therg

Members
  • Content Count

    3
  • Joined

  • Last visited

Community Reputation

0 Neutral

About therg

  • Rank
    Newbie

Recent Profile Visitors

363 profile views
  1. # AdwCleaner v5.029 - Logfile created 12/01/2016 at 23:11:45 # Updated 11/01/2016 by Xplode # Database : 2016-01-12.1 [server] # Operating system : Windows Vista Home Premium Service Pack 2 (x86) # Username : Tom - NEW-PC # Running from : C:\Users\Tom\Desktop\adwcleaner_5.029.exe # Option : Scan # Support : http://toolslib.net/forum ***** [ Services ] ***** Service Found : swdumon ***** [ Folders ] ***** Folder Found : C:\Program Files\Ask.com Folder Found : C:\Program Files\Conduit Folder Found : C:\Program Files\internethelper3.1 Folder Found : C:\Program Files\MyWebSearch Folder Found : C:\Program Files\Coupons Folder Found : C:\Program Files\driverupdate Folder Found : C:\Program Files\slimcleaner plus Folder Found : C:\Program Files\Ascentive Folder Found : C:\Program Files\MyWebSearch Folder Found : C:\Program Files\Common Files\DVDVideoSoft\TB Folder Found : C:\Program Files\Common Files\Winferno Folder Found : C:\ProgramData\ParetoLogic Folder Found : C:\ProgramData\Trymedia Folder Found : C:\ProgramData\driver whiz Folder Found : C:\ProgramData\slimware utilities inc Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupons Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\driverupdate Folder Found : C:\Users\MOM\AppData\LocalLow\AVG SafeGuard toolbar Folder Found : C:\Users\MOM\AppData\LocalLow\Conduit Folder Found : C:\Users\MOM\AppData\Roaming\Yahoo!\Companion Folder Found : C:\Users\Tom\AppData\Local\Conduit Folder Found : C:\Users\Tom\AppData\Local\PackageAware Folder Found : C:\Users\Tom\AppData\Local\slimware utilities inc Folder Found : C:\Users\Tom\AppData\Local\Installer\Install_12363 Folder Found : C:\Users\Tom\AppData\LocalLow\AGI Folder Found : C:\Users\Tom\AppData\LocalLow\Conduit Folder Found : C:\Users\Tom\AppData\LocalLow\internethelper3.1 Folder Found : C:\Users\Tom\AppData\LocalLow\ShoppingReport Folder Found : C:\Users\Tom\AppData\Roaming\dvdvideosoftiehelpers Folder Found : C:\Users\Tom\AppData\Roaming\SecureSearch Folder Found : C:\Users\Tom\AppData\Roaming\Yahoo!\Companion Folder Found : C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\sp3ge5b1.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C} Folder Found : C:\Users\Tom\Documents\PC Health Kit Folder Found : C:\Windows\system32\SearchProtect ***** [ Files ] ***** File Found : C:\END File Found : C:\searchplugins\bing-lavasoft.xml File Found : C:\Program Files\Mozilla Firefox\browser\searchplugins\adawaretb.xml File Found : C:\Program Files\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml File Found : C:\Users\Guest\Desktop\More FREE games.lnk File Found : C:\Users\MOM\AppData\Roaming\Mozilla\Firefox\Profiles\reahnaun.default\searchplugins\safeguard-secure-search.xml File Found : C:\Users\Public\Desktop\driverupdate.lnk File Found : C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\f86lz6r2.default-1437412872098\searchplugins\bing-lavasoft.xml File Found : C:\Windows\system32\Macromed\Flash\FlashPlayerTrust\UnifiedToolbar.cfg File Found : C:\Windows\system32\lavasofttcpservice.dll File Found : C:\Windows\system32\drivers\swdumon.sys File Found : C:\Windows\system32\drivers\{563c45e8-c7d2-4e60-be96-c08ac8da6c78}Gt.sys ***** [ DLL ] ***** ***** [ Shortcuts ] ***** Shortcut Infected : C:\Users\Public\Desktop\Mozilla Firefox.lnk ( hxxp://www-search.net/?s=E2Jzadku1,c1e816b2-d9b6-445e-8ce1-b3eee59f77d1,π=2 ) Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www-search.net/?s=E2Jzadku1,c1e816b2-d9b6-445e-8ce1-b3eee59f77d1,π=2 ) Shortcut Infected : C:\Users\Tom\Desktop\Launch Internet Explorer Browser.lnk ( hxxp://www-search.net/?s=E2Jzadku1,c1e816b2-d9b6-445e-8ce1-b3eee59f77d1,π=2 ) Shortcut Infected : C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www-search.net/?s=E2Jzadku1,c1e816b2-d9b6-445e-8ce1-b3eee59f77d1,π=2 ) Shortcut Infected : C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://www-search.net/?s=E2Jzadku1,c1e816b2-d9b6-445e-8ce1-b3eee59f77d1,π=2 ) Shortcut