Filmgalning

Members
  • Content Count

    2
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Filmgalning

  • Rank
    Newbie
  1. Fixlog: Content of fixlist: ***************** HKLM\...\Run: [] => [X] HKLM-x32\...\Run: [gmsd_se_8] => [X] GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418132790&from=tugs&uid=KINGSTONXSV300S37A120G_50026B77490369BD&q={searchTerms} SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1418132790&from=tugs&uid=KINGSTONXSV300S37A120G_50026B77490369BD&q={searchTerms} Hosts: Hosts file not detected in the default directory Tcpip\..\Interfaces\{EF885E64-14B2-4652-99B0-A93E03F8AD46}: [NameServer] 31.168.224.106,5.135.12.52 FF Plugin: @microsoft.com/GENUINE -> disabled No File CHR HKU\S-1-5-21-885031716-1343160219-1764188400-1000\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - No Path CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - No Path S2 BackupStack; [X] <==== ATTENTION S2 Update Lampy Lighty; "C:\Program Files (x86)\Lampy Lighty\updateLampyLighty.exe" [X] "C:\Program Files (x86)\Lampy Lighty" S1 {d441afc2-977b-40eb-b688-431b09118e9e}Gw64; system32\drivers\{d441afc2-977b-40eb-b688-431b09118e9e}Gw64.sys [X] Task: {A557D312-1840-44AA-8F66-4CBB1C22D9D5} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION C:\Program Files (x86)\MyPC Backup Folder: C:\ProgramData\600440862 CMD: ipconfig /flushdns CMD: netsh winsock reset catalog CMD: netsh int ip reset c:\resetlog.txt CMD: ipconfig /release CMD: ipconfig /renew ***************** HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully. HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_se_8 => value deleted successfully. C:\Windows\system32\GroupPolicy\Machine => Moved successfully. C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully. "HKLM\SOFTWARE\Policies\Google" => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully. "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully. HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found. Hosts was reset successfully. HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{EF885E64-14B2-4652-99B0-A93E03F8AD46}\\NameServer => value deleted successfully. "HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully. "HKU\S-1-5-21-885031716-1343160219-1764188400-1000\SOFTWARE\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd" => Key deleted successfully. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho" => Key deleted successfully. BackupStack => Service deleted successfully. Update Lampy Lighty => Service deleted successfully. C:\Program Files (x86)\Lampy Lighty => Moved successfully. {d441afc2-977b-40eb-b688-431b09118e9e}Gw64 => Service deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A557D312-1840-44AA-8F66-4CBB1C22D9D5}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A557D312-1840-44AA-8F66-4CBB1C22D9D5}" => Key deleted successfully. C:\Windows\System32\Tasks\LaunchSignup => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\LaunchSignup" => Key deleted successfully. "C:\Program Files (x86)\MyPC Backup" => File/Directory not found. ========================= Folder: C:\ProgramData\600440862 ======================== ====== End of Folder: ====== ========= ipconfig /flushdns ========= Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========= End of CMD: ========= ========= netsh winsock reset catalog ========= Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ========= End of CMD: ========= ========= netsh int ip reset c:\resetlog.txt ========= Reseting Global, OK! Reseting Interface, OK! Restart the computer to complete this action. ========= End of CMD: ========= ========= ipconfig /release ========= Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Link-local IPv6 Address . . . . . : fe80::c804:fcdc:804:c535%11 Default Gateway . . . . . . . . . : ========= End of CMD: ========= ========= ipconfig /renew ========= Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Link-local IPv6 Address . . . . . : fe80::c804:fcdc:804:c535%11 IPv4 Address. . . . . . . . . . . : 192.168.1.17 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.1 ========= End of CMD: ========= The system needed a reboot. ==== End of Fixlog 18:43:42 ==== adwcleaner ***** [ Services ] ***** ***** [ Files / Folders ] ***** File Found : C:\Users\Kristensen\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage File Found : C:\Users\Kristensen\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal File Found : C:\Users\Kristensen\Desktop\Sync Folder.lnk Folder Found : C:\Program Files (x86)\Bench Folder Found : C:\Program Files (x86)\predm Folder Found : C:\ProgramData\IePluginServices Folder Found : C:\ProgramData\WindowsMangerProtect Folder Found : C:\Users\Kristensen\Documents\Optimizer Pro ***** [ Scheduled Tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} Key Found : HKCU\Software\AppDataLow\Software\adawarebp Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Key Found : HKCU\Software\Optimizer Pro Key Found : HKCU\Software\SupHpUISoft Key Found : HKCU\Software\TutoTag Key Found : [x64] HKCU\Software\Optimizer Pro Key Found : [x64] HKCU\Software\SupHpUISoft Key Found : [x64] HKCU\Software\TutoTag Key Found : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Key Found : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B} Key Found : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} Key Found : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252} Key Found : HKLM\SOFTWARE\AdvertisingSupport Key Found : HKLM\SOFTWARE\Browser Guard Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} Key Found : HKLM\SOFTWARE\GAMESDESKTOP Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{900625B6-F89A-40E3-AEE1-3A9A5E8723A7} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup Key Found : HKLM\SOFTWARE\SupDp Key Found : HKLM\SOFTWARE\supWindowsMangerProtect Key Found : HKLM\SOFTWARE\supWPM Key Found : HKLM\SOFTWARE\Tutorials Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{900625B6-F89A-40E3-AEE1-3A9A5E8723A7} ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17496 -\\ Google Chrome v39.0.2171.99 ************************* AdwCleaner[R0].txt - [3504 octets] - [15/01/2015 18:46:29] ########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3564 octets] ########## Should I press the clean and uninstall button in adwcleaner? Thanks for all the help!
  2. My son had his new computer for one single day and got this super annoying adware (cloudscout) and I can't get rid of it. I tried to scan with mcaffee and ad-aware and nothing turns up. I looked at an earlier post about this topic but I'm not sure I could I could use that notepad data you posted there. So I started my own topic to be sure. Grateful for all the help I can get! FRST.txt Addition.txt