Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
mysearchdial.com
#1
Dose any known how to remove MySearchDial Toolbar from your PC i have looked in the add/remove prog but nothing there its in the manage add on in the search providers ever time i remove it from there its come back.

Google it and try some ways to take it off dose work i am using wndow 7 and internet explorer 11

please if any one known how please let me known thank you Huh Huh Huh

#2
Hi 145ah

Download adwcleaner: https://www.bleepingcomputer.com/download/adwcleaner/dl/125/

Select Scan look through the lists in each tab and uncheck anything you wish to keep.

Select Clean and when your system has rebooted attach the log file in this thread for perusal (you should be good to go).

*note adwcleaner will set all browser settings back to defaults.

Afterwards download and run DDS: https://www.bleepingcomputer.com/download/dds/dl/104/ and attach both logs here.

Thanks

#3
thank you GuiltySpark for your help I have try adwcleaner but dose not work I have attach logs for you to look at:

# AdwCleaner v4.106 - Report created 05/01/2015 at 01:59:35
# Updated 21/12/2014 by Xplode
# Database : 2015-01-03.1 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : ant - ANT-PC
# Running from : C:\Users\ant\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2HAWXW58\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\all\AppData\LocalLow\HPAppData

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A33DB9FD-7A8A-496E-92D3-9CFCF9D9E1C9}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496


-\\ Mozilla Firefox v


-\\ Google Chrome v


-\\ Comodo Dragon v


*************************

AdwCleaner[R6].txt - [1357 octets] - [04/01/2015 20:34:57]
AdwCleaner[R7].txt - [1411 octets] - [05/01/2015 01:53:23]
AdwCleaner[S4].txt - [1114 octets] - [05/01/2015 01:59:35]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1174 octets] ##########