Infected : C:\Users\Tom\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk ( hxxp://www-search.net/?s=E2Jzadku1,c1e816b2-d9b6-445e-8ce1-b3eee59f77d1,π=2 ) ***** [ Scheduled tasks ] ***** Task Found : driverupdate startup Task Found : SMupdate1 Task Found : Microsoft\Windows\Multimedia\SMupdate3 Task Found : Microsoft\Windows\Maintenance\SMupdate2 ***** [ Registry ] ***** Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Key Found : HKLM\SOFTWARE\Classes\ToolBand.EasyHideBtn Key Found : HKLM\SOFTWARE\Classes\ToolBand.EasyHideBtn.1 Key Found : HKLM\SOFTWARE\Classes\ToolBand.Localizer Key Found : HKLM\SOFTWARE\Classes\ToolBand.Localizer.1 Key Found : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighter Key Found : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighter.1 Key Found : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighterStatistics Key Found : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighterStatistics.1 Key Found : HKLM\SOFTWARE\Classes\ToolBand.SkypeIEHelper Key Found : HKLM\SOFTWARE\Classes\ToolBand.SkypeIEHelper.1 Key Found : HKLM\SOFTWARE\Classes\ToolBand.SNameProxy Key Found : HKLM\SOFTWARE\Classes\ToolBand.SNameProxy.1 Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\smu.exe Key Found : HKLM\SOFTWARE\Classes\AppID\YMERemote.DLL Key Found : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar.1 Key Found : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar Key Found : HKLM\SYSTEM\CurrentControlSet\services\eventlog\Application\Driver Whiz Key Found : HKLM\SOFTWARE\Classes\AniGIFCtrl.AniGIF Key Found : HKLM\SOFTWARE\Classes\AniGIFPpg.AniGIFPpg Key Found : HKLM\SOFTWARE\Classes\AniGIFPpg.AniGIFPpg.1 Key Found : HKLM\SOFTWARE\Classes\AniGIFPpg2.AniGIFPpg2 Key Found : HKLM\SOFTWARE\Classes\AniGIFPpg2.AniGIFPpg2.1 Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [Object Browser-bg.exe] Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole Key Found : HKCU\Software\Google\Chrome\Extensions\nemfjadlboooiffmcelkafilagddogim Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\nemfjadlboooiffmcelkafilagddogim Key Found : HKLM\SOFTWARE\Classes\AppID\{937936AF-28CA-4973-B8AE-F250406149A2} Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Key Found : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237} Key Found : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179} Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Found : HKLM\SOFTWARE\Classes\CLSID\{61AB12E1-A5FF-11D1-B2E9-444553540000} Key Found : HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF} Key Found : HKLM\SOFTWARE\Classes\CLSID\{9522B3FB-7A2B-4646-8AF6-36E7F593073C} Key Found : HKLM\SOFTWARE\Classes\Interface\{DB507187-9746-458C-97DA-C458131EEDE7} Key Found : HKLM\SOFTWARE\Classes\TypeLib\{937936AF-28CA-4973-B8AE-F250406149A2} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Found : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Found : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Found : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} Key Found : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21FA44EF-376D-4D53-9B0F-8A89D3229068} Key Found : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Found : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Found : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} Key Found : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{21FA44EF-376D-4D53-9B0F-8A89D3229068} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9522B3FB-7A2B-4646-8AF6-36E7F593073C} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EAB-A523-4961-B6BB-170DE4475CCA} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{08858AF6-42AD-4914-95D2-AC3AB0DC8E28} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6C97A91E-4524-4019-86AF-2AA2D567BF5C} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9522B3FB-7A2B-4646-8AF6-36E7F593073C} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87A0B80B-5BA7-4CB0-9553-105D68777D60} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48DD-9B6D-7A13A3E42127} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40FD-8DAE-FF14757F60C7} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}] Key