Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Jul 31, 2014 11:14:10 GMT -8
Read carefully
Download Adwcleaner www.bleepingcomputer.com/download/adwcleaner/ on to your desktop The Blue Download Now @bleeping Computer button and run a scan ( Scan Button). It will create a log after. Or there is a Report button, ONE SCAN ONLY
Attach or paste the log back here Quads
|
|
|
Post by arrowcaf on Jul 31, 2014 12:53:29 GMT -8
Here are the results.
# AdwCleaner v3.302 - Report created 31/07/2014 at 15:48:02 # Updated 30/07/2014 by Xplode # Operating System : Windows 7 Home Premium (64 bits) # Username : Scott - SCOTT-PC # Running from : C:\Users\Scott\Desktop\AdwCleaner.exe # Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk Folder Found : C:\ProgramData\Ask Folder Found : C:\ProgramData\Free Ride Games Folder Found : C:\ProgramData\InternetUpdater Folder Found : C:\ProgramData\ParetoLogic Folder Found : C:\ProgramData\RHelpers Folder Found : C:\ProgramData\TubeDimmer Folder Found : C:\ProgramData\Updater Folder Found : C:\Users\Scott\AppData\Local\Browsersafeguard Folder Found : C:\Users\Scott\AppData\Roaming\DriverCure Folder Found : C:\Users\Scott\AppData\Roaming\ParetoLogic Folder Found : C:\Users\Scott\AppData\Roaming\Systweak Folder Found : C:\Users\Scott\Documents\Optimizer Pro
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\APN PIP Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Found : HKCU\Software\AppDataLow\Software\DynConIE Key Found : HKCU\Software\BrowserSafeGuard Key Found : HKCU\Software\distromatic Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Found : HKCU\Software\ParetoLogic Key Found : HKCU\Software\YahooPartnerToolbar Key Found : [x64] HKCU\Software\APN PIP Key Found : [x64] HKCU\Software\BrowserSafeGuard Key Found : [x64] HKCU\Software\distromatic Key Found : [x64] HKCU\Software\ParetoLogic Key Found : [x64] HKCU\Software\YahooPartnerToolbar Key Found : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Found : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Key Found : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C} Key Found : HKLM\Software\AVG SafeGuard toolbar Key Found : HKLM\SOFTWARE\Classes\AppID\{384997EE-E3BE-49C4-9ECA-C62B7C08128A} Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Key Found : HKLM\SOFTWARE\Classes\AppID\DynConIE.DLL Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Key Found : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL Key Found : HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} Key Found : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237} Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Key Found : HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Found : HKLM\SOFTWARE\Classes\dynconie.dynconieobject Key Found : HKLM\SOFTWARE\Classes\dynconie.dynconieobject.1 Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Found : HKLM\SOFTWARE\Classes\Interface\{2830488C-079B-45C2-88B6-AFE4EAA2DF85} Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 Key Found : HKLM\SOFTWARE\Classes\TypeLib\{781CA792-9B6E-400B-B36F-15C097D2CA54} Key Found : HKLM\Software\Conduit Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5} Key Found : HKLM\SOFTWARE\Microsoft\Tracing\adawarebp_rasapi32 Key Found : HKLM\SOFTWARE\Microsoft\Tracing\adawarebp_rasmancs Key Found : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32 Key Found : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS Key Found : HKLM\SOFTWARE\Microsoft\Tracing\HPSF_Tasks_RASAPI32 Key Found : HKLM\SOFTWARE\Microsoft\Tracing\HPSF_Tasks_RASMANCS Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32 Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32 Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32 Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32 Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS Key Found : HKLM\Software\ParetoLogic Key Found : HKLM\Software\PIP Key Found : HKLM\Software\systweak Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2830488C-079B-45C2-88B6-AFE4EAA2DF85} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.7600.16385
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}&l=dis&o=uscql Found [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=&locale=&apn_uid=305AE13A-686D-4F7F-AEC4-25BC2B133434&apn_ptnrs=TV&apn_sauid=27D2326F-CE2B-461B-982E-CE981EA80D05&apn_dtid=OSJ000YYUS&q={searchTerms} Found [Extension] : aaaaojmikegpiepcfdkkjaplodkpfmlo Found [Extension] : igjjkeeamkpihpncmmbgdkhdnjpcfmfb Found [Extension] : ndibdjnfmopecpmkdieinmbadjfpblof
*************************
AdwCleaner[R0].txt - [6542 octets] - [31/07/2014 15:48:02]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [6602 octets] ##########
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Jul 31, 2014 14:34:13 GMT -8
a) Click the Scan Button and wait for the scan to finish,. (already done if Adwcleaner is left pending) b) Make sure in your case all the items under each TAB are ticked / checked then. c) Click the Clean Button and Adwcleaner will process all the items ticked / checked and then may ask for the system to be restarted.d) It should create a new log afterwards (with S0 in the name). Here is a Screenshot example Quads
|
|
|
Post by arrowcaf on Jul 31, 2014 16:05:31 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Jul 31, 2014 16:12:46 GMT -8
System should be acting better now??
Quads
|
|