Windows Command Prompt pop up

[cjn]

Hi there

I have been having trouble with an annoying pop up that doesn't seem to go away.  "Windows Command Prompt".  Finally someone told me it was a bug and I needed to download RogueKiller to get rid of it.  Problem is, Roguekiller generated a report that looks like garbbledi gook to me.  I don't have a clue which files are bad and need deleted and which need to stay.

I tried to attach the report that RogueKiller generated, but this site said I couldn't upload the report.  I copied it below instead.  Would one of you be kind enough to tell me which files I need to delete and which ones I need to keep my hands off of?  I know amateurs like me mess up more than they fix when they just start deleting files willy nilly.

RogueKiller V9.2.0.0 [Jun 23 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode

Mode : Scan -- Date : 07/08/2014  18:05:14

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 17 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3960775227-211517331-479872805-1002\Software\Microsoft\Windows\CurrentVersion\Run | Odics : regsvr32.exe C:\Users\CJ\AppData\Local\Odics\libiompstubs5md.dll  -> FOUND
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3960775227-211517331-479872805-1002\Software\Microsoft\Windows\CurrentVersion\Run | Odics : regsvr32.exe C:\Users\CJ\AppData\Local\Odics\libiompstubs5md.dll  -> FOUND
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 209.18.47.61 209.18.47.62  -> FOUND
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 209.18.47.61 209.18.47.62  -> FOUND
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4A858AEC-2EBE-4A5E-B200-4D48946CA81E} | DhcpNameServer : 209.18.47.61 209.18.47.62  -> FOUND
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8E16910E-407A-4419-9D73-4BBCBF946553} | DhcpNameServer : 209.18.47.61 209.18.47.62  -> FOUND
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{4A858AEC-2EBE-4A5E-B200-4D48946CA81E} | DhcpNameServer : 209.18.47.61 209.18.47.62  -> FOUND
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8E16910E-407A-4419-9D73-4BBCBF946553} | DhcpNameServer : 209.18.47.61 209.18.47.62  -> FOUND
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{8E16910E-407A-4419-9D73-4BBCBF946553} | DhcpNameServer : 209.18.47.61 209.18.47.62  -> FOUND
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0  -> FOUND
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0  -> FOUND
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-3960775227-211517331-479872805-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> FOUND
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-3960775227-211517331-479872805-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> FOUND
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> FOUND
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> FOUND
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> FOUND
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ HOSTS File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: NOT LOADED [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: HGST HTS545050A7E380 +++++
--- User ---
[MBR] 0182a9a4bafb2b835ade9bdd676dfbcb
[BSP] 70779bed7b6d1bb3b5483872a0761431 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 300 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 616448 | Size: 454990 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 932435968 | Size: 19598 MB
3 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 972572672 | Size: 2043 MB
User = LL1 ... OK
User = LL2 ... OK


Thank you for any help that you can give. I ran avast! Antivirus, but the pop up continues.

cjn

[Tigzy]

Hello

Remove this:

[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3960775227-211517331-479872805-1002\Software\Microsoft\Windows\CurrentVersion\Run | Odics : regsvr32.exe C:\Users\CJ\AppData\Local\Odics\libiompstubs5md.dll  -> FOUND
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3960775227-211517331-479872805-1002\Software\Microsoft\Windows\CurrentVersion\Run | Odics : regsvr32.exe C:\Users\CJ\AppData\Local\Odics\libiompstubs5md.dll  -> FOUND

And tell if that worked.