Found : HKCU\Software\AGI Key Found : HKCU\Software\Conduit Key Found : HKCU\Software\MyWebSearch Key Found : HKCU\Software\ParetoLogic Key Found : HKCU\Software\YahooPartnerToolbar Key Found : HKCU\Software\Winferno Key Found : HKCU\Software\SlimWare Utilities Inc Key Found : HKCU\Software\Yahoo\Companion Key Found : HKCU\Software\Yahoo\YFriendsBar Key Found : HKCU\Software\MyWebSearch Key Found : HKCU\Software\AppDataLow\Toolbar Key Found : HKCU\Software\AppDataLow\Software\adawarebp Key Found : HKCU\Software\AppDataLow\Software\Conduit Key Found : HKCU\Software\AppDataLow\Software\MyWebSearch Key Found : HKCU\Software\AppDataLow\Software\Object Browser Key Found : HKCU\Software\AppDataLow\Software\ShoppingReport Key Found : HKCU\Software\AppDataLow\Software\Yahoo\Companion Key Found : HKCU\Software\AppDataLow\Software\MyWebSearch Key Found : HKLM\SOFTWARE\AGI Key Found : HKLM\SOFTWARE\Conduit Key Found : HKLM\SOFTWARE\FocusInteractive Key Found : HKLM\SOFTWARE\Fun Web Products Key Found : HKLM\SOFTWARE\MyWebSearch Key Found : HKLM\SOFTWARE\ParetoLogic Key Found : HKLM\SOFTWARE\Trymedia Systems Key Found : HKLM\SOFTWARE\Uniblue Key Found : HKLM\SOFTWARE\SearchModule Key Found : HKLM\SOFTWARE\Winferno Key Found : HKLM\SOFTWARE\SlimWare Utilities Inc Key Found : HKLM\SOFTWARE\Yahoo\Companion Key Found : HKLM\SOFTWARE\MyWebSearch Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\C4B4D7F5499921DF57A4F6B55E59E0F50C2FE298 Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Object Browser Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search module Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{97BBECCF-B1FD-4010-8D4B-EFC9E3CCEECF} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\C4B4D7F5499921DF57A4F6B55E59E0F50C2FE298 Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\Yahoo\Companion Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EF0CE879-8B2C-45A7-9C52-AE50BC2F6CDA} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} Key Found : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} Key Found : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} Key Found : HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} Key Found : HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} Key Found : HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} Key Found : HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} ***** [ Web browsers ] ***** [C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\f86lz6r2.default-1437412872098\prefs.js] [Preference] Found : user_pref("browser.newtab.url", "hxxp://www.bing.com/?pc=COSP&ptag=D122915-A60FA26CFB78147A880F&form=CONMHP&conlogo=CT3332038"); [C:\Users\MOM\AppData\Roaming\Mozilla\Firefox\Profiles\reahnaun.default\prefs.js] [Preference] Found : user_pref("urlclassifier.keyupdatetime.hxxps://sb-ssl.google.com/safebrowsing/newkey", 1341084659); [C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Web data] [search Provider] Found : websearch.ask.com [C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Web data] [search Provider] Found : ask.com_ [C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Web data] [search Provider] Found : search.conduit.com [C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Web data] [search Provider] Found : aol.com [C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Web data] [search Provider] Found : ask.com [C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : nemfjadlboooiffmcelkafilagddogim [C:\Users\MOM\AppData\Local\Google\Chrome\User Data\Default\Web data] [search Provider] Found : ask.com ########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [16973 bytes] ##########
  2. FRST.txt and additional.txt files attached!!! Now can I get some help? Thank you!!! Addition.txt FRST.txt
  3. I downloaded and ran Adware 11, as it said it could remove www-search.com, but it didn't. I have searched my computer and can not find any reference to it. I believe it came when I downloaded Google Chrome and got Tuvaro at the same time. I have remove Tuvaro. Help would be much appreciated. Thank You in advance. Tom