrator" at the prompt type:-


Code:
attrib -s -r -h F:\autorun.inf

press enter and then Type:-

del F:\autorun.inf press enter then type exit press enter
Remove the device then reconnect it, should be OK now.

1 more replies
Relevance 67.65%

If I try and DD click on a thumbdrive, mp3 player or tomtom through My Computer I get this message Application not found". But if I right click and "Open" I can access the files

Any Idea on a fix ?

More replies
Relevance 67.65%

My husband did something to my computer (he has no recollection of what), and now when I try to open any program via the normal shortcuts, I see an error message reading "Application Not Found". In order to use anything, I must go find the program on my hard drive and then choose the program responsible for running that program. :\ I've tried creating new shortcuts, but to no avail.

How can I get back to normal? I'm running Windows XP.

Any advice is greatly appreciated.
 

Answer:Solved: Application Not Found

7 more replies
Relevance 67.65%

Hi!Im new to this forum.I was looking for solution for my DVD drive.
My computer was turning on and off itself(it still does),so i opened it and clean it.I was bent my processor pins,so when i tried to turn it on,its starts beeping.So i fixed it.Now it turns on,but now my DVD drive dont work!!
When i insert DVD or CD in,nothing happens and when i double click on it says"E:\Application not found".It says even if theres nothing in it(DVD,CD).Theres no"explore"or anything.I really need it but i cant find solution.
Can anyone here help me??I tried with regedit and update,even reinstall,but nothing works.
Thanks!

Answer:DVD RW problem(E:\Application not found)

  
Quote: Originally Posted by EDINN


Hi!Im new to this forum.I was looking for solution for my DVD drive.
My computer was turning on and off itself(it still does),so i opened it and clean it.I was bent my processor pins,so when i tried to turn it on,its starts beeping.So i fixed it.Now it turns on,but now my DVD drive dont work!!
When i insert DVD or CD in,nothing happens and when i double click on it says"E:\Application not found".It says even if theres nothing in it(DVD,CD).Theres no"explore"or anything.I really need it but i cant find solution.
Can anyone here help me??I tried with regedit and update,even reinstall,but nothing works.
Thanks!


Ugh, never take your CPU out.. I suspect your dvd drive isnt plugged in correctly given you experience when "cleaning" you cpu.

Ken

6 more replies
Relevance 67.65%

When I'm receiving an email with Jpeg picture attachments, I try to open and the following box comes up..."Application not found"...What I have done to open the picture is save it to MY DOCUMENTS and open it with PAINT. I have no idea what I've done to change my computer.

Any information you can provide would be greatly appreciated

Thank You
Mel
 

More replies
Relevance 67.65%

Hello. Yesterday my computer was infected with a virsus that disabled my internet and kept poping up with a XP Anitivrus Pro 2010 window. I ran malware bytes which removed three infected items and my kaspersky antivirus 2009 program, which show nine threats(im not sure if they were removed). When I rebooted my computer, kaspersky came up with a warning for Trojan.Win32.FraudPack.aoal, which kaspersky took action of removing and rebooting the computer. Once the computer was rebooted, the virus popup stopped coming up. Then I ran a microsoft PC safety scan which came up negative. Now the problem I am having is that all of my programs including control panel, sounds, performance etc can not be accessed, without having to browse for the exe file. I get the message c:\windows\system32\rundll32.exe application not found. I have already checked the c:\windows\system32 and c:\windows\sevicepack folders to ensure that they have the rundll32.exe file in them, and they do. Any help would be greatly appreciated. Thank you!

Answer:rundll32. exe application not found

It sounds like the virus made copy of its self on the restore point I would run kaspersky and malware in safemode just to be sure your computer is clean http://www.bleepingcomputer.com/virus-remo...ivirus-pro-2010 is the guide for removing that virus and known registry keys. http://www.dll-files-download.com/R/2008-01-13/15185.html this is a generic rundll32.exe file. Its located in the system32 folder Yes i have one in that folder

5 more replies
Relevance 67.65%

Hi, have been trying to install pinnacle studio 14 hd and had difficulty. Contacted help centre and searched forum. Followed a few tips and then found my dvd burner will not function. it will play dvd but wont open pinnacle disk. get 'F:/ application not found' error even when plays dvd. Seem to have lost a pathway or something.... I am not a tech person but can follow clear instructions if someone has any suggestions

Answer:F:/ application not found error

It sounds like registry corruption due to Pinnacle not installing correctly..

