|
Post by genera8ion on Mar 19, 2014 9:42:13 GMT -8
Tks Quads.
Sounded nasty. Hope you got through it ok!
As directed, I have uninstalled ESET Online Scanner through the Control panel uninstall....
Thanks for scripting, will await your next instruction.
Kind regards, Genera8ion
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Mar 19, 2014 13:32:09 GMT -8
Start OTL, Right click "Run as Administrator" Under Copy and paste What I have put in the .txt file I have attached, all the way to the bottom ([REBOOT] is the last command line) , It is in the correct line by line layout as it is to be for OTL to understand, what I want it to do. (include the : at the start of :OTL and all the way to the end / bottom) and run the script. (Red Run Fix Button) The output log, should be placed in the C:\_OTL\MovedFiles folder after, to attach back here. Looks like a txt file not a Folder Quads
|
|
|
Post by genera8ion on Mar 24, 2014 11:05:06 GMT -8
Hi Quads,
Thanks for the scripting. For E: drive I have a portable drive that I occasionally plug in. It was not plugged in during OLT run or during any diagnostics.
I greatly appreciate your assistance.
Log file is below.
Rgs, Genera8ion
All processes killed ========== OTL ========== Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted
successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked
deleted successfully. Starting removal of ActiveX control {7530BFB8-7293-4D34-9923-61A11451AFC5} C:\Windows\Downloaded Program Files\OnlineScanner.inf moved successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units
\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-
61A11451AFC5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components
\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-
61A11451AFC5}\ not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion
\ShellServiceObjectDelayLoad\\WebCheck deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-
00AA005127ED}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{0979dbe5-8854-11e1-b94e-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0979dbe5-8854-11e1-b94e-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{0979dbe5-8854-11e1-b94e-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0979dbe5-8854-11e1-b94e-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{0979dbe7-8854-11e1-b94e-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0979dbe7-8854-11e1-b94e-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{0979dbe7-8854-11e1-b94e-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0979dbe7-8854-11e1-b94e-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{0979dbec-8854-11e1-b94e-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0979dbec-8854-11e1-b94e-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{0979dbec-8854-11e1-b94e-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0979dbec-8854-11e1-b94e-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{166eaa2f-c748-11e1-b5a0-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{166eaa2f-c748-11e1-b5a0-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{166eaa2f-c748-11e1-b5a0-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{166eaa2f-c748-11e1-b5a0-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{166eaa33-c748-11e1-b5a0-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{166eaa33-c748-11e1-b5a0-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{166eaa33-c748-11e1-b5a0-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{166eaa33-c748-11e1-b5a0-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{16df3b14-63bd-11e0-a8fc-806e6f6e6963}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{16df3b14-63bd-11e0-a8fc-
806e6f6e6963}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{16df3b14-63bd-11e0-a8fc-806e6f6e6963}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{16df3b14-63bd-11e0-a8fc-
806e6f6e6963}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{16df3b35-63bd-11e0-a8fc-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{16df3b35-63bd-11e0-a8fc-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{16df3b35-63bd-11e0-a8fc-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{16df3b35-63bd-11e0-a8fc-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6069-55f5-11e0-b81c-0026c7a8da7c}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6069-55f5-11e0-b81c-
0026c7a8da7c}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6069-55f5-11e0-b81c-0026c7a8da7c}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6069-55f5-11e0-b81c-
0026c7a8da7c}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6072-55f5-11e0-b81c-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6072-55f5-11e0-b81c-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6072-55f5-11e0-b81c-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6072-55f5-11e0-b81c-
1c7508223930}\ not found. File F:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6111-55f5-11e0-b81c-001e101f859f}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6111-55f5-11e0-b81c-
001e101f859f}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6111-55f5-11e0-b81c-001e101f859f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6111-55f5-11e0-b81c-
001e101f859f}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6113-55f5-11e0-b81c-001e101f859f}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6113-55f5-11e0-b81c-
001e101f859f}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6113-55f5-11e0-b81c-001e101f859f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6113-55f5-11e0-b81c-
001e101f859f}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6114-55f5-11e0-b81c-001e101f859f}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6114-55f5-11e0-b81c-
001e101f859f}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{20aa6114-55f5-11e0-b81c-001e101f859f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{20aa6114-55f5-11e0-b81c-
001e101f859f}\ not found. File F:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{2c09dea1-628a-11e0-b5c8-0026c7a8da7c}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2c09dea1-628a-11e0-b5c8-
