[emeraldnzl]

Hello jimm42o,

Please run OTL.exe
 

• Under the Custom Scans/Fixes box at the bottom, copy and paste the content of the quote box below:
  
  

  :Files
  ipconfig /flushdns /c
  
  :Commands
  [resethosts]
  [emptytemp]

• Then click the Run Fix button at the top
• Let the program run unhindered, reboot when it is done
• It will produce a log for you on reboot, please post that log in your next reply.The log is saved in the same location as OTL.

After that

Please run a free online scan with the ESET Online Scanner

Vista / Win7 users: Right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator.

Note: This scan works with Internet Explorer or Mozilla FireFox.

 If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.

 

• Click the green ESET Online Scanner box
• Tick the box next to YES, I accept the Terms of Use
   then click on: Start
• You may see a panel towards the top of the screen telling you the website wants to install an addon... click and allow it to install. If your firewall asks whether you want to allow installation, say yes.
• Make sure that the option Scan archives is checked.
• If you are given an option to quarantine files ensure the scan is set to do so.
• Now click on Advanced Settings and select the following:
  • Scan for potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth Technology
• Click on Start
• The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
• When completed the Online Scan will begin automatically. The scan may take several hours.
• Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
• When completed select Uninstall application on close, make sure you copy the logfile first!
• Then click on: Finish
• Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
• Copy and paste that log as a reply to this topic and tell me how your machine is now.

 

 

[Advertisements]

All processes killed

========== FILES ==========

< ipconfig /flushdns /c >

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

C:\Users\Jimm\Downloads\cmd.bat deleted successfully.

C:\Users\Jimm\Downloads\cmd.txt deleted successfully.

========== COMMANDS ==========

C:\Windows\System32\drivers\etc\Hosts moved successfully.

HOSTS file reset successfully

 

[EMPTYTEMP]

 

User: All Users

 

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

 

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

 

User: dub_cm_auto

 

User: Jimm

->Temp folder emptied: 519523 bytes

->Temporary Internet Files folder emptied: 29633844 bytes

->Java cache emptied: 38814 bytes

->Google Chrome cache emptied: 103904980 bytes

->Flash cache emptied: 1636 bytes

 

User: Public

 

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32 (64bit) .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 4162324 bytes

%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 933032 bytes

RecycleBin emptied: 1918 bytes

 

Total Files Cleaned = 133.00 mb

 

 

OTL by OldTimer - Version 3.2.69.0 log created on 04242014_203524

 

Files\Folders moved on Reboot...

C:\Users\Jimm\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

C:\Windows\temp\KL101013501-20140424-0003.log moved successfully.

File\Folder C:\Windows\temp\officeclicktorun.exe_c2ruidll(201404240003526F8).log not found!

File\Folder C:\Windows\temp\officeclicktorun.exe_streamserver(201404240003526F8).log not found!

File move failed. C:\Windows\temp\ood_stream.x86.en-us.dat scheduled to be moved on reboot.

File move failed. C:\Windows\temp\ood_stream.x86.x-none.dat scheduled to be moved on reboot.

 

PendingFileRenameOperations files...

 

Registry entries deleted on Reboot...

[jimm42o]

All processes killed

========== FILES ==========

< ipconfig /flushdns /c >

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

C:\Users\Jimm\Downloads\cmd.bat deleted successfully.

C:\Users\Jimm\Downloads\cmd.txt deleted successfully.

========== COMMANDS ==========

C:\Windows\System32\drivers\etc\Hosts moved successfully.

HOSTS file reset successfully

 

[EMPTYTEMP]

 

User: All Users

 

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

 

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

 

User: dub_cm_auto

 

User: Jimm

->Temp folder emptied: 519523 bytes

->Temporary Internet Files folder emptied: 29633844 bytes

->Java cache emptied: 38814 bytes

->Google Chrome cache emptied: 103904980 bytes

->Flash cache emptied: 1636 bytes

 

User: Public

 

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32 (64bit) .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 4162324 bytes

%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 933032 bytes

RecycleBin emptied: 1918 bytes

 

Total Files Cleaned = 133.00 mb

 

 

OTL by OldTimer - Version 3.2.69.0 log created on 04242014_203524

 

Files\Folders moved on Reboot...