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17496 BrowserJavaVersion: 10.72.2
Run by ant at 2:05:36 on 2015-01-05
Microsoft Windows 7 Professional 6.1.7601.1.1252.44.1033.18.4095.1932 [GMT 0:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
SP: Microsoft Security Essentials *Enabled/Updated* {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASD2Srv.exe
C:\Program Files (x86)\Anvisoft\Slim Toolbar\ToolBarService.exe
C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
C:\Program Files (x86)\Coupon Printer\CouponPrinterService.exe
C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Program Files (x86)\MAGIX\PC_Check_Tuning_2011_Download_Version\MXSAS.exe
C:\Program Files (x86)\nurago web meter\nurago-Reporting.exe
C:\Program Files (x86)\nurago web meter\nurago-Updater.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
C:\Program Files (x86)\StartupStar\StartupStar.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASD2.exe
C:\Program Files\OO Software\Defrag\oodtray.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files (x86)\nurago web meter\nurago-TrayIcon.exe
C:\Program Files\OO Software\Defrag\oodag.exe
C:\Program Files\CyberLink\Shared files\RichVideo64.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
C:\Windows\system32\viakaraokesrv.exe
C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe
C:\Windows\system32\vssvc.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 8\RealTimeProtector.exe
C:\Windows\system32\sppsvc.exe
C:\Program Files (x86)\Qmee\0.9.14\KangoEngine.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.bbc.co.uk/news
uSearch Bar = Preserve
uSearch Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mSearch Bar = hxxp://www.google.com
mSearch Page = hxxp://www.google.com
uProxyOverride = <local>
uSearchAssistant = hxxp://www.google.com
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: nurago web meter: {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - C:\Program Files (x86)\nurago web meter\Gacela2.dll
BHO: ZiggyTV Downloader: {62e3fd2a-c728-409d-b1ce-4468fd455e82} -
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: QmeeBHO: {7DF13A39-2F55-4461-9EBB-8DC681A6341F} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: &RoboForm: {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Qmee: {E120ACB6-21BA-45ED-9E79-32079107C103} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
TB: Gacela: {5F6E2508-41C4-4D4B-8AC3-D7ED6E4EB2AE} - C:\Program Files (x86)\nurago web meter\Gacela2.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Qmee: {E120ACB6-21BA-45ED-9E79-32079107C103} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO.dll
EB: Developer Tools: {1A6FE369-F28C-4AD9-A3E6-2BCB50807CF1} - C:\Program Files (x86)\Internet Explorer\iedvtool.dll
EB: nurago web meter: {4A62FAC4-1670-430B-8C6B-9C7B53F51798} - C:\Program Files (x86)\nurago web meter\Gacela2.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
uRun: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
uRun: [Glary Memory Optimizer] C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe /autostart
uRun: [GUDelayStartup] "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
dRun: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\NURAGO~1.LNK - C:\Program Files (x86)\nurago web meter\nurago-TrayIcon.exe
uPolicies-Explorer: NoDriveAutorun = dword:0
uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-Explorer: NoDriveAutorun = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
IE: {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - {80A21664-E813-4F79-B965-2058C0F7A84C} - C:\Program Files (x86)\nurago web meter\Gacela2.dll
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} - hxxps://oas.support.microsoft.com/ActiveX/MSDcode.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab
DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {D77F526B-FB71-4A52-A9FD-F1FFCD6A23D3} - hxxps://cdn4.userzoom.com/s/ie/f2/UserZoom.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{50E3321E-8B0F-49A5-AB94-44B11A441C12} : DHCPNameServer = 192.168.0.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - LocalServer32 - <no file>
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - LocalServer32 - <no file>
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - LocalServer32 - <no file>
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Handler: WSWSVCUchrome - <Clsid value has no data>
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: ExplorerWnd Helper: {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
x64-BHO: nurago web meter: {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - C:\Program Files (x86)\nurago web meter\x64\Gacela2.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: QmeeBHO: {7DF13A39-2F55-4461-9EBB-8DC681A6341F} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: Gacela: {5F6E2508-41C4-4D4B-8AC3-D7ED6E4EB2AE} - C:\Program Files (x86)\nurago web meter\x64\Gacela2.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: Qmee: {E120ACB6-21BA-45ED-9E79-32079107C103} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO64.dll
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - {80A21664-E813-4F79-B965-2058C0F7A84C} - C:\Program Files (x86)\nurago web meter\x64\Gacela2.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - <orphaned>
x64-Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - LocalServer32 - <no file>
x64-Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - LocalServer32 - <no file>
x64-Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Handler: WSWSVCUchrome - <Clsid value has no data>
x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 DiskSec;Magix Volume Filter Driver;C:\Windows\System32\drivers\disksec.sys [2012-2-4 27616]
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2014-7-17 269008]
R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDrive​r.sys [2014-7-25 21184]
R1 asd2fsm;asd2fsm;C:\Windows\System32\drivers\asd2fsm.sys [2014-12-25 51608]
R1 Asdids;Anvisoft Intrusion Detection System (NDIS6.0);C:\Windows\System32\drivers\asdids.sys [2014-11-24 50584]
R1 AsrAppCharger;AsrAppCharger;C:\Windows\System32\drivers\AsrAppCharger.sys [2012-1-18 15368]
R1 GSVDRIVE;GSVDRIVE Driver;C:\Windows\System32\drivers\GSVDRIVE.sys [2014-1-19 30816]