0026c7a8da7c}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{2c09dea1-628a-11e0-b5c8-0026c7a8da7c}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2c09dea1-628a-11e0-b5c8-
0026c7a8da7c}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{71114b21-ac89-11e1-b0ab-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{71114b21-ac89-11e1-b0ab-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{71114b21-ac89-11e1-b0ab-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{71114b21-ac89-11e1-b0ab-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{a825d6a1-6c6a-11e0-b898-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a825d6a1-6c6a-11e0-b898-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{a825d6a1-6c6a-11e0-b898-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a825d6a1-6c6a-11e0-b898-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{ac24d6e5-884c-11e1-b2c5-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ac24d6e5-884c-11e1-b2c5-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{ac24d6e5-884c-11e1-b2c5-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ac24d6e5-884c-11e1-b2c5-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{ac24d6e9-884c-11e1-b2c5-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ac24d6e9-884c-11e1-b2c5-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{ac24d6e9-884c-11e1-b2c5-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ac24d6e9-884c-11e1-b2c5-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{c4063181-9c96-11e1-ae98-0026c7a8da7c}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c4063181-9c96-11e1-ae98-
0026c7a8da7c}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{c4063181-9c96-11e1-ae98-0026c7a8da7c}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c4063181-9c96-11e1-ae98-
0026c7a8da7c}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{c4063184-9c96-11e1-ae98-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c4063184-9c96-11e1-ae98-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{c4063184-9c96-11e1-ae98-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c4063184-9c96-11e1-ae98-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{c54acb58-4cce-11e1-b621-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c54acb58-4cce-11e1-b621-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{c54acb58-4cce-11e1-b621-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c54acb58-4cce-11e1-b621-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{cd640afb-66da-11e0-b744-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cd640afb-66da-11e0-b744-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{cd640afb-66da-11e0-b744-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cd640afb-66da-11e0-b744-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{d49ef772-30c1-11e0-8af4-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d49ef772-30c1-11e0-8af4-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{d49ef772-30c1-11e0-8af4-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d49ef772-30c1-11e0-8af4-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{d49ef77a-30c1-11e0-8af4-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d49ef77a-30c1-11e0-8af4-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{d49ef77a-30c1-11e0-8af4-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d49ef77a-30c1-11e0-8af4-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{d49ef77c-30c1-11e0-8af4-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d49ef77c-30c1-11e0-8af4-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{d49ef77c-30c1-11e0-8af4-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d49ef77c-30c1-11e0-8af4-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{e0df6f28-c264-11e0-a47f-0026c7a8da7c}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e0df6f28-c264-11e0-a47f-
0026c7a8da7c}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{e0df6f28-c264-11e0-a47f-0026c7a8da7c}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e0df6f28-c264-11e0-a47f-
0026c7a8da7c}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{e0df6f2a-c264-11e0-a47f-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e0df6f2a-c264-11e0-a47f-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{e0df6f2a-c264-11e0-a47f-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e0df6f2a-c264-11e0-a47f-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{e0df6f2d-c264-11e0-a47f-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e0df6f2d-c264-11e0-a47f-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{e0df6f2d-c264-11e0-a47f-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e0df6f2d-c264-11e0-a47f-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{e8d80d07-30c3-11e0-aa96-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e8d80d07-30c3-11e0-aa96-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{e8d80d07-30c3-11e0-aa96-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e8d80d07-30c3-11e0-aa96-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{ebd0a3f3-3cd6-11e1-b775-001e101f36d9}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ebd0a3f3-3cd6-11e1-b775-
001e101f36d9}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{ebd0a3f3-3cd6-11e1-b775-001e101f36d9}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ebd0a3f3-3cd6-11e1-b775-
001e101f36d9}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{ebd0a3f7-3cd6-11e1-b775-1c7508223930}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ebd0a3f7-3cd6-11e1-b775-
1c7508223930}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
\MountPoints2\{ebd0a3f7-3cd6-11e1-b775-1c7508223930}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ebd0a3f7-3cd6-11e1-b775-
1c7508223930}\ not found. File E:\AutoRun.exe not found. Folder C:\Program Files\ESET\ not found. C:\Users\Liszelle\Desktop\JRT.exe moved successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\Roaming\Mozilla\Firefox\Profiles
\60d3d1eu.default\searchplugins folder moved successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\Roaming\Mozilla\Firefox\Profiles
