Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Software Troubleshooting
OS Screen C: drive inconsistency and FF issue
Message
<blockquote data-quote="Zexx" data-source="post: 477341" data-attributes="member: 20154"><p>Sorry for the super late reply-illness/work/university got in the way.</p><p></p><p>Can I just give two/three updates here and then move over?</p><p></p><p>First the Adw stuff (going through the Adw folder, there seems to be three reports from that day: C2, S3, and Quarantine. The one that popped up after restart was C2 I think):</p><p>________________________________________________________________________________________________________</p><p># AdwCleaner v5.031 - Logfile created 30/01/2016 at 22:36:42</p><p># Updated 25/01/2016 by Xplode</p><p># Database : 2016-01-25.3 [Server]</p><p># Operating system : Windows 7 Home Premium Service Pack 1 (x64)</p><p># Username : SMJ - SMJ-TOPSECRET</p><p># Running from : C:\Users\SMJ\Downloads\adwcleaner_5.031.exe</p><p># Option : Cleaning</p><p># Support : <a href="http://toolslib.net/forum" target="_blank">Forum - ToolsLib</a></p><p></p><p>***** [ Services ] *****</p><p></p><p>[-] Service Deleted : vToolbarUpdater40.2.4</p><p></p><p>***** [ Folders ] *****</p><p></p><p>[-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search</p><p>[-] Folder Deleted : C:\Program Files\Common Files\AVG Secure Search</p><p>[-] Folder Deleted : C:\ProgramData\AVG Secure Search</p><p>[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar</p><p>[-] Folder Deleted : C:\Users\SMJ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohapeiooecafommnlaiccilacgmkaoc</p><p></p><p>***** [ Files ] *****</p><p></p><p>[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml</p><p>[-] File Deleted : C:\Users\SMJ\AppData\Roaming\Mozilla\Firefox\Profiles\00o75v1o.default\Extensions\Avg@toolbar.xpi</p><p>[-] File Deleted : C:\Users\SMJ\AppData\Roaming\Mozilla\Firefox\Profiles\00o75v1o.default\searchplugins\avg-secure-search.xml</p><p></p><p>***** [ DLLs ] *****</p><p></p><p></p><p>***** [ Shortcuts ] *****</p><p></p><p></p><p>***** [ Scheduled tasks ] *****</p><p></p><p>[-] Task Deleted : AVG-Secure-Search-Update_JUNE2013_TB_rmv</p><p>[-] Task Deleted : AVG-Secure-Search-Update_JUNE2013_TB_rmv</p><p></p><p>***** [ Registry ] *****</p><p></p><p>[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh</p><p>[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin</p><p>[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}</p><p>[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}</p><p>[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}</p><p>[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}</p><p>[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}</p><p>[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}</p><p>[-] Key Deleted : HKCU\Software\AppDataLow\Software\BackgroundContainerV2</p><p>[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}</p><p>[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]</p><p></p><p>***** [ Web browsers ] *****</p><p></p><p>[-] [C:\Users\SMJ\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bohapeiooecafommnlaiccilacgmkaoc</p><p></p><p>*************************</p><p></p><p>:: "Tracing" keys removed</p><p>:: Winsock settings cleared</p><p></p><p>########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [3643 bytes] ##########</p><p>_____________________________________________________________________________________________________________END</p><p></p><p></p><p></p><p></p><p></p><p>In addition to this, when it was done and the restart was going on, the C: drive inconsistency thing came up again (a black screen, not blue) and ran through whatever. It seemed to have gotten through- it didn't freeze this time around. But when I was watching it a bunch've questions came up in my head in regards to the places this thing was referencing.</p><p></p><p>-What is file q?</p><p>-WHat's $SDH?</p><p>-What's index $SIT of file q?</p><p>-what does it mean when inserting an index entry with ID 5052 into index $SII of file 9?</p><p></p><p>That's all I managed to write down as it was going fast. WTH is this stuff? @_@</p><p>After that was done, it came back up and the above report was open.</p><p></p><p></p><p></p><p></p><p>HOWEVER, a day or two later I had another BSOD! -.-'</p><p></p><p>And then yesterday I had a weird BSOD where I could customize stuff? It had serial information and I could change date... there were some other tabs that I could open but I didn't go there.</p><p></p><p>I don't know if I should post the serial stuff here or whether it would help.</p><p></p><p>And finally, yea, I'll move this to the other thread soon.</p></blockquote><p></p>
