[helpmeko00761]

Just out of the blue, whenever I visit Yahoo on Firefox, I get multiple and constant "Malicious URL blocked" warning from Avast.

Here is my registry reading:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:13:01 PM, on 7/1/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\STMicroelectronics\Accelerometer\FF_Protection.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Windows iLivid Toolbar\Datamngr\datamngrUI.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Box Sync\BoxSyncHelper.exe
C:\Users\Sachi Dell\AppData\Roaming\SearchProtect\bin\cltmng.exe
C:\ProgramData\ClickFreeTformer\reminder\SacReminder.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Sachi Dell\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Box Sync\BoxSync.exe
C:\Users\Sachi Dell\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USSMB/1
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...45-AD398C1172D0
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft..../?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft..../?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: InternetHelper3.1 Toolbar - {07cbf788-1359-421b-a4e3-5a8d041b90a3} - C:\Program Files\InternetHelper3.1\prxtbInte.dll
O2 - BHO: InternetHelper3.1 - {07cbf788-1359-421b-a4e3-5a8d041b90a3} - C:\Program Files\InternetHelper3.1\prxtbInte.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files\LastPass\LPToolbar.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll
O2 - BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~1\WI3C8A~1\Datamngr\BROWSE~1.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll" (file missing)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: InternetHelper3.1 Toolbar - {07cbf788-1359-421b-a4e3-5a8d041b90a3} - C:\Program Files\InternetHelper3.1\prxtbInte.dll
O3 - Toolbar: LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files\LastPass\LPToolbar.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe
O4 - HKLM\..\Run: [FreeFallProtection] C:\Program Files\STMicroelectronics\Accelerometer\FF_Protection.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IntelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\WI3C8A~1\Datamngr\DATAMN~1.EXE
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BoxSyncHelper] "C:\Program Files\Box Sync\BoxSyncHelper.exe"
O4 - HKLM\..\Run: [SearchProtectAll] C:\Program Files\SearchProtect\bin\cltmng.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [SacReminder] C:\ProgramData\ClickfreeTformer\reminder\SacReminder.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SansaDispatch] C:\Users\Sachi Dell\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe
O4 - HKCU\..\Run: [SearchProtect] C:\Users\Sachi Dell\AppData\Roaming\SearchProtect\bin\cltmng.exe
O4 - Startup: Dropbox.lnk = Sachi Dell\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files\Evernote\Evernote\EvernoteClipper.exe
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Box Sync.lnk = C:\Program Files\Box Sync\BoxSync.exe
O4 - Global Startup: Install LastPass FF RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O4 - Global Startup: Install LastPass IE RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Clip selection - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Clip this page - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Clip URL - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: LastPass - file://C:\Users\Sachi Dell\AppData\LocalLow\LastPass\context.html?cmd=lastpass
O8 - Extra context menu item: LastPass Fill Forms - file://C:\Users\Sachi Dell\AppData\LocalLow\LastPass\context.html?cmd=fillforms
O8 - Extra context menu item: New Note - C:\Program Files\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\LastPass\LPToolbar.dll
O9 - Extra 'Tools' menuitem: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\LastPass\LPToolbar.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra button: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} (DellSystemLite.Scanner) - http://support.dell....lSystemLite.CAB
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://juniper.net/...SetupClient.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\PROGRA~1\WI3C8A~1\Datamngr\datamngr.dll C:\PROGRA~1\WI3C8A~1\Datamngr\IEBHO.dll
O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\822\G2AWinLogon.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_41f81f5ce017c35c\aestsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: WebEx Service Host for Support Center (atashost) - WebEx Communications, Inc. - C:\Windows\system32\atashost.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Search Protect by Conduit Updater (CltMngSvc) - Conduit - C:\Program Files\SearchProtect\bin\CltMngSvc.exe
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files\Citrix\GoToAssist\822\g2aservice.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: FF Install Filter Service (InstallFilterService) - Unknown owner - C:\Program Files\STMicroelectronics\Accelerometer\InstallFilterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_41f81f5ce017c35c\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