R1 GUBootStartup;GUBootStartup;C:\Windows\System32\drivers\GUBootStartup.sys [2014-5-16 20160]
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2012/10/01 15:08:41];C:\Program Files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [2011-10-18 148976]
R2 AdvancedSystemCareService8;Advanced SystemCare Service 8;C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [2014-11-18 815392]
R2 ASD2Svc;Anvi Smart Defender 2 Service;C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASD2Srv.exe [2014-11-24 1187840]
R2 astsvr;Anvi Slim Toolbar Guard Service;C:\Program Files (x86)\Anvisoft\Slim Toolbar\ToolBarService.exe [2014-12-11 119568]
R2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [2012-10-1 83240]
R2 CouponPrinterService;Coupon Printer Service;C:\Program Files (x86)\Coupon Printer\CouponPrinterService.exe [2014-3-17 177648]
R2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [2012-10-1 75048]
R2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [2012-10-1 292136]
R2 GfExperienceService;NVIDIA GeForce Experience Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-9-24 1148560]
R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2014-7-25 344896]
R2 MAGIX StartUp Analyze Service;MAGIX StartUp Analyze Service;C:\Program Files (x86)\MAGIX\PC_Check_Tuning_2011_Download_Version\MXSAS.exe [2010-10-12 196096]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2012-3-20 125584]
R2 ntk_PowerDVD;ntk_PowerDVD;C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [2012-10-1 75248]
R2 nurago-Reporting-Service;nurago-Reporting-Service;C:\Program Files (x86)\nurago web meter\nurago-Reporting.exe [2014-10-30 3295360]
R2 nurago-Update-Service;nurago-Update-Service;C:\Program Files (x86)\nurago web meter\nurago-Updater.exe [2014-10-30 1357952]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-2 1701520]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-9-13 19823248]
R2 OODefragAgent;O&O Defrag;C:\Program Files\OO Software\Defrag\oodag.exe [2014-5-12 1657640]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS);C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-2-4 390672]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-11-19 409800]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2013-12-11 2144056]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\System32\ViakaraokeSrv.exe [2014-6-27 27768]
R2 WiseFS;WiseFS;C:\Program Files (x86)\Wise\Wise Folder Hider\WiseFs64.sys [2014-6-12 10280]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-8-22 368624]
R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-6-4 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-12-16 38032]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2012-5-8 11856]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2014-6-27 689840]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 LiveUpdateSvc;LiveUpdate;C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2013-12-2 2631456]
S2 WiseBootAssistant;Wise Boot Assistant;C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [2014-1-5 580232]
S3 DfSdkS;Defragmentation-Service;C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\DfSdkS64.exe [2014-12-14 544768]
S3 DigiartyVirtualCDBus;Digiarty Virtual Driver;C:\Windows\System32\drivers\DigiartyVirtualCDBus.sys [2013-12-15 276256]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-10-10 57856]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-9-12 1512448]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-12-31 114688]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-8 19456]
S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2014-10-27 34848]
S3 Revoflt;Revoflt;C:\Windows\System32\drivers\revoflt.sys [2014-12-26 31800]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-14 56832]
S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2014-10-27 23016]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2014-8-15 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-1-17 1255736]
S3 WiseHDInfo;WiseHDInfo;C:\Program Files (x86)\Wise\Wise Care 365\WiseHDInfo64.dll [2014-6-12 11304]
S4 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2014-10-27 23048]
.
=============== Created Last 30 ================
.
2015-01-04 22:31:35 -------- d-----w- C:\Program Files (x86)\Free Window Registry Repair
2015-01-04 22:30:05 -------- d-----w- C:\Users\ant\AppData\Roaming\Cleanersoft
2015-01-04 16:51:18 1188440 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4D4CAF1B-B635-4F75-B998-C0958370CED9}\gapaengine.dll
2015-01-04 16:49:47 11870360 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{551ECEF6-3DA8-47DE-9904-3DB9319835B3}\mpengine.dll
2015-01-03 12:28:07 11870360 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2015-01-02 02:34:02 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2015-01-02 02:34:02 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2015-01-01 01:35:11 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-12-31 23:00:17 290304 ----a-w- C:\Windows\SysWow64\subinacl.exe
2014-12-31 23:00:13 -------- d-----w- C:\Program Files\Common Files\Microsoft
2014-12-31 23:00:13 -------- d-----w- C:\Program Files\Adware-Removal-Tool
2014-12-31 22:33:17 285208 ----a-w- C:\Windows\System32\drivers\tmcomm.sys
2014-12-31 00:31:37 -------- d-----w- C:\Users\ant\AppData\Local\Diagnostics
2014-12-30 23:27:06 -------- d-----w- C:\Users\ant\AppData\Local\Programs
2014-12-26 17:12:00 -------- d-----w- C:\ProgramData\XDMessagingv4
2014-12-26 00:32:20 -------- d-----w- C:\Users\ant\AppData\Local\VS Revo Group
2014-12-26 00:31:55 -------- d-----w- C:\ProgramData\VS Revo Group
2014-12-26 00:31:54 31800 ----a-w- C:\Windows\System32\drivers\revoflt.sys
2014-12-26 00:31:52 -------- d-----w- C:\Program Files\VS Revo Group
2014-12-25 00:06:41 -------- d-----w- C:\ProgramData\boost_interprocess
2014-12-25 00:05:41 51608 ----a-w- C:\Windows\System32\drivers\asd2fsm.sys
2014-12-25 00:05:38 -------- d-----w- C:\ProgramData\Anvisoft
2014-12-24 23:50:45 -------- d-----w- C:\Users\ant\AppData\Local\Anvisoft
2014-12-24 23:50:45 -------- d-----w- C:\Program Files (x86)\Anvisoft
2014-12-16 23:58:34 38032 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys
2014-12-16 23:58:34 32400 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2014-12-16 00:27:23 -------- d-----w- C:\Windows\System32\appraiser
