Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 24, 2014 19:04:34 GMT -8
Yes click finish
Quads
|
|
|
Post by highclimber on Nov 24, 2014 19:09:16 GMT -8
Done. Thanks!!!
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 24, 2014 20:00:51 GMT -8
You may want to read carefully all of this message first before starting the steps.
NOTE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Download the script attached, needs to be the same file name as well (fixlist.txt), have it on the Desktop, so that fixlist.txt is next to FRST64.exe,
DO NOT DRAG AND DROP to download the script, it won't work for FRST (Right click on the attachment link (not the normal left click) and from the menu choose Save As or Save Link as.)
The script tells FRST what to do.
Start FRST that is on the desktop When the tool opens click Yes to disclaimer. (if it still does)
Press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) please post it to your reply (attach or paste)
Quads
|
|
|
Post by highclimber on Nov 24, 2014 20:27:23 GMT -8
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-11-2014 01 Ran by Steven Coe at 2014-11-24 20:25:26 Run:2 Running from C:\Users\Steven Coe\Desktop Loaded Profile: Steven Coe (Available profiles: Steven Coe & Yvette) Boot Mode: Normal ==============================================
Content of fixlist: ***************** start C:\Users\Steven Coe\AppData\Local\Temp\ASK29D7.tmp C:\Users\Steven Coe\AppData\Local\Temp\194104556.Uninstall\uninstaller.exe C:\Users\Steven Coe\AppData\Local\Temp\194104556.Uninstall C:\Users\Steven Coe\AppData\Local\Temp\194167440.Uninstall\uninstaller.exe C:\Users\Steven Coe\AppData\Local\Temp\194167440.Uninstall C:\Users\Steven Coe\AppData\Local\Temp\194220667.Uninstall\uninstaller.exe C:\Users\Steven Coe\AppData\Local\Temp\194220667.Uninstall C:\Users\Steven Coe\AppData\Local\Temp\3290\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L984EFC7\khdxvvmee1[1].htm C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192717964_stp\Mysearchdial.exe C:\Users\Steven Coe\AppData\Local\Temp\is357113909 C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192718041_stp\RightSurfSetup.exe C:\Users\Steven Coe\AppData\Local\Temp\is357113909 C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192718126_stp\uninstaller.exe C:\Users\Steven Coe\AppData\Local\Temp\is357113909 C:\Users\Steven Coe\Downloads\mplayer_freely_d157223.exe end
*****************
|
|
|
Post by highclimber on Nov 24, 2014 20:33:10 GMT -8
Sorry about that...I didn't paste the entire log. Here is the ENTIRE log:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-11-2014 01 Ran by Steven Coe at 2014-11-24 20:25:26 Run:2 Running from C:\Users\Steven Coe\Desktop Loaded Profile: Steven Coe (Available profiles: Steven Coe & Yvette) Boot Mode: Normal ==============================================
Content of fixlist: ***************** start C:\Users\Steven Coe\AppData\Local\Temp\ASK29D7.tmp C:\Users\Steven Coe\AppData\Local\Temp\194104556.Uninstall\uninstaller.exe C:\Users\Steven Coe\AppData\Local\Temp\194104556.Uninstall C:\Users\Steven Coe\AppData\Local\Temp\194167440.Uninstall\uninstaller.exe C:\Users\Steven Coe\AppData\Local\Temp\194167440.Uninstall C:\Users\Steven Coe\AppData\Local\Temp\194220667.Uninstall\uninstaller.exe C:\Users\Steven Coe\AppData\Local\Temp\194220667.Uninstall C:\Users\Steven Coe\AppData\Local\Temp\3290\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L984EFC7\khdxvvmee1[1].htm C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192717964_stp\Mysearchdial.exe C:\Users\Steven Coe\AppData\Local\Temp\is357113909 C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192718041_stp\RightSurfSetup.exe C:\Users\Steven Coe\AppData\Local\Temp\is357113909 C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192718126_stp\uninstaller.exe C:\Users\Steven Coe\AppData\Local\Temp\is357113909 C:\Users\Steven Coe\Downloads\mplayer_freely_d157223.exe end
*****************
C:\Users\Steven Coe\AppData\Local\Temp\ASK29D7.tmp => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\194104556.Uninstall\uninstaller.exe => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\194104556.Uninstall => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\194167440.Uninstall\uninstaller.exe => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\194167440.Uninstall => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\194220667.Uninstall\uninstaller.exe => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\194220667.Uninstall => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\3290\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L984EFC7\khdxvvmee1[1].htm => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192717964_stp\Mysearchdial.exe => Moved successfully. C:\Users\Steven Coe\AppData\Local\Temp\is357113909 => Moved successfully. "C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192718041_stp\RightSurfSetup.exe" => File/Directory not found. "C:\Users\Steven Coe\AppData\Local\Temp\is357113909" => File/Directory not found. "C:\Users\Steven Coe\AppData\Local\Temp\is357113909\192718126_stp\uninstaller.exe" => File/Directory not found. "C:\Users\Steven Coe\AppData\Local\Temp\is357113909" => File/Directory not found. C:\Users\Steven Coe\Downloads\mplayer_freely_d157223.exe => Moved successfully.
==== End of Fixlog ====
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 24, 2014 20:38:19 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 24, 2014 20:38:22 GMT -8
|
|
|
Post by highclimber on Nov 25, 2014 5:54:17 GMT -8
Thank you. Done. This is all I got:
User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: dub_cm_auto User: Public User: Steven Coe
|
|
|
Post by highclimber on Nov 28, 2014 18:03:55 GMT -8
Hey Quads,
You think we're ready for "Delfix" yet, so I can get the ole' GREEN system is clean, go on my merry way?
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Dec 19, 2014 19:39:05 GMT -8
Tools and Quarantines we used to be removed Please download DelFix by Xplode to your Desktop. toolslib.net/downloads/viewdownload/2-delfix/Double-click to run the program; Note: Windows Vista/7/8 users right-click and choose Run as administrator Make sure the Remove Disinfection tools is ticked / selected in the list Click RunA log will be opened after the operation is finished Copy and Paste it in your next reply Quads
|
|