\60d3d1eu.default folder moved successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\Roaming\Mozilla\Firefox\Profiles folder
moved successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\Roaming\Mozilla\Firefox folder moved
successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\Roaming\Mozilla folder moved
successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\Roaming\Babylon folder moved
successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\Roaming folder moved successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\LocalLow\Searchqutoolbar folder moved
successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData\LocalLow folder moved successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle\AppData folder moved successfully. C:\AdwCleaner\Quarantine\C\Users\Liszelle folder moved successfully. C:\AdwCleaner\Quarantine\C\Users folder moved successfully. C:\AdwCleaner\Quarantine\C\ProgramData\Registry Helper\Settings folder moved successfully. C:\AdwCleaner\Quarantine\C\ProgramData\Registry Helper\Service folder moved successfully. C:\AdwCleaner\Quarantine\C\ProgramData\Registry Helper folder moved successfully. C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\iLivid folder
moved successfully. C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs folder moved
successfully. C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu folder moved
successfully. C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows folder moved successfully. C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft folder moved successfully. C:\AdwCleaner\Quarantine\C\ProgramData folder moved successfully. C:\AdwCleaner\Quarantine\C\Program Files\iLivid\imageformats folder moved successfully. C:\AdwCleaner\Quarantine\C\Program Files\iLivid folder moved successfully. C:\AdwCleaner\Quarantine\C\Program Files folder moved successfully. C:\AdwCleaner\Quarantine\C folder moved successfully. C:\AdwCleaner\Quarantine folder moved successfully. C:\AdwCleaner\Backup\C\Users\Liszelle\AppData\Roaming\Mozilla\Firefox\Profiles
\60d3d1eu.default folder moved successfully. C:\AdwCleaner\Backup\C\Users\Liszelle\AppData\Roaming\Mozilla\Firefox\Profiles folder moved
successfully. C:\AdwCleaner\Backup\C\Users\Liszelle\AppData\Roaming\Mozilla\Firefox folder moved
successfully. C:\AdwCleaner\Backup\C\Users\Liszelle\AppData\Roaming\Mozilla folder moved successfully. C:\AdwCleaner\Backup\C\Users\Liszelle\AppData\Roaming folder moved successfully. C:\AdwCleaner\Backup\C\Users\Liszelle\AppData folder moved successfully. C:\AdwCleaner\Backup\C\Users\Liszelle folder moved successfully. C:\AdwCleaner\Backup\C\Users folder moved successfully. C:\AdwCleaner\Backup\C folder moved successfully. C:\AdwCleaner\Backup folder moved successfully. C:\AdwCleaner folder moved successfully. C:\Users\Liszelle\Desktop\FRST-OlderVersion folder moved successfully. C:\FRST\Quarantine\C\Windows\System32\Tasks folder moved successfully. C:\FRST\Quarantine\C\Windows\System32 folder moved successfully. C:\FRST\Quarantine\C\Windows folder moved successfully. C:\FRST\Quarantine\C folder moved successfully. C:\FRST\Quarantine folder moved successfully. C:\FRST\Logs folder moved successfully. C:\FRST\Hives\Users\00000002 folder moved successfully. C:\FRST\Hives\Users\00000001 folder moved successfully. C:\FRST\Hives\Users folder moved successfully. C:\FRST\Hives folder moved successfully. C:\FRST folder moved successfully. C:\Users\Liszelle\Desktop\FRST.exe moved successfully. C:\Users\Liszelle\Documents\~WRL2205.tmp deleted successfully. C:\Users\Liszelle\Desktop\AdwCleaner.exe moved successfully. ADS C:\ProgramData\TEMP:0FF263E8 deleted successfully. ========== FILES ========== C:\Users\Liszelle\Downloads\rcpsetup5_dcomnew_sec_300_dcomnew_sec_300.exe moved
successfully. C:\Users\Liszelle\Downloads\rcpsetup5_dcomnew_sec_728_dcomnew_sec_728.exe moved
successfully. ========== REGISTRY ========== ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Liszelle ->Temp folder emptied: 133211167 bytes ->Temporary Internet Files folder emptied: 1485376 bytes ->FireFox cache emptied: 3707250 bytes ->Google Chrome cache emptied: 83751024 bytes ->Apple Safari cache emptied: 8471552 bytes ->Flash cache emptied: 697 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 75448868 bytes RecycleBin emptied: 1229454212 bytes Total Files Cleaned = 1,464.00 mb [EMPTYFLASH] User: All Users User: Default User: Default User User: Liszelle ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0.00 mb [EMPTYJAVA] User: All Users User: Default User: Default User User: Liszelle User: Public Total Java Files Cleaned = 0.00 mb OTL by OldTimer - Version 3.2.69.0 log created on 03242014_214336
Files\Folders moved on Reboot... File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Mar 25, 2014 10:03:23 GMT -8
How is your system running now??
All going well, one more step.
Quads
|
|
|
Post by genera8ion on Mar 29, 2014 8:07:52 GMT -8
Yes running well thanks Quads.
I'm ready for the next step...
Kind regards, Genera8ion
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Mar 29, 2014 9:26:35 GMT -8
Disable Norton
Start OTL again but this time click the Black CleanUp button, then make sure the C:\_OTL folder is deleted after OTL deletes itself. After that you are free to go on your merry way. You are now fixed / Solved.
Quads
|
|
|
Post by genera8ion on Apr 8, 2014 9:50:07 GMT -8
Dear Quads,
My computer is Fixed!
I want to thank you for all the hours that you have assisted me to diagnose, locate and remove PUPs and malware from my system.
You are one of the good people in this world and you use your computer super-powers for good and not evil.
Once again thank you sincerely. I hope you run a company where people compensate you well for your skills. If you have a "Donate Here" button, say through PayPal - I would donate and would encourages to do so.
Enjoy the Royal Tour of NZ!
Kind regards, Genera8ion.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Apr 19, 2014 11:44:22 GMT -8
System fixed, thread now locked
Quads
|
|