1. Joined : Jul 2016
    Posts : 4
    win 10
       17 Jul 2016 #1

    Most webpages not loading after few mins of computer usage.


    Previously I used a pocketable 4g/LTE wifi router for my PC and recently i had to change the router to a brand new model due to personal problems. The new wifi router seems to work flawless with my iPhone but when I try to use it with my PC, after a few mins or so, websites like Facebook won't display the images; google's home page won't even load. The weird thing is when i try another search engine site like yahoo, www.yahoo.com wont load, but www.yahoo.co.jp will load fine.
    Even youtube won't load as well. To my surprise, this website seems to work just fine.

    I've tried clearing my chrome browser's cache, disable firewall and antivirus, restarted dns from netstat but nothing seems to work. I also checked my ssd drive for errors (ERROR CHECKING local disk) but there seems to be none. Help would be greatly appreciated. Thank You

    *If i restart my computer and try to go to those webpages, they all work but after a few mins, they again stop working normally.

    CURRENT ANTI VIRUS -> Baidu Anti Virus 2015
    CURRENT FIREWALL -> Windows 10 default.

    Click image for larger version. 

Name:	er1.jpg 
Views:	8 
Size:	182.5 KB 
ID:	90521Click image for larger version. 

Name:	er2.jpg 
Views:	8 
Size:	46.6 KB 
ID:	90522Click image for larger version. 

Name:	baidu.jpg 
Views:	8 
Size:	365.9 KB 
ID:	90520
      My System SpecsSystem Spec


  2. Joined : Apr 2015
    Posts : 9,159
    W10Prox64
       17 Jul 2016 #2

    Hi rwker and welcome to Tenforums.
    Does this also happen when using Edge browser? Internet Explorer?
    Have you tried changing your DNS servers to Google's? (8.8.8.8 and 8.8.4.4 on your NIC, IPV4)
    Are you sure the system is free of viruses/malware? (I've only ever run into Baidu-named stuff when cleaning systems of browser hijackers.)
    Enter ipconfig /flushdns at an Admin Command Prompt and see if that makes a difference.
    Details on the router you are using may be helpful.

    Those are just some thoughts. I'm sure others will chime in with some ideas for you.
      My System SpecsSystem Spec


  3. Joined : Jul 2016
    Posts : 4
    win 10
       18 Jul 2016 #3

    All browsers seems to be affected on my pc. My iPhone still works though; no problems whatsoever on it.

    Ok so i tried changed the DNS manually.... no luck

    Click image for larger version. 

Name:	221.jpg 
Views:	8 
Size:	372.2 KB 
ID:	90713

    after that I tried the flushdns method... no luck as well

    I scanned for any virus but my pc seems to be clean.
    I even used the latest SPYBOT Search and Destroy. (i've attached the scanned log file as well)

    Details on my wireless router is here -> (It is in Japanese because I am in Japan currently. CHROME should translate it)
    HTML Code:
    http://www.uqwimax.jp/signup/device/model50/
    Most webpages not loading after few mins of computer usage. Attached Files
      My System SpecsSystem Spec


  4. Joined : Apr 2015
    Posts : 9,159
    W10Prox64
       18 Jul 2016 #4

    Thanks. Yes, Chrome translated it fine. I'm not seeing anything in the Spybot scan info (although that's not the best program to use nowadays). Hopefully some others here will have some ideas. Sorry I can't be of more help.
      My System SpecsSystem Spec


  5. Joined : Jul 2016
    Posts : 4
    win 10
       21 Jul 2016 #5

    i tested my friend's laptop with my wifi router and confirmed there is no issues with the router.
    so my PC is probably infected ... I dont want to format my pc as it takes forever.
      My System SpecsSystem Spec


  6. Joined : Apr 2015
    Posts : 9,159
    W10Prox64
       21 Jul 2016 #6

    rwker said: View Post
    i tested my friend's laptop with my wifi router and confirmed there is no issues with the router.
    so my PC is probably infected ... I dont want to format my pc as it takes forever.
    Okay. If you would like to try "cleaning", here's what I would start with:

    Download and run RKILL.
    Post the log using the # (code) tags.
    RKILL temporarily stops malicious and suspicious processes from running. Everything it does is undone by a reboot, so please run it again, if you reboot during any of the other steps listed below:

    ADWCleaner
    Scan, then clean. Post the log. Can be found at C:\AdwCleaner.

