[jpatt]

Ok Joe. I'm back brother, thanks for your patience.

 

ADwcleaner (S0) scan:

 

# AdwCleaner v4.208 - Logfile created 22/07/2015 at 22:34:09

# Updated 09/07/2015 by Xplode

# Database : 2015-07-15.1 [Server]

# Operating system : Windows 7 Professional Service Pack 1 (x64)

# Username : jp - JP-PC

# Running from : C:\Users\jp\Desktop\AdwCleaner.exe

# Option : Cleaning

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

File Deleted : C:\END

 

***** [ Scheduled tasks ] *****

 

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4

Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho

Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1

Key Deleted : HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\SysMenuExt

Key Deleted : HKLM\SOFTWARE\Classes\AppID\SysMenu.DLL

Key Deleted : HKLM\SOFTWARE\3f8d67e5-e0b7-378b-6fea-12fbebad526e

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D813D5BB-EBC7-45F9-B8A4-36A305168069}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{020B1D4B-5738-4C77-9E19-4F173DD9B486}

Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}

Key Deleted : HKCU\Software\GlobalUpdate

Key Deleted : HKCU\Software\Tutorials

Key Deleted : HKCU\Software\YTDownloader

Key Deleted : HKCU\Software\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}

Key Deleted : HKCU\Software\AppDataLow\Software\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}

Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}

Key Deleted : HKLM\SOFTWARE\CompeteInc

Key Deleted : HKLM\SOFTWARE\GlobalUpdate

Key Deleted : HKLM\SOFTWARE\YTDownloader

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}

Data Deleted : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>

 

***** [ Web browsers ] *****

 

-\\ Internet Explorer v11.0.9600.17909

 

 

-\\ Google Chrome v43.0.2357.134

 

 

*************************

 

AdwCleaner[R0].txt - [5284 bytes] - [22/07/2015 21:21:05]

AdwCleaner[R1].txt - [4457 bytes] - [22/07/2015 21:42:26]

AdwCleaner[R2].txt - [4516 bytes] - [22/07/2015 22:29:45]

AdwCleaner[S0].txt - [4316 bytes] - [22/07/2015 22:34:09]

 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4375  bytes] ##########

 

[Advertisements]

Hello,

Tell me how things are and what browser may be still having issues ?

Thanks
Joe

[zep516]

Hello,

Tell me how things are and what browser may be still having issues ?

Thanks
Joe

[jpatt]

I talked to the kid she says its been running fine, but then again she's 11. What little time I spend on this computer things are much better. No pop ups, or fake error messages. This is pretty much been a gaming computer; now that my daughter has taken it over I noticed she spends time watching youtube. Browsers we use is mainly chrome.

[zep516]

Hello,

my daughter has taken it over

So you will want to run Malwarebytes then once a week, clear out your temporary files too. I'll give you a temporary file cleaner at the end.

Lets remove all the tools an log files that were generated by following the exercise below,

Download DelFix by Xplode and save it to your desktop.

• Run the tool by right click on the icon and Run as administrator option.
• Make sure that these ones are checked:
  • Remove disinfection tools
  • Purge system restore
  • Reset system settings
• Push Run.
• The program will run for a few seconds and display a notepad report.
  Paste it for my review.

[jpatt]

Delfix log:

 

# DelFix v1.010 - Logfile created 27/07/2015 at 20:19:59

# Updated 26/04/2015 by Xplode

# Username : jp - JP-PC

# Operating System : Windows 7 Professional Service Pack 1 (64 bits)

 

~ Removing disinfection tools ...

 

Deleted : C:\FRST

Deleted : C:\AdwCleaner

Deleted : C:\Users\jp\Desktop\Addition.txt

Deleted : C:\Users\jp\Desktop\AdwCleaner.exe

Deleted : C:\Users\jp\Desktop\AdwCleaner[R0].txt

Deleted : C:\Users\jp\Desktop\Fixlog.txt

Deleted : C:\Users\jp\Desktop\FRST.txt

Deleted : C:\Users\jp\Desktop\FRST64 (1).exe

Deleted : C:\Users\jp\Desktop\JRT.exe

Deleted : C:\Users\jp\Desktop\JRT.txt

Deleted : C:\Users\jp\Downloads\FRST64.exe

Deleted : HKLM\SOFTWARE\AdwCleaner

 

~ Cleaning system restore ...

 

Deleted : RP #594 [Windows Update | 07/21/2015 23:00:10]

Deleted : RP #595 [Installed Minecraft | 07/21/2015 23:49:04]

Deleted : RP #597 [Restore Point Created by FRST | 07/23/2015 02:05:19]

Deleted : RP #598 [JRT Pre-Junkware Removal | 07/23/2015 02:32:18]

Deleted : RP #599 [Windows Update | 07/25/2015 13:10:24]

Deleted : RP #600 [Windows Backup | 07/27/2015 00:00:20]

 

New restore point created !

 

~ Resetting system settings ... OK

 

########## - EOF - ##########

 

[zep516]

OK,

Here's the temp file cleaner (Tfc)

Download it, it runs right from the desktop... Keep it next to Malwarebytes
http://www.geekstogo...er-by-oldtimer/

Try to run Malwarebytes as I said once a week along with the temp file cleaner.

Downloading games is where the problems begin, hopefully there's enough games on the computer where she does not have to download so much..

I'll keep this thread open for a couple days and we will see how things go.......

Thanks
Joe

[jpatt]

Thanks Joe, you are everything that is good with computing. I love this site because, you all don't take the easy road and tell everyone to restore their system. I will be heading over to the gtg gaming forums, to ask about safe Minecraft Mods withing the next few days.

 

Well brother, without getting too long winded; I feel like I need to donate to your cause. Can you post of PM some information and I'll tell the wife make a donation for your trouble.

 

Speaking of her; her computer is the important one in the family. It shows no signs of being infected, good idea to run a check on hers?  

 

Joe, you have a good name.

 

Thanks,

Joe P. 

[zep516]

You're welcome.

PM sent

Joe. P. H

[zep516]

You usually get infected because your security settings are too low.

Here are a number of recommendations that will help tighten them, and which will contribute to making you a less likely victim:

Safe Computing Practices please read Here


Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.

Thanks
Joe