--
End of file - 16408 bytes

Uninstall List

Update for Microsoft Office 2007 (KB2508958)
Accelerometer
Adobe AIR
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.7)
Advanced Audio FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
avast! Free Antivirus
Bing Bar
Bonjour
Box Sync
Broadway 4.0
Cisco Connect
D3DX10
Dell Backup and Recovery Manager
Dell Edoc Viewer
Dell Touchpad
Dell Touchpad
Dell Webcam Central
DW WLAN Card
Evernote v. 4.6.4
FreeMind
Google Chrome
Google Drive
Google Update Helper
GoToAssist Corporate
HiJackThis
HP Imaging Device Functions 13.0
HP Photosmart Essential 3.5
HP Scanjet G3010
HP Solution Center 13.0
HP Update
iLivid
iLivid
Intel® Graphics Media Accelerator Driver
Intel® Management Engine Components
InternetHelper3.1 Toolbar
iTunes
Japanese Fonts Support For Adobe Reader X
Java 7 Update 25
Java™ 6 Update 29
JavaFX 2.1.1
Jello.Dashboard 5.26 beta (Astral)
Juniper Networks Setup Client Activex Control
Junk Mail filter update
LastPass(uninstall only)
LINE
Live! Cam Avatar Creator
Logitech Webcam Software
Logitech Webcam Software Driver Package
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft SharedView
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Mozilla Firefox 22.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
OCR Software by I.R.I.S. 13.0
Picasa 3
PowerDVD DX
QuickSet32
QuickTime
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE 10.3
Roxio Creator DE 10.3
Roxio Creator Tools
Roxio Express Labeler 3
Roxio Update Manager
Search Protect by conduit
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Shutterfly Express Uploader
Shutterfly Express Uploader
Skype Click to Call
Skype™ 6.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
WIDCOMM Bluetooth Software
Windows iLivid Toolbar
Windows Live Communications Platform
Windows Live Essentials
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mail
Windows Live Messenger
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer
Windows Live Writer
Windows Live Writer Resources
Windows Media Player Firefox Plugin

Attached Files

•  uninstall_list.txt   8.59KB   99 downloads
•  hijackthis_2013.txt   32.05KB   111 downloads

[Advertisements]

Hello helpmeko00761

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

• Please do not run any tools unless instructed to do so.
  
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
• Please do not attach logs or use code boxes, just copy and paste the text.
  
  • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
• Please read every post completely before doing anything.
  
  • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
• Please provide feedback about your experience as we go.
  
  • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on AdwCleaner.exe to run the tool.
• Click on Delete.
• Confirm each time with Ok.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the content of that logfile with your next answer.
• You can find the logfile at C:\AdwCleaner[S1].txt as well.

-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

When they are complete let me have the two reports and let me know how things are running.

Gringo

[gringo_pr]

Hello helpmeko00761

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

• Please do not run any tools unless instructed to do so.
  
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
• Please do not attach logs or use code boxes, just copy and paste the text.
  
  • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
• Please read every post completely before doing anything.
  
  • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
• Please provide feedback about your experience as we go.
  
  • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on AdwCleaner.exe to run the tool.
• Click on Delete.
• Confirm each time with Ok.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the content of that logfile with your next answer.
• You can find the logfile at C:\AdwCleaner[S1].txt as well.

-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

When they are complete let me have the two reports and let me know how things are running.

Gringo

[helpmeko00761]

Thanks Gringo. Sorry I jumped the gun and before getting your reply, I went and found this suggestion:

http://forum.avast.c...p?topic=92840.0

Sounded just like my symptom so I hit the Fix It button and set it back to default. Problem didn't go away. Would this change anything?

[gringo_pr]

Hello


NO, I still want you to run them


gringo

[helpmeko00761]

Here is part I

# AdwCleaner v2.303 - Logfile created 07/01/2013 at 21:05:03
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (32 bits)
# User : Sachi Dell - SACHIDELL-PC
# Boot Mode : Normal
# Running from : C:\Users\Sachi Dell\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : CltMngSvc