2014-12-16 00:12:22 55808 ----a-w- C:\Windows\System32\rrinstaller.exe
2014-12-16 00:12:22 50176 ----a-w- C:\Windows\SysWow64\rrinstaller.exe
2014-12-16 00:12:22 3209728 ----a-w- C:\Windows\SysWow64\mf.dll
2014-12-16 00:12:22 24576 ----a-w- C:\Windows\System32\mfpmp.exe
2014-12-16 00:12:22 23040 ----a-w- C:\Windows\SysWow64\mfpmp.exe
2014-12-16 00:12:22 206848 ----a-w- C:\Windows\System32\mfps.dll
2014-12-16 00:12:22 2048 ----a-w- C:\Windows\SysWow64\mferror.dll
2014-12-16 00:12:22 2048 ----a-w- C:\Windows\System32\mferror.dll
2014-12-16 00:12:22 103424 ----a-w- C:\Windows\SysWow64\mfps.dll
2014-12-16 00:12:21 4121600 ----a-w- C:\Windows\System32\mf.dll
2014-12-16 00:06:23 2020352 ----a-w- C:\Windows\System32\WsmSvc.dll
2014-12-16 00:06:22 346624 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll
2014-12-16 00:06:22 310272 ----a-w- C:\Windows\System32\WsmWmiPl.dll
2014-12-16 00:06:22 266240 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe
2014-12-16 00:06:22 248832 ----a-w- C:\Windows\SysWow64\WSManMigrationPlugin.dll
2014-12-16 00:06:22 214016 ----a-w- C:\Windows\SysWow64\WsmWmiPl.dll
2014-12-16 00:06:22 198656 ----a-w- C:\Windows\SysWow64\WSManHTTPConfig.exe
2014-12-16 00:06:22 181248 ----a-w- C:\Windows\System32\WsmAuto.dll
2014-12-16 00:06:22 145920 ----a-w- C:\Windows\SysWow64\WsmAuto.dll
2014-12-16 00:06:22 1177088 ----a-w- C:\Windows\SysWow64\WsmSvc.dll
2014-12-16 00:05:47 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-12-16 00:05:47 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-12-14 05:37:20 -------- d-----w- C:\Users\ant\AppData\Local\O&O
2014-12-14 05:36:59 -------- d-----w- C:\Windows\System32\oodag
2014-12-14 05:36:38 -------- d-----w- C:\Program Files\OO Software
2014-12-14 05:35:25 -------- d-----w- C:\ProgramData\OO Software
2014-12-09 21:34:01 3540144 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2014-12-08 18:25:10 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll
2014-12-08 18:25:10 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll
2014-12-08 18:25:10 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll
2014-12-08 18:25:10 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll
2014-12-08 18:25:10 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll
2014-12-08 18:23:14 -------- d-----w- C:\Program Files\iPod
2014-12-08 18:23:13 -------- d-----w- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-12-08 18:23:13 -------- d-----w- C:\Program Files\iTunes
2014-12-08 18:23:13 -------- d-----w- C:\Program Files (x86)\iTunes
.
==================== Find3M ====================
.
2014-12-27 01:39:11 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-26 23:48:36 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-12-26 23:48:36 701616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-12-13 00:12:24 2210040 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2014-12-13 00:12:24 1291464 ----a-w- C:\Windows\SysWow64\nvspbridge.dll
2014-12-13 00:12:12 2824504 ----a-w- C:\Windows\System32\nvspcap64.dll
2014-12-13 00:12:12 1715224 ----a-w- C:\Windows\System32\nvspbridge64.dll
2014-12-04 02:50:55 413184 ----a-w- C:\Windows\System32\generaltel.dll
2014-12-04 02:50:45 741376 ----a-w- C:\Windows\System32\invagent.dll
2014-12-04 02:50:40 396800 ----a-w- C:\Windows\System32\devinv.dll
2014-12-04 02:50:38 830976 ----a-w- C:\Windows\System32\appraiser.dll
2014-12-04 02:50:37 227328 ----a-w- C:\Windows\System32\aepdu.dll
2014-12-04 02:50:37 192000 ----a-w- C:\Windows\System32\aepic.dll
2014-12-04 02:44:48 1083392 ----a-w- C:\Windows\System32\aeinv.dll
2014-12-01 23:28:44 1232040 ----a-w- C:\Windows\System32\aitstatic.exe
2014-11-24 01:40:12 50584 ----a-w- C:\Windows\System32\drivers\asdids.sys
2014-11-22 10:46:30 35472 ----a-w- C:\Windows\System32\nvaudcap64v.dll
2014-11-21 06:14:22 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-11-21 06:14:12 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-11-21 06:14:08 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-11-19 04:26:34 1614504 ----a-w- C:\Windows\System32\FM20.DLL
2014-11-12 21:56:45 6897352 ----a-w- C:\Windows\System32\nvcpl.dll
2014-11-12 21:56:45 3534152 ----a-w- C:\Windows\System32\nvsvc64.dll
2014-11-12 21:56:42 934032 ----a-w- C:\Windows\System32\nvvsvc.exe
2014-11-12 21:56:42 62608 ----a-w- C:\Windows\System32\nvshext.dll
2014-11-12 21:56:42 386368 ----a-w- C:\Windows\System32\nvmctray.dll
2014-11-12 21:56:42 2559808 ----a-w- C:\Windows\System32\nvsvcr.dll
2014-11-12 20:46:11 615624 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2014-11-11 10:29:54 4100776 ----a-w- C:\Windows\System32\nvcoproc.bin
2014-11-11 03:09:06 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2014-11-11 03:08:52 241152 ----a-w- C:\Windows\System32\pku2u.dll
2014-11-11 03:08:48 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-11-11 02:44:45 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2014-11-11 02:44:32 186880 ----a-w- C:\Windows\SysWow64\pku2u.dll
2014-11-11 02:44:25 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-11-11 01:46:26 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-11-07 22:54:04 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-11-04 00:04:30 1876296 ----a-w- C:\Windows\System32\nvdispco6434465.dll
2014-11-04 00:04:30 1539272 ----a-w- C:\Windows\System32\nvdispgenco6434465.dll
2014-10-30 11:25:26 275080 ------w- C:\Windows\System32\MpSigStub.exe
2014-10-30 04:53:26 1876296 ----a-w- C:\Windows\System32\nvdispco6434460.dll
2014-10-30 04:53:26 1539272 ----a-w- C:\Windows\System32\nvdispgenco6434460.dll
2014-10-30 02:03:43 165888 ----a-w- C:\Windows\System32\charmap.exe
2014-10-30 01:45:43 155136 ----a-w- C:\Windows\SysWow64\charmap.exe
2014-10-25 01:57:59 77824 ----a-w- C:\Windows\System32\packager.dll
2014-10-25 01:32:37 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-10-18 02:05:23 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2014-10-18 01:33:18 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-10-17 22:55:45 20160 ----a-w- C:\Windows\System32\drivers\GUBootStartup.sys
2014-10-16 16:54:03 1876296 ----a-w- C:\Windows\System32\nvdispco6434448.dll
2014-10-16 16:54:03 1539272 ----a-w- C:\Windows\System32\nvdispgenco6434448.dll