    Malwarebytes AntiMalware
    Select custom scan, check boxes to scan for rootkits, and all of OS drive.
    Post the log when completed.

    JRT
    Post log

    EDIT: All these tools are free; do not download paid versions.
    Superantispyware
    Do a full scan; post the log.


    Please use the # (code tags) for posting all logs.


    Next steps will be dependent upon what is found by these scans.
      My System SpecsSystem Spec


  7. Joined : Jul 2016
    Posts : 4
    win 10
       21 Jul 2016 #7

    This is the RKILL log.

    Code:
    Rkill 2.8.4 by Lawrence Abrams (Grinler)http://www.bleepingcomputer.com/
    Copyright 2008-2016 BleepingComputer.com
    More Information about Rkill can be found at this link:
     http://www.bleepingcomputer.com/forums/topic308364.html
    
    
    Program started at: 07/22/2016 03:56:06 AM in x64 mode.
    Windows Version: Windows 10 Pro 
    
    
    Checking for Windows services to stop:
    
    
     * No malware services found to stop.
    
    
    Checking for processes to terminate:
    
    
     * C:\Windows\AutoKMS\AutoKMS.exe (PID: 1536) [WD-HEUR]
     * C:\Users\exist\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe (PID: 6428) [UP-HEUR]
     * C:\Users\exist\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe (PID: 6184) [UP-HEUR]
    
    
    3 proccesses terminated!
    
    
    Checking Registry for malware related settings:
    
    
     * No issues found in the Registry.
    
    
    Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
    
    
    Performing miscellaneous checks:
    
    
     * Windows Defender Disabled
    
    
       [HKLM\SOFTWARE\Microsoft\Windows Defender]
       "DisableAntiSpyware" = dword:00000001
    
    
     * Windows Firewall Disabled
    
    
       [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
       "EnableFirewall" = dword:00000000
    
    
    Checking Windows Service Integrity: 
    
    
     * No issues found.
    
    
    Searching for Missing Digital Signatures: 
    
    
     * C:\Windows\System32\UxTheme.dll : 589,312 : 11/27/2015 06:29 AM : 1e2409fce32cd3aa1852cb6e0cb46a84 [NoSig]
     +-> C:\Windows\SysWOW64\uxtheme.dll : 458,752 : 10/30/2015 04:18 PM : e439e962849c880195d810e16cda323c [Pos Repl]
     +-> C:\Windows\WinSxS\amd64_microsoft-windows-uxtheme_31bf3856ad364e35_10.0.10586.0_none_326a332cb0e6ce43\uxtheme.dll : 589,312 : 10/30/2015 04:18 PM : 76cb0e0ca741ce280f9b9d2d2bcd2ccb [Pos Repl]
     +-> C:\Windows\WinSxS\wow64_microsoft-windows-uxtheme_31bf3856ad364e35_10.0.10586.0_none_3cbedd7ee547903e\uxtheme.dll : 458,752 : 10/30/2015 04:18 PM : e439e962849c880195d810e16cda323c [Pos Repl]
    
    
    Checking HOSTS File: 
    
    
     * Cannot edit the HOSTS file.
     * Permissions Fixed. Administrators can now edit the HOSTS file.
    
    
     * HOSTS file entries found: 
    
    
      127.0.0.1    lmlicenses.wip4.adobe.com
      127.0.0.1    lm.licenses.adobe.com
      127.0.0.1    activate.adobe.com
      127.0.0.1    practivate.adobe.com
      127.0.0.1    lm.licenses.adobe.com
      127.0.0.1    lmlicenses.wip4.adobe.com
      127.0.0.1    ereg.adobe.com
      127.0.0.1    activate.wip3.adobe.com
      127.0.0.1    wip3.adobe.com
      127.0.0.1    3dns-3.adobe.com
      127.0.0.1    3dns-2.adobe.com
      127.0.0.1    adobe-dns.adobe.com
      127.0.0.1    adobe-dns-2.adobe.com
      127.0.0.1    adobe-dns-3.adobe.com
      127.0.0.1    ereg.wip3.adobe.com
      127.0.0.1    activate-sea.adobe.com
      127.0.0.1    wwis-dubc1-vip60.adobe.com
      127.0.0.1    activate-sjc0.adobe.com
      127.0.0.1    hl2rcv.adobe.com
      127.0.0.1    lm.licenses.adobe.com
    
    
      20 out of 15603 HOSTS entries shown.
      Please review HOSTS file for further entries.
    