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
File Deleted : C:\END
File Deleted : C:\Program Files\Mozilla FireFox\searchplugins\Search_Results.xml
File Deleted : C:\Users\SACHID~1\AppData\Local\Temp\Searchqu.ini
File Deleted : C:\Users\SACHID~1\AppData\Local\Temp\searchqutoolbar-manifest.xml
File Deleted : C:\Users\SACHID~1\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\Ilivid
Folder Deleted : C:\Program Files\InternetHelper3.1
Folder Deleted : C:\Program Files\SearchProtect
Folder Deleted : C:\Program Files\Windows iLivid Toolbar
Folder Deleted : C:\ProgramData\{B49A644A-1076-4A3D-B124-DAA7862F2318}
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ilivid
Folder Deleted : C:\Users\Sachi Dell\AppData\Local\Conduit
Folder Deleted : C:\Users\Sachi Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nemfjadlboooiffmcelkafilagddogim
Folder Deleted : C:\Users\Sachi Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nemfjadlboooiffmcelkafilagddogim
Folder Deleted : C:\Users\Sachi Dell\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\Sachi Dell\AppData\Local\PackageAware
Folder Deleted : C:\Users\Sachi Dell\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Sachi Dell\AppData\LocalLow\InternetHelper3.1
Folder Deleted : C:\Users\Sachi Dell\AppData\LocalLow\searchquband
Folder Deleted : C:\Users\Sachi Dell\AppData\LocalLow\Searchqutoolbar
Folder Deleted : C:\Users\Sachi Dell\AppData\Roaming\Mozilla\Firefox\Profiles\d3qo8gvl.default\Searchqutoolbar
Folder Deleted : C:\Users\Sachi Dell\AppData\Roaming\SearchProtect

***** [Registry] *****

Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~1\WI3C8A~1\Datamngr\datamngr.dll
Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~1\WI3C8A~1\Datamngr\IEBHO.dll
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\InternetHelper3.1
Key Deleted : HKCU\Software\AppDataLow\Software\searchqutoolbar
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\Google\Chrome\Extensions\nemfjadlboooiffmcelkafilagddogim
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\SearchProtect
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{07CBF788-1359-421B-A4E3-5A8D041B90A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6CE83F03-4DFD-4070-A0A7-C46C82E20971}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO
Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\ilivid
Key Deleted : HKLM\Software\Classes\Installer\Features\2B1E51D87B2D71A44BB42DDD5E894160
Key Deleted : HKLM\Software\Classes\Installer\Products\2B1E51D87B2D71A44BB42DDD5E894160
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289663
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\nemfjadlboooiffmcelkafilagddogim
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\Software\InternetHelper3.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E78AB14-CC16-42F4-B107-BFA59CFD45D9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8AB95082-8A48-43C8-96E9-25F5D973794A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07CBF788-1359-421B-A4E3-5A8D041B90A3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6CE83F03-4DFD-4070-A0A7-C46C82E20971}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\817FDB46B46DE8B4AAD499F1DAFF341D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5A9327D31011C244A196F700637C701
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C6B84CEB2810F104BA0E5FC5C8EACD7E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2B1E51D87B2D71A44BB42DDD5E894160
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InternetHelper3.1 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Windows Searchqu Toolbar
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\SearchquMediabarTb
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{07CBF788-1359-421B-A4E3-5A8D041B90A3}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{07CBF788-1359-421B-A4E3-5A8D041B90A3}]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [searchprotect]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{07CBF788-1359-421B-A4E3-5A8D041B90A3}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{07CBF788-1359-421B-A4E3-5A8D041B90A3}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchProtectAll]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com/?ctid=CT3289663&octid=CT3289663&SearchSource=61&CUI=UN35291625859177699&UM=2&UP=SP47243CFB-AF5F-4A64-AA45-AD398C1172D0 --> hxxp://www.google.com

-\\ Mozilla Firefox v22.0 (en-US)

File : C:\Users\Sachi Dell\AppData\Roaming\Mozilla\Firefox\Profiles\d3qo8gvl.default\prefs.js

Deleted : user_pref("CT3289663_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Deleted : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3289663&octid=CT328966[...]
Deleted : user_pref("Smartbar.ConduitSearchEngineList", "InternetHelper3.1 Customized Web Search");
Deleted : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289663[...]
Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://dts.search-results.com/sr?src=ffb&appid=1[...]
Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "");
Deleted : user_pref("browser.search.defaultenginename", "Search Results");
Deleted : user_pref("browser.search.defaultthis.engineName", "InternetHelper3.1 Customized Web Search");
Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289663&CUI[...]
Deleted : user_pref("browser.search.order.1", "Search Results");
Deleted : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=119&systemid=406&sr=0&q=");
Deleted : user_pref("smartbar.machineId", "HV+PGFYLILRRWYYTLJYQTKXKWTHXSNA8MTADZ7R1PAOYJE6NGJYJIV3JTESHZCICZYE[...]

-\\ Google Chrome v27.0.1453.116

File : C:\Users\Sachi Dell\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.2924] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3289663&SearchSource=48&CUI[...]