2014-10-14 02:16:37 155064 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-10-14 02:13:06 683520 ----a-w- C:\Windows\System32\termsrv.dll
2014-10-14 02:13:00 3241984 ----a-w- C:\Windows\System32\msi.dll
2014-10-14 02:12:57 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-10-14 02:09:31 146432 ----a-w- C:\Windows\System32\msaudite.dll
2014-10-14 02:07:31 681984 ----a-w- C:\Windows\System32\adtschema.dll
2014-10-14 01:50:47 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-10-14 01:50:41 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2014-10-14 01:49:38 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-10-14 01:47:30 146432 ----a-w- C:\Windows\SysWow64\msaudite.dll
2014-10-14 01:46:02 681984 ----a-w- C:\Windows\SysWow64\adtschema.dll
2014-10-10 00:57:42 3198976 ----a-w- C:\Windows\System32\win32k.sys
.
============= FINISH: 2:07:39.80 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 17/01/2012 19:11:45
System Uptime: 05/01/2015 02:01:41 (0 hours ago)
.
Motherboard: ASRock | | N68C-S UCC
Processor: AMD Phenom™ II X4 920 Processor | CPUSocket | 2800/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 721.005 GiB free.
D: is CDROM ()
E: is CDROM ()
G: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP521: 03/01/2015 18:01:08 - Scheduled Checkpoint
.
==== Installed Programs ======================
.
Leawo DVD copy version 2.1.0.0
64 Bit HP CIO Components Installer
7-Zip 4.65
Acrobat.com
Adobe AIR
Adobe AIR Free Download Packages
Adobe Flash Player 16 ActiveX
Adobe Reader Free Download Packages
Adobe Reader XI (11.0.10)
Adobe Refresh Manager
Adobe Shockwave Player 12.1
Adobe Shockwave Player Free Download Packages
Advanced SystemCare 8
AI RoboForm (All Users)
Aimersoft DVD Creator(Build 2.6.5)
Airy
Aiseesoft Blu-ray Ripper 6.3.62
Aiseesoft Video Downloader 6.0.12
Aneesoft DVD Show
Anvi Smart Defender 2.4
AnvSoft Photo Flash Maker Free 5.48
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Ashampoo Burning Studio 2012 v10.0.15
Ashampoo Burning Studio 2013 v.11.0.5
Ashampoo Burning Studio 2014 v.12.0.5
Ashampoo Burning Studio 2015 v.1.15.0
Ashampoo Internet Accelerator 3 v.3.20
Ashampoo Music Studio 2013 v.4.1.2
Ashampoo Music Studio 4 v.4.1.2
Ashampoo Photo Commander 9 v.9.4.3
Ashampoo Photo Optimizer 5 v.5.7.0
Ashampoo Slideshow Studio 2012 v.1.0.2
Ashampoo WinOptimizer 11 v.11.00.50
Ashampoo WinOptimizer 2013 v.1.0.0
Ashampoo WinOptimizer 2014 v.1.0.0
ASRock App Charger v1.0.4
ASRock OC Tuner v2.3.91
Aunsoft DVD Ripper Ver 2.0.0.4206
Auslogics BoostSpeed
Auslogics DiskDefrag
B209a-m
BBC iPlayer Downloads
Belarc Advisor 8.3
BlackBerry Device Software Updater
Bonjour
BufferChm
CCleaner
CDDRV_Installer
CyberLink PhotoDirector 3
CyberLink PhotoDirector 4
CyberLink Power2Go
CyberLink PowerDirector 11
CyberLink WaveEditor
D3DX10
Definition Update for Microsoft Office 2010 (KB2910899) 64-Bit Edition
Defraggler
Destinations
DeviceDiscovery
Driver Booster 2
DVD Decrypter (Remove Only)
DVDFab 8.2.2.6 (25/12/2012) Qt
DVDFab Region Reset 1.0.0.3
erLT
FilePop Ultimate
Free Easy Burner V 5.1
Free Window Registry Repair
GiliSoft Audio Editor 1.3.0
Glary Utilities PRO 5.15
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
GPBaseService2
GUI for dvdauthor 1.07
Haali Media Splitter
Helix YUV Codecs (remove only)
HP Customer Participation Program 14.0
HP Imaging Device Functions 14.0
HP Photo Creations
HP Photosmart Plus B209a-m All-in-One Driver Software 14.0 Rel. 6
HP Smart Web Printing 4.60
HP Solution Center 14.0
HP Update
HPDiagnosticAlert
HPPhotoGadget
HPProductAssistant
HPSSupply
idoo Secure Disc Creator 3.0
idoo Video Editor Pro 1.4.0
IObit Malware Fighter
IObit Uninstaller
iTunes
Java 7 Update 72
Java™ 6 Update 30
Junk Mail filter update
K-Lite Codec Pack 6.0.4 (Basic)
KhalInstallWrapper
Logitech SetPoint
MAGIX PC Check & Tuning 2011 Download Version
MAGIX Photo Designer 7
MAGIX Photo Manager MX
MAGIX Screenshare
MAGIX Slideshow Maker 2
Malwarebytes Anti-Malware version 2.0.4.1028
MarketResearch
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office Office 32-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 32-bit MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Visio 2010
Microsoft Office Visio MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Security Client
Microsoft Security Essentials
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visio Premium 2010
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft_VC100_CRT_x86
Movie Maker
MSVCRT
MSVCRT_amd64
MSVCRT110
MSVCRT110_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB2758694)
Music Editor Free
MyDriveConnect 3.3.0.1812
Network64
Newblue Art Effects for PowerDirector
nurago web meter
NVIDIA 3D Vision Controller Driver 344.75
NVIDIA 3D Vision Driver 344.75
NVIDIA Control Panel 344.75
NVIDIA Display Control Panel
NVIDIA Drivers
NVIDIA GeForce Experience 2.1.5
NVIDIA GeForce Experience Service
NVIDIA Graphics Driver 344.75
NVIDIA HD Audio Driver 1.3.32.1
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX
NVIDIA PhysX System Software 9.14.0702
NVIDIA ShadowPlay 16.18.9
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 16.18.9
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.27
O&O Defrag Professional
Photo Common
Photo Gallery
Photo Stamp Remover 5.3
Platform
PowerDirector
PS_AIO_06_B209a-m_SW_Min
PVSonyDll
Qmee
QuickTime 7
QuickTransfer
Revo Uninstaller Pro 3.1.2
Scan
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Security Update for Microsoft Excel 2010 (KB2910902) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2553154) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition
Security Update for Microsoft Word 2010 (KB2899519) 64-Bit Edition
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
SHIELD Streaming
SHIELD Wireless Controller Driver
Shop for HP Supplies
Slim Toolbar 1.4
Smart Defrag 3
SmartSHOW 2.0
SmartSound Quicktracks 5
SmartWebPrinting
SolutionCenter
Spelling Dictionaries Support For Adobe Reader 9
StartupStar
Status
Surfing Protection
swMSM
The Official DVSA Theory Test for Car Drivers
Toolbox
TrayApp
TuneUp Utilities 2012
TuneUp Utilities Language Pack (en-US)
UltimateZip 7.0
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597089) 64-Bit Edition
Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2010 (KB2837581) 64-Bit Edition