    
    Program finished at: 07/22/2016 03:57:02 AM
    Execution time: 0 hours(s), 0 minute(s), and 55 seconds(s)
    
    
    This is

    ADW cleaner has a problem though. Every time i try to clean all the selected problems, my computer gets a blue screen and automatically restarts.

    Code:
    # AdwCleaner v5.201 - Logfile created 22/07/2016 at 04:08:33# Updated 30/06/2016 by ToolsLib
    # Database : 2016-07-21.2 [Server]
    # Operating system : Windows 10 Pro  (X64)
    # Username : exist - RWKER
    # Running from : D:\Downloads [COMPLETE]\adwcleaner_5.201.exe
    # Option : Scan
    # Support : https://toolslib.net/forum
    
    
    ***** [ Services ] *****
    
    
    
    
    ***** [ Folders ] *****
    
    
    Folder Found : C:\Users\exist\AppData\Roaming\imminent
    Folder Found : C:\Users\exist\AppData\Local\Google\Chrome\User Data\Default\Extensions\iabeihobmhlgpkcgjiloemdbofjbdcic
    
    
    ***** [ Files ] *****
    
    
    
    
    ***** [ DLL ] *****
    
    
    
    
    ***** [ WMI ] *****
    
    
    
    
    ***** [ Shortcuts ] *****
    
    
    
    
    ***** [ Scheduled tasks ] *****
    
    
    
    
    ***** [ Registry ] *****
    
    
    Key Found : HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
    Key Found : HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
    Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
    Key Found : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
    Key Found : HKLM\SOFTWARE\Classes\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}
    Key Found : HKLM\SOFTWARE\Classes\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
    Key Found : HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
    Key Found : HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
    Key Found : HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
    
    
    ***** [ Web browsers ] *****
    
    
    [C:\Users\exist\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : aol.com
    [C:\Users\exist\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : dts.search.ask.com
    [C:\Users\exist\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : ask.com
    [C:\Users\exist\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : speedbit.com
    [C:\Users\exist\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : awesomehp
    [C:\Users\exist\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : iabeihobmhlgpkcgjiloemdbofjbdcic
    
    
    *************************
    
    
    C:\AdwCleaner\AdwCleaner[S1].txt - [2314 bytes] - [22/07/2016 03:59:02]
    C:\AdwCleaner\AdwCleaner[S2].txt - [2236 bytes] - [22/07/2016 04:08:33]
    
    
    ########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [2309 bytes] ##########
    Malwarebytes detected some malwares and I cleaned them all but the problem still persists.

    Code:
    Search results from Spybot - Search & Destroy
    
    7/19/2016 12:36:22 AM
    Scan took 00:35:24.
    55 items found.
    
    
    Macromedia.FlashPlayer.Cookies: [SBI $6AA61750]  Text file (File, nothing done)
      C:\Users\exist\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7YG4C6YW\hdwide.co\com.jeroenwijering.sol
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
      Properties.size=0
      Properties.md5=D41D8CD98F00B204E9800998ECF8427E
    
    
    Macromedia.FlashPlayer.Cookies: [SBI $6AA61750]  Text file (File, nothing done)
      C:\Users\exist\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7YG4C6YW\neovid.me\com.jeroenwijering.sol
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
      Properties.size=0
      Properties.md5=D41D8CD98F00B204E9800998ECF8427E
    
    
    Macromedia.FlashPlayer.Cookies: [SBI $6AA61750]  Text file (File, nothing done)
      C:\Users\exist\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7YG4C6YW\s.ytimg.com\restore.sol
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
      Properties.size=0
      Properties.md5=D41D8CD98F00B204E9800998ECF8427E
    
    
    Macromedia.FlashPlayer.Cookies: [SBI $6AA61750]  Text file (File, nothing done)
      C:\Users\exist\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7YG4C6YW\s.ytimg.com\soundData.sol
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
      Properties.size=0
      Properties.md5=D41D8CD98F00B204E9800998ECF8427E
    
    
    Macromedia.FlashPlayer.Cookies: [SBI $6AA61750]  Text file (File, nothing done)
      C:\Users\exist\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7YG4C6YW\stormvid.co\com.jeroenwijering.sol
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
      Properties.size=0
      Properties.md5=D41D8CD98F00B204E9800998ECF8427E
    