*************************

AdwCleaner[S1].txt - [11610 octets] - [01/07/2013 21:05:03]

########## EOF - C:\AdwCleaner[S1].txt - [11671 octets] ##########

[helpmeko00761]

Part II

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Professional x86
Ran by Sachi Dell on Mon 07/01/2013 at 21:48:05.04
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{A6017B6B-02A6-4E08-8739-8570391CE2EE}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Sachi Dell\appdata\locallow\datamngr"
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{002BB83A-2889-4A74-90DE-4D9B84E39662}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{00DEDA62-E37F-4D67-8056-16779AD9246B}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{01E2F080-6888-49B8-9B2F-4EC40B3BE8BF}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{01F9BA51-D96E-4F53-86D9-6CE8D001239C}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{04709405-3125-49FA-AF31-90188F8AEA19}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{05A7C1E6-C942-4B81-96C9-66A3678E875C}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{068320DF-2620-4652-AD32-0C4C8AF503C7}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{073AF43A-51A4-4494-B860-D2B803811F2D}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{081A575D-A049-4381-AAA2-6D51277017F9}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{09D320C1-C8F0-458D-AF06-E7783DECFAFE}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{0A6863E6-B2AF-4E80-AD12-B8F788923D86}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{0B0ED417-162D-4DCD-AB5F-7CBF5212D0B2}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{0BB7D5E6-F3F3-4FB9-92E9-899C3AB04081}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{0C009054-2733-47A6-9D68-3134962551B5}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{0C5C5B53-D419-467D-AB34-6D3408E57D5A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{0C5EA39F-AC89-4DFA-8EAB-4DB8055B76E0}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{0FB60645-BE8C-45F0-99FB-CB9A301B0FCF}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{1301C7A4-95B9-4E34-AC09-7DF7A52BB695}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{13D77DE3-E67A-4B1C-BC73-E6461ED202C4}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{161E41F7-D6D9-4E59-84A9-A06FC53522CB}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{16D80834-E5EF-483E-8FB8-6F8506523801}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{19C05260-CA54-416C-9D9C-0C9ABD663196}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{1B3DAB6F-958C-4EEA-A16D-2F1E64DA1777}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{1F1D04C4-4CC2-41EC-B3CD-FFDF913FCD93}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{210820D0-25B1-4433-8D0F-5054CCB09289}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{21A51E21-1F89-4C93-9755-47F0AFF82D5A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{23A97A1C-15C8-4684-9A19-0087F8F62F68}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{266D4890-55B8-417C-A217-4AD52CF869EE}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{29C78675-92F1-4BA8-A2A9-F4B6CE1DE63C}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{2C183B3C-284A-42AC-BDD5-0AF650D1324B}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{2C5606E0-FA66-401C-9E6E-821E3B277A71}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{2CAAE562-60F8-4EAF-A740-907ADAEBDCF1}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{2D031302-4151-4849-B6AE-7C39843B7F7B}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{31CC8237-4541-4D6B-BBC9-AE8457C99EE8}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{3447B5CC-1023-4D18-8352-62AD7E6ECD64}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{35B772B3-8BFA-4784-BD08-1ED7F324A55A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{3702D432-6C6E-4B7B-9A78-E1FBE61D215B}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{3931536F-DD0B-41CA-BD9C-78365CFC992A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{3B5CCE6D-9D3B-4229-A25C-F92A8E64D88A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{3C49E79B-947A-412A-8F24-C6B830862861}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{3D083C8F-4282-4E0B-B5D8-6DF2B04300D6}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{3EB58EB6-E4B7-43B3-9599-2063600CC606}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{400EE3E9-36F0-4D58-B2B7-946F87C0C01C}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{40E88377-4B2A-4D3F-B96F-8DE7D11461B6}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{457B4CD3-6E05-4986-8981-CBB7402AFA19}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{472EDBF1-A9B2-4DF9-BD8F-0CF0910B80BB}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{4BEDE221-79B6-4157-B360-50731745E547}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{4C16D1D2-E81D-40BE-B43A-E65D40AAAAA5}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{504145E7-70C0-4E97-B9A6-46DBAA2EAF93}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{50B0FC9D-363D-46DF-B4CC-9DC8C21C2395}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{51B942DE-7ECA-482E-8248-B3050BEE1FFA}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{537F18D8-DBB4-463F-BE8F-D6FC261858DB}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{53916D4A-4CC8-4143-8461-37DA77DA73C2}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{5DFA2034-4D47-444D-80F3-04F8168207EF}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