C:\Users\Jimm\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

C:\Windows\temp\KL101013501-20140424-0003.log moved successfully.

File\Folder C:\Windows\temp\officeclicktorun.exe_c2ruidll(201404240003526F8).log not found!

File\Folder C:\Windows\temp\officeclicktorun.exe_streamserver(201404240003526F8).log not found!

File move failed. C:\Windows\temp\ood_stream.x86.en-us.dat scheduled to be moved on reboot.

File move failed. C:\Windows\temp\ood_stream.x86.x-none.dat scheduled to be moved on reboot.

 

PendingFileRenameOperations files...

 

Registry entries deleted on Reboot...

[emeraldnzl]

Thank you.

 

I take it that the ESET one is on it's way.

[jimm42o]

C:\AdwCleaner\Quarantine\C\ProgramData\SearchNewTab\51c1e2bdb34ec.dll.vir a variant of Win32/Adware.MultiPlug.I application cleaned by deleting - quarantined

C:\Program Files (x86)\EaseUS\Todo Backup\bin\PxeServer.dll a variant of Win32/TFTPD32.A potentially unsafe application deleted - quarantined

C:\Users\Jimm\Desktop\QuickShare1-2-.exe Win32/DownWare.N potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\ccsetup412.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined

C:\Users\Jimm\Downloads\ccsetup412pro.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined

C:\Users\Jimm\Downloads\FlashPlayer__2114_i15825563_il42840.exe a variant of Win32/Amonetize.H potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\FlashPlayer__2114_i23659859_il42840.exe a variant of Win32/Amonetize.H potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\FlashPlayer__2114_i24745509_il42840.exe a variant of Win32/Amonetize.H potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\mplayer_Setup (1).exe a variant of Win32/Adware.iBryte.G application cleaned by deleting - quarantined

C:\Users\Jimm\Downloads\mplayer_Setup.exe a variant of Win32/Adware.iBryte.G application cleaned by deleting - quarantined

C:\Users\Jimm\Downloads\open-office.exe a variant of Win32/InstallCore.DK potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\openofficesuite-setup (1).exe Win32/DownloadAdmin.G potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\openofficesuite-setup (2).exe Win32/DownloadAdmin.G potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\openofficesuite-setup (3).exe Win32/DownloadAdmin.G potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\openofficesuite-setup.exe Win32/DownloadAdmin.G potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\RFactor [PC-DVD] [English] [www.topetorrent.com].exe Win32/InstalleRex.I potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\setup (1).exe Win32/InstalleRex.J potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\Setup (3).exe MSIL/Solimba potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\Setup (4).exe Win32/DomaIQ.R potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\setup.exe Win32/InstalleRex.J potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\SocialNetworksSetup.exe Win32/Toolbar.Crawler.B potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\Softonic_downloader_java-8-jre.exe a variant of Win32/SoftonicDownloader.F potentially unwanted application deleted - quarantined

C:\Users\Jimm\Downloads\Unconfirmed 35118.crdownload multiple threats cleaned by deleting - quarantined

C:\Users\Jimm\Downloads\Unconfirmed 740738.crdownload multiple threats cleaned by deleting - quarantined

C:\Users\Jimm\Downloads\Windows-Cleaner (2).exe multiple threats cleaned by deleting - quarantined

[jimm42o]

my norton wont update 

[emeraldnzl]

my norton wont update

I am not seeing anywhere that Norton has been touched in the processes we have undertaken. Is this update problem recent or has there been difficulties before?

 

On another matter

Your system doesn't seem to be activated:
 

Error: (04/24/2014 00:05:28 AM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
 
Error: (04/24/2014 00:04:34 AM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable

 
We cannot help you further until you system is activated.

[emeraldnzl]

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.