    
    Macromedia.FlashPlayer.Cookies: [SBI $6AA61750]  Text file (File, nothing done)
      C:\Users\exist\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7YG4C6YW\vidbull.com\com.jeroenwijering.sol
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
      Properties.size=0
      Properties.md5=D41D8CD98F00B204E9800998ECF8427E
    
    
    Macromedia.FlashPlayer.Cookies: [SBI $6AA61750]  Text file (File, nothing done)
      C:\Users\exist\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7YG4C6YW\videohub.ws\com.jeroenwijering.sol
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
      Properties.size=0
      Properties.md5=D41D8CD98F00B204E9800998ECF8427E
    
    
    Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7]  Text file (File, nothing done)
      C:\Users\exist\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7YG4C6YW\cdn2.dashbida.com\prod\vpaid2-dbfp.swf\dbStore.sol
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
      Properties.size=0
      Properties.md5=D41D8CD98F00B204E9800998ECF8427E
    
    
    DoubleClick: [SBI $4E2AF2AC] Tracking cookie (Internet Explorer (User): exist) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    CasaleMedia: [SBI $4E2AF2AC] Tracking cookie (Internet Explorer (User): exist) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    DoubleClick: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    DoubleClick: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    CasaleMedia: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    CasaleMedia: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    CasaleMedia: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    CasaleMedia: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    CasaleMedia: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Statcounter: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Statcounter: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    DoubleClick: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    DoubleClick: [SBI $4E2AF2AC] Tracking cookie (Firefox: exist (default)) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
      HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\TypedURLs
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
      HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\TypedURLs
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Internet Explorer\TypedURLs
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
      HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
      HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
      HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
      HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    MS Management Console: [SBI $ECD50EAD] Recent command list (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Microsoft Management Console\Recent File List
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    MS Direct3D: [SBI $7FB7B83F] Most recent application (Registry Change, nothing done)
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\MostRecentApplication\Name
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    MS Paint: [SBI $07867C39] Recent file list (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows.OpenWith: [SBI $C06686AF] Open with list - .ACV extension (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ACV\OpenWithList
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows.OpenWith: [SBI $D479745D] Open with list - .AEP extension (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AEP\OpenWithList
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows.OpenWith: [SBI $F6D91293] Open with list - .AI extension (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AI\OpenWithList
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows.OpenWith: [SBI $99432203] Open with list - .CFG extension (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CFG\OpenWithList
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows Explorer: [SBI $A2C7B3CD] Recent wallpaper list (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Wallpaper\MRU
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows Explorer: [SBI $7308A845] Run history (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows Media\WMSDK\General\ComputerName
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows Media\WMSDK\General\UniqueID
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    WinRAR: [SBI $0B56E92B] Recent file list (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\WinRAR\ArcHistory
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    WinRAR: [SBI $B84F9965] Last used directory (Registry Change, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\WinRAR\General\LastFolder
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    WinRAR: [SBI $B510882E] Extraction directory history (Registry Key, nothing done)
      HKEY_USERS\S-1-5-21-3013916093-3908886066-3403385907-1001\Software\WinRAR\DialogEditHistory\ExtrPath
      Category=Tracks
      ThreatLevel=2
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Cookie: [SBI $49804B54] Browser: Cookie (162) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Cache: [SBI $49804B54] Browser: Cache (10281) (Browser: Cache, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    History: [SBI $49804B54] Browser: History (371) (Browser: History, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    Cookie: [SBI $49804B54] Browser: Cookie (789) (Browser: Cookie, nothing done)
      
      Category=Browser
      ThreatLevel=1
      Weblink=http://forums.spybot.info/forumdisplay.php?54
    
    
    