Update for Microsoft Office 2010 (KB2837602) 64-Bit Edition
Update for Microsoft Office 2010 (KB2837606) 64-Bit Edition
Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition
Update for Microsoft Office 2010 (KB2889818) 64-Bit Edition
Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition
Update for Microsoft Office 2010 (KB2910896) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2597088) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2880517) 64-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition
VIA Platform Device Manager
Visual Studio C++ 10.0 Runtime
Vtune 7.22
WebReg
Wedding Slideshow Studio 1.35
Windows Boot Genius
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Movie Maker 2.6
WinUtilities Professional Edition 11.16
WinX DVD Copy Pro 3.5.0
Wise Auto Shutdown 1.39
Wise Care 365 version 2.92
Wise Data Recovery 3.44
Wise Folder Hider 2.02
Wise JetSearch 1.46
Wise Memory Optimizer 3.24
Wise Registry Cleaner 8.26
WonderFox DVD Video Converter
YouTube Song Downloader
ZiggyTV
Zoner Photo Studio 16
.
==== Event Viewer Messages From Past Week ========
.
31/12/2014 17:56:17, Error: Service Control Manager [7031] - The Coupon Printer Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.
31/12/2014 01:03:56, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the O&O Defrag service to connect.
31/12/2014 01:03:56, Error: Service Control Manager [7000] - The O&O Defrag service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
31/12/2014 01:01:57, Error: Service Control Manager [7034] - The Office Software Protection Platform service terminated unexpectedly. It has done this 1 time(s).
30/12/2014 18:49:36, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR7.
29/12/2014 21:15:39, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.191.1031.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: https://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.11302.0 Error code: 0x80072efe Error description: The connection with the server was terminated abnormally
05/01/2015 02:04:31, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.
05/01/2015 02:04:31, Error: Service Control Manager [7000] - The Google Update Service (gupdate) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
05/01/2015 02:02:15, Error: Microsoft-Windows-DNS-Client [1012] - There was an error while attempting to read the local hosts file.
05/01/2015 02:00:37, Error: Service Control Manager [7034] - The Anvi Smart Defender 2 Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:38, Error: Service Control Manager [7034] - The CLHNServiceForPowerDVD service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:38, Error: Service Control Manager [7034] - The Anvi Slim Toolbar Guard Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The Volume Shadow Copy service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The VIA Karaoke digital mixer Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The O&O Defrag service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The NVIDIA Streamer Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The NVIDIA Network Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The NVIDIA GeForce Experience Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The nurago-Update-Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The nurago-Reporting-Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7034] - The Cyberlink RichVideo64 Service(CRVS) service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:37, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
05/01/2015 01:59:37, Error: Service Control Manager [7031] - The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
05/01/2015 01:59:37, Error: Service Control Manager [7031] - The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
05/01/2015 01:59:37, Error: Service Control Manager [7031] - The Print Spooler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
05/01/2015 01:59:37, Error: Service Control Manager [7031] - The Coupon Printer Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.
05/01/2015 01:59:36, Error: Service Control Manager [7034] - The NVIDIA Stereoscopic 3D Driver Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:36, Error: Service Control Manager [7034] - The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:36, Error: Service Control Manager [7034] - The IMF Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:36, Error: Service Control Manager [7034] - The Advanced SystemCare Service 8 service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:36, Error: Service Control Manager [7034] - The Adobe Acrobat Update Service service terminated unexpectedly. It has done this 1 time(s).
05/01/2015 01:59:36, Error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
04/01/2015 21:07:32, Error: Service Control Manager [7034] - The CyberLink PowerDVD 11.0 Service service terminated unexpectedly. It has done this 1 time(s).
04/01/2015 01:53:04, Error: Microsoft-Windows-BitLocker-Driver [24620] - Encrypted volume check: Volume information on G: cannot be read.
04/01/2015 01:52:45, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR4.
04/01/2015 00:52:34, Error: Schannel [36888] - The following fatal alert was generated: 43. The internal error state is 252.
03/01/2015 12:19:15, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.
03/01/2015 00:55:48, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
02/01/2015 17:36:45, Error: Schannel [36888] - The following fatal alert was generated: 10. The internal error state is 10.
02/01/2015 00:21:15, Error: Service Control Manager [7034] - The CyberLink PowerDVD 11.0 Service service terminated unexpectedly. It has done this 5 time(s).
01/01/2015 22:11:14, Error: Service Control Manager [7034] - The CyberLink PowerDVD 11.0 Service service terminated unexpectedly. It has done this 4 time(s).
01/01/2015 20:01:13, Error: Service Control Manager [7034] - The CyberLink PowerDVD 11.0 Service service terminated unexpectedly. It has done this 3 time(s).
01/01/2015 10:39:28, Error: Service Control Manager [7034] - The CyberLink PowerDVD 11.0 Service service terminated unexpectedly. It has done this 2 time(s).
.
==== End Of File ===========================