{5F393B25-5B75-4978-9E76-1E537489E9BB}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{6248FADC-67E6-40E8-A714-03FC14FEBBCF}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{625EFABE-C807-4BCE-9768-52D4E7F6B4B6}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{6315DB52-1787-4511-B8A1-2BBF723ED91F}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{6615BDAF-7D60-491E-9400-32344E3CC4FD}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{66DE09AF-171A-4CB9-B5A6-82E84E3A26A7}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{66F9B540-2154-4716-A248-AB5E017E30AF}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{682AEC62-FF36-45CE-978D-A0E1CC397DC1}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{685BA9A3-A426-42F5-839D-6413BF1F7378}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{686DEDD9-EC08-464D-82D7-FCF9D8100C74}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{697B4BF9-19BC-4B2C-A016-F5C697FDF2C0}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{6EEAFA99-C938-47A7-B738-49F453228552}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{6FB4F97F-A4A1-4B42-A129-8FC6D63DAE88}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{713C8845-2DF7-41A5-BFEC-50AC871AB9E3}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{719B3FD8-6CA5-44A6-ADDE-ECFCE45FBF49}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{7573E9D8-ACF3-4985-B032-CC369155AC2A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{75AFF7D4-7181-4488-A3B0-40FB9A389A58}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{76B52E4B-DC47-40D1-AE55-4270E2C10E80}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{7A77EFFC-2F2C-4789-B9A4-EF9D87144282}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{7A95E94E-A83F-4D05-98BA-B309245E167E}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{7D98EEE2-496E-41B3-808A-3256474BAB07}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{7E25981D-621B-4ED5-8070-316B075FF0B2}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{7F0BF0EF-E125-4F80-8AFB-C54ABAE9A30E}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{808642B6-2616-46DF-B977-00C73035DAE7}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{83C942CA-2D0F-4281-A586-73DB1561FCCE}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{8401813F-6C70-4A09-A2F2-751F45569318}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{871E7797-2704-4553-A2D7-4B4D4BBB0E09}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{87AF20F2-24F7-43D9-ADED-0B1FBE863AB4}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{8D7B8246-3189-4490-B0D6-159B896153C1}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{8F1A919D-CBDC-43E9-A1FC-763CBC36B5D1}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{8FF58DB1-F48A-4B38-9D47-D5C2E16B448D}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{93027B56-2006-4A1D-BD63-85C9310922D4}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{93FE7C0A-2CFD-4461-91A6-ED27EF5C7196}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{95318318-6337-4CD8-B12A-9CBB7B9004E2}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{967F9ED9-F797-437B-AAC5-102E62216932}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{9C042F2D-C995-409C-95CA-E519CBEFA8F4}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{9CA37FB2-1B27-4D72-9AE0-BC6FEA52AD41}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{9EBF46BD-1FB6-47C9-B221-8F7F438721E4}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A0AD6148-CDE3-4260-B2F8-9D2F7E738DB4}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A0ED22FB-73BA-437A-BC13-8C6234DA1535}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A158C7A1-B78C-4779-8FA4-12D59F397077}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A236C26D-E82A-4443-B968-10E65E3F400C}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A25E12F8-2AFE-4038-AA8F-178C50D09A89}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A57A7516-0B17-4F63-B2D5-CCC1DBCDF1F7}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A7690B41-33CB-44D9-BDC7-B573AE6C200A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A794D5AD-CC5D-425C-94C1-CE2CADF3B154}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A98EFEEF-D35D-4627-BCA7-D8ECFD8FB817}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{A9A90196-C19F-443D-9D50-195E30FCA0F9}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{AAC7EA01-D4B1-46E0-A3E9-9D613990E303}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{AFAF10DC-1DC7-496D-BD78-F98069CF076E}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{B09F5889-2E1E-4097-B244-0EBB64352EBB}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{B0B5F52D-C3DC-4B77-9CB7-D0E786D0F6DA}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{B1FEF76A-F44C-4A7F-9844-4469861CB9FE}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{B2A1A8D8-087E-43A7-909E-0E270DDB27DF}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{B6155AB0-AC0D-4F03-8891-80198ACFA4E5}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{B7BA3C97-64AC-4556-8F85-8B80422CFA54}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{BD42458C-25C2-4F05-B48A-47E11B8ED38E}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{BDFE5537-4CB4-4AAE-8173-832362035B9D}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{BFE00553-821B-4C15-A606-2711A289C217}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{C2785EF3-2D6E-4832-B30B-32ED280C58D9}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