[QUOTE="Zexx, post: 477341, member: 20154"] Sorry for the super late reply-illness/work/university got in the way. Can I just give two/three updates here and then move over? First the Adw stuff (going through the Adw folder, there seems to be three reports from that day: C2, S3, and Quarantine. The one that popped up after restart was C2 I think): ________________________________________________________________________________________________________ # AdwCleaner v5.031 - Logfile created 30/01/2016 at 22:36:42 # Updated 25/01/2016 by Xplode # Database : 2016-01-25.3 [Server] # Operating system : Windows 7 Home Premium Service Pack 1 (x64) # Username : SMJ - SMJ-TOPSECRET # Running from : C:\Users\SMJ\Downloads\adwcleaner_5.031.exe # Option : Cleaning # Support : [URL="http://toolslib.net/forum"]Forum - ToolsLib[/URL] ***** [ Services ] ***** [-] Service Deleted : vToolbarUpdater40.2.4 ***** [ Folders ] ***** [-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search [-] Folder Deleted : C:\Program Files\Common Files\AVG Secure Search [-] Folder Deleted : C:\ProgramData\AVG Secure Search [-] Folder Deleted : C:\ProgramData\AVG Security Toolbar [-] Folder Deleted : C:\Users\SMJ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohapeiooecafommnlaiccilacgmkaoc ***** [ Files ] ***** [-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml [-] File Deleted : C:\Users\SMJ\AppData\Roaming\Mozilla\Firefox\Profiles\00o75v1o.default\Extensions\Avg@toolbar.xpi [-] File Deleted : C:\Users\SMJ\AppData\Roaming\Mozilla\Firefox\Profiles\00o75v1o.default\searchplugins\avg-secure-search.xml ***** [ DLLs ] ***** ***** [ Shortcuts ] ***** ***** [ Scheduled tasks ] ***** [-] Task Deleted : AVG-Secure-Search-Update_JUNE2013_TB_rmv [-] Task Deleted : AVG-Secure-Search-Update_JUNE2013_TB_rmv ***** [ Registry ] ***** [-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh [-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin [-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} [-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} [-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} [-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615} [-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208} [-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} [-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} [-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} [-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} [-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} [-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} [-] Key Deleted : HKCU\Software\AppDataLow\Software\BackgroundContainerV2 [-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} [-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt] ***** [ Web browsers ] ***** [-] [C:\Users\SMJ\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bohapeiooecafommnlaiccilacgmkaoc ************************* :: "Tracing" keys removed :: Winsock settings cleared ########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [3643 bytes] ########## _____________________________________________________________________________________________________________END In addition to this, when it was done and the restart was going on, the C: drive inconsistency thing came up again (a black screen, not blue) and ran through whatever. It seemed to have gotten through- it didn't freeze this time around. But when I was watching it a bunch've questions came up in my head in regards to the places this thing was referencing. -What is file q? -WHat's $SDH? -What's index $SIT of file q? -what does it mean when inserting an index entry with ID 5052 into index $SII of file 9? That's all I managed to write down as it was going fast. WTH is this stuff? @_@ After that was done, it came back up and the above report was open. HOWEVER, a day or two later I had another BSOD! -.-' And then yesterday I had a weird BSOD where I could customize stuff? It had serial information and I could change date... there were some other tabs that I could open but I didn't go there. I don't know if I should post the serial stuff here or whether it would help. And finally, yea, I'll move this to the other thread soon. [/QUOTE]
Insert quotes…
Verification
Post reply
Top