#4
Ok 145ah

After looking at your lists you do have a few problems, some malware related others general PUP's (Potentially Unwanted Programs).

First things first, can you open up your version of Revo Uninstaller Pro (as it works on 64bit level) and Remove the following programs unless stated otherwise.

Advanced SystemCare 8
Anvi Smart Defender 2.4
Auslogics BoostSpeed
Auslogics DiskDefrag
Defraggler
Driver Booster 2
Google Toolbar for Internet Explorer
Google Update Helper
IObit Malware Fighter
IObit Uninstaller
Java™ 6 Update 30
MAGIX PC Check & Tuning 2011 Download Version
MAGIX Photo Designer 7
--------------------------------------------(keep if you feel is necessary)
MAGIX Photo Manager MX ------------------------------------------(keep if you feel is necessary)
MAGIX Screenshare ---------------------------------------------------(keep if you feel is necessary)
MAGIX Slideshow Maker 2 -------------------------------------------(keep if you feel is necessary)
MarketResearch
nurago web meter
O&O Defrag Professional
Qmee
Slim Toolbar 1.4
Smart Defrag 3
SmartSHOW 2.0
SmartSound Quicktracks 5
SmartWebPrinting
TuneUp Utilities 2012
TuneUp Utilities Language Pack (en-US)


Download and run a Full Scan Emsisoft Emergency Kit and post the logs.

Download SAS and run a Full Scan and post the log.

Upadate and run MalwareBytes and post log.
* As with all Downloads make sure you read the install carefully and uncheck any
unwanted options from third parties.

#5
hi, thank you for your replay you been so kind you have ask me to remove some programs but I use them, the one like take off are, Google Toolbar for Internet Explorer, Slim Toolbar 1.4, O&O Defrag Professional, Google Update Helper,Java™ 6 Update 30, MAGIX PC Check & Tuning 2011 Download Version,Driver Booster 2, the other programs I use, please can you tell me why I have remove them, nurago web meter and qmeei I known about them I use them thank you