    
    --- Spybot - Search & Destroy version: 2.6.44.134  DLL (build: 20160321) ---
    
    
    2014-06-24 blindman.exe (2.4.40.151)
    2014-06-24 explorer.exe (2.4.40.181)
    2014-06-24 SDBootCD.exe (2.4.40.109)
    2016-03-21 SDCleaner.exe (2.6.44.110)
    2014-06-24 SDDelFile.exe (2.4.40.94)
    2013-06-18 SDDisableProxy.exe
    2014-06-24 SDFiles.exe (2.4.40.135)
    2014-06-24 SDFileScanHelper.exe (2.4.40.1)
    2014-06-24 SDFSSvc.exe (2.4.40.217)
    2014-06-24 SDHelp.exe (2.4.40.1)
    2014-04-25 SDHookHelper.exe (2.3.39.2)
    2014-04-25 SDHookInst32.exe (2.3.39.2)
    2014-04-25 SDHookInst64.exe (2.3.39.2)
    2016-03-21 SDImmunize.exe (2.6.44.130)
    2014-06-24 SDLogReport.exe (2.4.40.107)
    2014-06-24 SDOnAccess.exe (2.4.40.11)
    2014-06-24 SDPESetup.exe (2.4.40.3)
    2014-06-24 SDPEStart.exe (2.4.40.86)
    2014-06-24 SDPhoneScan.exe (2.4.40.28)
    2014-06-24 SDPRE.exe (2.4.40.22)
    2014-06-24 SDPrepPos.exe (2.4.40.15)
    2014-06-24 SDQuarantine.exe (2.4.40.103)
    2014-06-24 SDRootAlyzer.exe (2.4.40.116)
    2014-06-24 SDSBIEdit.exe (2.4.40.39)
    2016-03-21 SDScan.exe (2.6.44.181)
    2014-06-24 SDScript.exe (2.4.40.54)
    2016-03-21 SDSettings.exe (2.6.44.141)
    2014-06-24 SDShell.exe (2.4.40.2)
    2014-06-24 SDShred.exe (2.4.40.108)
    2014-06-24 SDSysRepair.exe (2.4.40.102)
    2014-06-24 SDTools.exe (2.4.40.157)
    2014-06-24 SDTray.exe (2.4.40.129)
    2014-06-27 SDUpdate.exe (2.4.40.94)
    2014-06-27 SDUpdSvc.exe (2.4.40.77)
    2014-06-24 SDWelcome.exe (2.4.40.130)
    2014-04-25 SDWSCSvc.exe (2.3.39.2)
    2015-03-26 spybotsd2-install-av-update.exe (2.4.40.0)
    2014-05-20 spybotsd2-install-bdcore-update.exe (2.3.39.0)
    2016-05-02 spybotsd2-install-iefreezefix.exe (2.4.40.0)
    2014-07-31 spybotsd2-translation-esx.exe
    2013-06-19 spybotsd2-translation-frx.exe
    2015-03-25 spybotsd2-translation-hrx.exe
    2014-08-25 spybotsd2-translation-hux2.exe
    2014-10-01 spybotsd2-translation-nlx2.exe
    2014-11-05 spybotsd2-translation-ukx.exe
    2015-07-29 spybotsd2-windows-upgrade-installer.exe (1.4.0.0)
    2016-07-18 unins000.exe (51.1052.0.0)
    1999-12-02 xcacls.exe
    2012-08-23 borlndmm.dll (10.0.2288.42451)
    2012-09-05 DelZip190.dll (1.9.0.107)
    2016-03-21 DelZip192.dll (1.9.2.132)
    2012-09-10 libeay32.dll (1.0.0.4)
    2012-09-10 libssl32.dll (1.0.0.4)
    2014-04-25 NotificationSpreader.dll
    2014-06-24 SDAdvancedCheckLibrary.dll (2.4.40.98)
    2015-03-25 SDAV.dll
    2014-06-24 SDECon32.dll (2.4.40.114)
    2014-06-24 SDECon64.dll (2.3.39.113)
    2014-06-24 SDEvents.dll (2.4.40.2)
    2014-06-24 SDFileScanLibrary.dll (2.4.40.14)
    2014-04-25 SDHook32.dll (2.3.39.2)
    2014-04-25 SDHook64.dll (2.3.39.2)
    2014-06-24 SDImmunizeLibrary.dll (2.4.40.2)
    2014-06-24 SDLicense.dll (2.4.40.0)
    2014-06-24 SDLists.dll (2.4.40.4)
    2014-06-24 SDResources.dll (2.4.40.7)
    2016-03-21 SDScanLibrary.dll (2.6.44.134)
    2014-06-24 SDTasks.dll (2.4.40.15)
    2014-06-24 SDWinLogon.dll (2.4.40.0)
    2012-08-23 sqlite3.dll
    2012-09-10 ssleay32.dll (1.0.0.4)
    2014-06-24 Tools.dll (2.4.40.36)
    2015-04-22 Includes\Adware-000.sbi (*)
    2015-08-05 Includes\Adware-001.sbi (*)
    2016-07-13 Includes\Adware-C.sbi (*)
    2014-01-13 Includes\Adware.sbi (*)
    2014-01-13 Includes\AdwareC.sbi (*)
    2010-08-13 Includes\Cookies.sbi (*)
    2014-11-14 Includes\Dialer-000.sbi (*)
    2014-11-14 Includes\Dialer-001.sbi (*)
    2015-07-29 Includes\Dialer-C.sbi (*)
    2014-01-13 Includes\Dialer.sbi (*)
    2014-01-13 Includes\DialerC.sbi (*)
    2014-01-09 Includes\Fraud-000.sbi (*)
    2014-01-09 Includes\Fraud-001.sbi (*)
    2014-03-31 Includes\Fraud-002.sbi (*)
    2016-07-06 Includes\Fraud-003.sbi (*)
    2012-11-14 Includes\HeavyDuty.sbi (*)
    2014-11-14 Includes\Hijackers-000.sbi (*)