{C43F920D-56CC-47FE-9C6F-8060FD869EB5}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{C4DB7034-4611-4ECB-88A9-75355397DA33}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{C7E683DA-A2EE-49F1-8F39-CA1FC3D0FF4E}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{C80BC6A5-046E-4CEF-A2F6-0BFDE6B9D707}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{CA035982-1A3C-4C86-A4C0-EF36188DBE61}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{CB731BF6-26D1-4BCD-89E5-286FAC506AD1}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{CBF52863-66C4-42FA-9545-511135A13A08}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{CC4EA42F-AD6C-4FB8-8E89-67D309502D54}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{D1017837-C862-45BC-8A8D-A239CCABA024}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{D51824E0-7175-425A-A63A-C1D00E765A34}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{D5BB88EF-42D1-4423-8BB5-D97C9B8D9F4C}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{D5D08106-D0E9-4D47-8881-6F8435F5F510}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{D6755EA9-3200-45B0-AB05-D20FE9F6740C}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{D69DA55F-41C5-4577-887E-127FD0208D60}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{D9EB6849-ECE7-4926-8FEE-BC8049ED1E43}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{DA12C3F5-A0A5-4590-98A3-0CE556983840}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{DD166486-0E84-46F1-AB0C-151649A0207B}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{DEA2667A-698F-48A7-AD88-511251EF0634}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{DED61D51-95F6-4DDF-9625-F58E73AE4FCC}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{DF4ACD6C-0FE3-4F80-A249-146027739D02}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{DF959EAB-4BB3-431D-8A54-14099499E08B}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E0531020-5C4D-4D23-9D26-C85CCA4F1652}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E23D2349-6FE6-4B48-9997-C4B9FCF339F3}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E311DE4C-F949-4F84-8FF9-FB914F9F8341}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E365FABA-1707-4F4B-9F80-54180D4CAECF}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E47BC272-A4C7-458B-89B8-30E8262256A3}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E5E949B2-8D91-48A4-9B8F-B03C33B7CB3A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E630167D-AEC8-4B32-815D-CD7FD9FEC0E2}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E65210D5-21B2-4DA5-A66C-EF96B85935A0}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E71EA7D0-27C0-4576-80D6-23DF5C43B9B2}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E9074451-B290-4E12-9145-772DBE50314B}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E9D76E94-CA71-4C6E-B03E-7EFDF797EECB}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{E9D853F8-3B28-4F33-A29E-0E2898A07384}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{EC2D9FFE-500D-45DB-BA00-C2E3001D5E2A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{EC8FAB82-1EBC-4A30-89C2-FC7B7C75CCBD}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{EE7050DB-1CAE-4E56-B28A-8AA9AF0747F6}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{F0F37879-02DB-4668-B477-4AABDCA577E6}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{F2C812BE-2950-448E-A4F6-9A8916414BC3}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{F99574C3-83CE-408A-BB87-8F9DCACFDF3A}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{F9B9A062-C448-4085-99C2-8CB6D3866453}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{FDAB7895-FBF4-42EC-8DE2-F2EA56643601}
Successfully deleted: [Empty Folder] C:\Users\Sachi Dell\appdata\local\{FE40BC26-8DBF-4132-AE50-95D40FA978DB}



~~~ FireFox

Failed to delete: [Folder] "C:\Program Files\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}"
Emptied folder: C:\Users\Sachi Dell\AppData\Roaming\mozilla\firefox\profiles\d3qo8gvl.default\minidumps [321 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 07/01/2013 at 21:51:49.36
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[gringo_pr]

Hello helpmeko00761

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

• In your next post I need the following
  
• Log from Combofix
• let me know of any problems you may have had
  
• How is the computer doing now?

Gringo

[helpmeko00761]

Thank you Gringo! The Avast threat detection alerts went away after the first two steps. Is it still necessary to run the combo fixes? If so, I may continue tomorrow. I suppose that all the files/folders that were deleted were malware/junk?

This forum was so helpful. Thank you for helping me solve my problem!

[gringo_pr]

Hello


yes I still want you to run it for me


Gringo

[helpmeko00761]

I can't disable Avast temporarily...tried following directions but there is no such tabs or choices to disengage temporarily. Will try another day though...thanks!

[gringo_pr]

Hello


shut down what you can and go ahead and run it anyway


gringo

[gringo_pr]

Hello

48 Hour bump

It has been more than 48 hours since my last post.

• do you still need help with this?
• do you need more time?
• are you having problems following my instructions?
  
• if after 48hrs you have not replied to this thread then it will have to be closed!

Gringo

[gringo_pr]

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.