#6
IObit Malware Fighter --- (Remove) --- (MBAM rip off)
C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe --- (Remove)
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASD2Srv.exe --- (Remove) --- (Crapware)
C:\Program Files (x86)\Anvisoft\Slim Toolbar\ToolBarService.exe --- (Remove)
C:\Program Files (x86)\Coupon Printer\CouponPrinterService.exe --- (Remove) --- (adware bundler)
C:\Program Files (x86)\MAGIX\PC_Check_Tuning_2011_Download_Version\MXSAS.exe --- (Remove) --- (SnakeOil)
C:\Program Files (x86)\nurago web meter\nurago-Reporting.exe--- (Remove) --- (Unnecessary Program)
C:\Program Files (x86)\nurago web meter\nurago-Updater.exe --- (Remove)
C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe --- (Remove) --- (Unecessary Program)
C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe --- (Remove)
C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASD2.exe --- (Remove) --- (Crapware)
C:\Program Files\OO Software\Defrag\oodtray.exe --- (Optional)
C:\Program Files (x86)\nurago web meter\nurago-TrayIcon.exe --- (Remove)
C:\Program Files\OO Software\Defrag\oodag.exe --- (Optional)
C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe --- (Remove) --- (SnakeOil)
C:\Windows\system32\viakaraokesrv.exe --- (Optional)
C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe --- (Remove) --- (SnakeOil)
C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe --- (Remove) --- (SnakeOil)
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe --- (Remove)
C:\Program Files (x86)\IObit\Advanced SystemCare 8\RealTimeProtector.exe --- (Remove)
C:\Program Files (x86)\Qmee\0.9.14\KangoEngine.exe --- (Remove) --- (Adware)

================================================================================​==================

All BHO's can be removed!

BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: nurago web meter: {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - C:\Program Files (x86)\nurago web meter\Gacela2.dll
BHO: ZiggyTV Downloader: {62e3fd2a-c728-409d-b1ce-4468fd455e82} -
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: QmeeBHO: {7DF13A39-2F55-4461-9EBB-8DC681A6341F} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

================================================================================​===================

All ToolBars can be removed!!

TB: &RoboForm: {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Qmee: {E120ACB6-21BA-45ED-9E79-32079107C103} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
TB: Gacela: {5F6E2508-41C4-4D4B-8AC3-D7ED6E4EB2AE} - C:\Program Files (x86)\nurago web meter\Gacela2.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Qmee: {E120ACB6-21BA-45ED-9E79-32079107C103} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO.dll

================================================================================​===================
dRun: [Advanced SystemCare 8] "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto --- (Remove)
================================================================================​===================
IE: {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - {80A21664-E813-4F79-B965-2058C0F7A84C} - C:\Program Files (x86)\nurago web meter\Gacela2.dll --- (Remove)
================================================================================​===================

All x64 items can be removed!!

x64-BHO: ExplorerWnd Helper: {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
x64-BHO: nurago web meter: {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - C:\Program Files (x86)\nurago web meter\x64\Gacela2.dll
x64-BHO: QmeeBHO: {7DF13A39-2F55-4461-9EBB-8DC681A6341F} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO64.dll
x64-TB: Gacela: {5F6E2508-41C4-4D4B-8AC3-D7ED6E4EB2AE} - C:\Program Files (x86)\nurago web meter\x64\Gacela2.dll
x64-TB: Qmee: {E120ACB6-21BA-45ED-9E79-32079107C103} - C:\Program Files (x86)\Qmee\0.9.14\KangoBHO64.dll
x64-IE: {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - {80A21664-E813-4F79-B965-2058C0F7A84C} - C:\Program Files (x86)\nurago web meter\x64\Gacela2.dll
================================================================================​===================

#7
thank you GuiltySpark I will try remove most of the programs in the next 2 or 3 days can you please tell me how do you remove BHO's can be removed, ToolBars can be removed, dRun: [Advanced SystemCare 8, All x64 items can be removed and there nothing there about the mysearchdial.com how to remove this, thank you

#8
mysearchdial.com comes bundled as adware and adheres itself to the browser(s) by first removing the root cause its easier to remove the resulting infection, if you reset your browser(s) back to default settings you should have a base for stopping the infection.

BHO's can be found in the browsers settings for example IE11:

https://windows.microsoft.com/en-gb/internet-explorer/manage-add-ons#ie=ie-11 in here you should find a list of your BHO's (browser helper objects), and Toolbars, and Search engines. All of these would have to be scoured to remove any/all traces of mysearchdial.com.

To reset IE11: https://en.kioskea.net/faq/33289-how-to-reset-internet-explorer-to-default-settings.

All x64 items would be automatically removed upon uninstall of said programs.

Did you run the other scans I mentioned?

#9
hi, GuiltySpark I have try reset IE11 but every time restart my computer mysearchdial.com come back any way I will first try remove most of the programs we have told me with Revo Uninstaller and then I will do scans you mentioned

what about UVK - Ultra Virus Killer do think should use that as well

I am not good with computer sorry if ask you go by step by step

#10
(01-07-2015, 02:32 AM)145ah Wrote:  hi, GuiltySpark  I have try reset IE11 but every time restart my computer mysearchdial.com come back  any way I will first try remove most of the programs we have told me with Revo Uninstaller and then I will do scans you mentioned

what about UVK - Ultra Virus Killer do think should use that as well

I am not good with computer sorry if ask you go by step by step
have you try dr web cure it



Forum Jump:


Users browsing this thread:
1 Guest(s)

Powered By MyBB, © 2002-2024 Melroy van den Berg.