    2014-11-14 Includes\Hijackers-001.sbi (*)
    2015-12-23 Includes\Hijackers-C.sbi (*)
    2014-01-13 Includes\Hijackers.sbi (*)
    2014-01-13 Includes\HijackersC.sbi (*)
    2014-01-08 Includes\iPhone-000.sbi (*)
    2014-01-08 Includes\iPhone.sbi (*)
    2016-05-27 Includes\Keyloggers-000.sbi (*)
    2016-06-08 Includes\Keyloggers-C.sbi (*)
    2014-01-13 Includes\Keyloggers.sbi (*)
    2014-01-13 Includes\KeyloggersC.sbi (*)
    2015-06-25 Includes\Malware-000.sbi (*)
    2014-11-14 Includes\Malware-001.sbi (*)
    2016-06-14 Includes\Malware-002.sbi (*)
    2015-11-19 Includes\Malware-003.sbi (*)
    2014-11-14 Includes\Malware-004.sbi (*)
    2014-11-14 Includes\Malware-005.sbi (*)
    2014-02-26 Includes\Malware-006.sbi (*)
    2014-01-09 Includes\Malware-007.sbi (*)
    2016-07-06 Includes\Malware-C.sbi (*)
    2014-01-13 Includes\Malware.sbi (*)
    2013-12-23 Includes\MalwareC.sbi (*)
    2014-11-14 Includes\PUPS-000.sbi (*)
    2014-01-15 Includes\PUPS-001.sbi (*)
    2014-01-15 Includes\PUPS-002.sbi (*)
    2016-07-13 Includes\PUPS-C.sbi (*)
    2012-11-14 Includes\PUPS.sbi (*)
    2014-01-07 Includes\PUPSC.sbi (*)
    2014-01-08 Includes\Security-000.sbi (*)
    2015-12-02 Includes\Security-C.sbi (*)
    2014-01-21 Includes\Security.sbi (*)
    2014-01-21 Includes\SecurityC.sbi (*)
    2015-11-11 Includes\Spyware-000.sbi (*)
    2015-05-06 Includes\Spyware-001.sbi (*)
    2016-05-11 Includes\Spyware-C.sbi (*)
    2014-01-21 Includes\Spyware.sbi (*)
    2014-01-21 Includes\SpywareC.sbi (*)
    2011-06-07 Includes\Tracks.sbi (*)
    2012-11-19 Includes\Tracks.uti (*)
    2014-01-15 Includes\Trojans-000.sbi (*)
    2014-01-15 Includes\Trojans-001.sbi (*)
    2014-11-14 Includes\Trojans-002.sbi (*)
    2016-01-20 Includes\Trojans-003.sbi (*)
    2014-01-15 Includes\Trojans-004.sbi (*)
    2014-03-19 Includes\Trojans-005.sbi (*)
    2015-03-31 Includes\Trojans-006.sbi (*)
    2014-01-15 Includes\Trojans-007.sbi (*)
    2014-07-09 Includes\Trojans-008.sbi (*)
    2014-07-09 Includes\Trojans-009.sbi (*)
    2016-07-13 Includes\Trojans-C.sbi (*)
    2014-01-15 Includes\Trojans-OG-000.sbi (*)
    2014-01-15 Includes\Trojans-TD-000.sbi (*)
    2014-01-15 Includes\Trojans-VM-000.sbi (*)
    2014-01-15 Includes\Trojans-VM-001.sbi (*)
    2014-01-15 Includes\Trojans-VM-002.sbi (*)
    2014-01-15 Includes\Trojans-VM-003.sbi (*)
    2014-01-15 Includes\Trojans-VM-004.sbi (*)
    2014-01-15 Includes\Trojans-VM-005.sbi (*)
    2014-01-15 Includes\Trojans-VM-006.sbi (*)
    2014-01-15 Includes\Trojans-VM-007.sbi (*)
    2014-01-15 Includes\Trojans-VM-008.sbi (*)
    2014-01-15 Includes\Trojans-VM-009.sbi (*)
    2014-01-15 Includes\Trojans-VM-010.sbi (*)
    2014-01-15 Includes\Trojans-VM-011.sbi (*)
    2014-01-15 Includes\Trojans-VM-012.sbi (*)
    2014-01-15 Includes\Trojans-VM-013.sbi (*)
    2014-01-15 Includes\Trojans-VM-014.sbi (*)
    2014-01-15 Includes\Trojans-VM-015.sbi (*)
    2014-01-15 Includes\Trojans-VM-016.sbi (*)
    2014-01-15 Includes\Trojans-VM-017.sbi (*)
    2014-01-15 Includes\Trojans-VM-018.sbi (*)
    2014-01-15 Includes\Trojans-VM-019.sbi (*)
    2014-01-15 Includes\Trojans-VM-020.sbi (*)
    2014-01-15 Includes\Trojans-VM-021.sbi (*)
    2014-01-15 Includes\Trojans-VM-022.sbi (*)
    2014-01-15 Includes\Trojans-VM-023.sbi (*)
    2014-01-15 Includes\Trojans-VM-024.sbi (*)
    2014-01-15 Includes\Trojans-ZB-000.sbi (*)
    2016-02-03 Includes\Trojans-ZL-000.sbi (*)
    2014-01-09 Includes\Trojans.sbi (*)
    2014-01-16 Includes\TrojansC-01.sbi (*)
    2014-01-16 Includes\TrojansC-02.sbi (*)
    2014-01-16 Includes\TrojansC-03.sbi (*)
    2014-01-16 Includes\TrojansC-04.sbi (*)
    2014-01-16 Includes\TrojansC-05.sbi (*)
    2014-01-09 Includes\TrojansC.sbi (*)
      My System SpecsSystem Spec