Go into the device manager and uninstall the dvd player and reboot.

After rebooting windows will correct the error and all should be fine.

I had the same problem with Nero once and this works perfectly.

2 more replies
Relevance 67.65%

Hi guys,

I've always been able to fix my own problems.. but this time I actually had to sign up for other advice..

Currently running Windows XP SP3

The irony was: I updated AVG 8.5 to AVG 9. (Computer was running fine with no viruses)

After AVG 9 was installed, computer automatically restarted, and when it restarted, my startup programs wouldn't load. It was weird so i tried to manually start them up and everytime i click on an .exe (like MSN msnger), it opens up the avgui.exe screen. I couldn't even "add and remove programs" to do an uninstall of AVG 9, it'd direct me to avgui.exe and opening the user interface every single time..

So I restarted in safe mode, AVG's dll still hooked onto the startup process, I couldn't terminate AVG.

Then I restarted in safe mode with command prompt. Did a "cd program files/avg9" and successfully del all the files in AVG.

Yay no more AVG! But.. now instead of the avgui.exe popping up, a "Please choose a program to open with" dialog box pops up everytime i start an exe. And when i try to open control panel items such as add and remove programs and computer properties, it comes up with "C:\Windows\System32\rundll.exe" application not found.

Funny thing is, iexplorer.exe works only from the desktop, not from the taskbar.. hence i'm on it right now. I do not believe I have a virus, just some registry files messed up by AVG. I can't run any .e... Read more

Answer:Rundll32.exe application not found

great news,

fixed it using regedit and a registry cleaner, then it turned into just a missing file association type for .exe. Then all i had to do was go to registry and reassociate the EXE file with %1.. i think i could've done the easy way and click "restore"..

it upsets me to see so many people that had the exact same problem as me (not necessarily AVG, but with kapersky, and others, etc) and ended up going through the whole backing up and reformatting everything....

Anyway,

Question is...... should i reinstall AVG 9.0?! I've been using AVG for the past 4-5 years with no issues.. i have no idea how it messed up the last time

3 more replies
Relevance 67.65%

Last night while I was browsing with FireFox, my zone alarm alerted me to a virus that was quarantined and also of several attempts by a program called tup.exe to access some host over the net. I denied the requests from zone alarm to allow the tup.exe to do anything. Then I went and found tup.exe on my hard drive. It was running and appeared to be some kind of virus checker scam with a screen showing my computer was contaminated. I immediately did an end task on the program and then deleted the tup.exe and removed it from the recycle bin. I ran a full scan with zone alarm which found one low ranked infection and quarantined that. When I try to run programs now, I either get application not found or I get a prompt titled "Open With" and then a list of programs to use to open it with. If I right click on a shortcut or program and choose run as administrator, it will open and run fine. This happens in safe mode too. I would like to determine how to run programs normally again.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:46:04 AM, on 5/14/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Safe mode with network support

Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Users\alpacaman\Downloads\dds.scr
C:\... Read more

Answer:application not found errors

Here is the attach.txt - I can't find the dds.txt file? Where would it be? It is not on my desktop or in the folder I ran dds.scr out of.
 

2 more replies
Relevance 67.65%

Hey
I'm using a Vista PC. Whenever I enter a CD, DVD, or software CD into my computer's CD drive, it works fine. However when I enter games, it begins to warm up, then stops spinning. I try clicking the D: drive in My Computer, only to recieve the message "D: drive application not found". Sometimes it will open a blank Windows Explorer window.

If anyone could help me out or has had a similar problem, that would be grand

Cheers
 

Answer:D: Drive application not found

Is this a retail dvd game?
 

2 more replies