  8. Joined : Apr 2015
    Posts : 9,159
    W10Prox64
       21 Jul 2016 #8

    Hi.
    Your system is indeed infected; your torrenting has caught you. Based on what I am seeing here, (incomplete log files), you have a Trojan.Enumerate virus from autokms.exe; Google Chrome contains a bad extension. You can do some reading over at this thread:
    Keygen.exe/Autokms.exe - Am I infected? What do I do?
    Note the recommendation to change all passwords immediately from a known clean device in that thread.
    Unfortunately, since it appears that you have illegal/cracked software on the system, I can not assist any further.
      My System SpecsSystem Spec


 


Similar Threads
Thread Forum
Help! Windows 10 computer stuck at loading bar after reset
I restarted my computer and it's stuck on this screen that has a Dell logo and below it is a bar that is not loading. It's stuck. It's been like that for a few hours and I don't know how to fix the problem.
General Support
Solved Computer halts while Windows is loading processes after login
I'm not sure if this is the appropriate sub-forum as I don't have a BSOD but rather freezing/halting; this seemed like the closest match. It's a consistent problem and occurs after Windows login around 10 seconds into the desktop with background...
Performance & Maintenance
Webpages not loading
Some webpages are not loading for a day. I'm using just about every browser like Maxthon, Mozzila Firefox, Chrome and opera and Internet Explorer and the problem appears again. Sometimes is fixed via pc restart only. Why is happening and what...
Browsers and Email
My Computer Not Loading
39251 Also, icon thumbnails wont show up in folders, only on desktop when refreshed. Any fix? thanks.
General Support
Webpages not loading correctly
I don't know if it is a windows 10 problem or a google chrome problem but some pages like facebook and netflix have started loading wrong. A lot of the color is gone and many of the words are moved slightly in the wrong direction. Most things can...
Browsers and Email
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 17:36.
Find Us
Twitter Facebook Google+



Windows 10 Forums