Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer running very slowly/"not responding"


  • Please log in to reply
1 reply to this topic

#1 Squexi

Squexi

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 20 September 2015 - 04:50 PM

Hi. Pretty much the same issue as this guy posted: http://www.bleepingcomputer.com/forums/t/578890/computer-running-very-slowlynot-responding/page-1

Win 7. My pc is running very slowly recently, when i open google chrome or any games it takes a very long time to load. Most of the stuff becomes " not responding " and sometimes i get a black screen if i open few youtube tabs and its frozen. I can't ctrl + alt + delete or anything but restarting my pc. I could really use a hand here,

thank you in advance

 

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Ultimate, Service Pack 1, 64 bit
Processor: AMD Athlon™ II X2 270 Processor, AMD64 Family 16 Model 6 Stepping 3
Processor Count: 2
RAM: 4095 Mb
Graphics Card: NVIDIA GeForce GT 620, 1024 Mb
Hard Drives: C: Total - 299899 MB, Free - 116670 MB; D: Total - 176837 MB, Free - 33628 MB;
Motherboard: MSI, 760GM-P23(FX) (MS-7641)
Antivirus: Microsoft Security Essentials, Updated and Enabled


# AdwCleaner v5.008 - Logfile created 21/09/2015 at 00:52:39
# Updated 18/09/2015 by Xplode
# Database : 2015-09-20.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : tvrtko - TVRTKO-PC
# Running from : C:\Users\tvrtko\Downloads\AdwCleaner.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : SystemUpdatekb70007

***** [ Folders ] *****

Folder Found : C:\Program Files (x86)\focusbase
Folder Found : C:\Program Files (x86)\GetPrivate
Folder Found : C:\Program Files (x86)\globalUpdate
Folder Found : C:\Program Files (x86)\MRS
Folder Found : C:\Program Files (x86)\SO_Booster
Folder Found : C:\Program Files (x86)\SqueakyChocolate
Folder Found : C:\Program Files (x86)\DownSave
Folder Found : C:\Program Files (x86)\ExosTraSeaviingSe
Folder Found : C:\Program Files (x86)\greAtSavEr
Folder Found : C:\Program Files (x86)\REguulARuDeaLs
Folder Found : C:\Program Files (x86)\Save. on
Folder Found : C:\Program Files (x86)\Plus-HD-4.9
Folder Found : C:\ProgramData\DSearchLink
Folder Found : C:\ProgramData\IePluginServices
Folder Found : C:\ProgramData\Isaver
Folder Found : C:\ProgramData\Uniblue
Folder Found : C:\ProgramData\EnergoTech
Folder Found : C:\ProgramData\DownSave
Folder Found : C:\ProgramData\ExosTraSeaviingSe
Folder Found : C:\ProgramData\greAtSavEr
Folder Found : C:\ProgramData\REguulARuDeaLs
Folder Found : C:\ProgramData\Save. on
Folder Found : C:\ProgramData\d47d523721928a33
Folder Found : C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
Folder Found : C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
Folder Found : C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
Folder Found : C:\Users\tvrtko\AppData\Local\Chromatic Browser
Folder Found : C:\Users\tvrtko\AppData\Local\Discount Buddy 
Folder Found : C:\Users\tvrtko\AppData\Local\Discount Buddy
Folder Found : C:\Users\tvrtko\AppData\Local\genienext
Folder Found : C:\Users\tvrtko\AppData\Local\globalUpdate
Folder Found : C:\Users\tvrtko\AppData\Local\Mobogenie
Folder Found : C:\Users\tvrtko\AppData\Local\MRS
Folder Found : C:\Users\tvrtko\AppData\Local\torch
Folder Found : C:\Users\tvrtko\AppData\Local\TNT2
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dfohdbmjdkfijghgklbickfnaepghgba
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneibbnooinfbjaloooeppebnnjbalhp
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\copciehbkikbfnppdndaegnlgkelahfe
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cphbflpjkempeiielbhoflglglkfpjfc
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcgonajaaglplmfclgibcamlghfbkiob
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kipemmnobepaedbkfjgdicmdlmjocekf
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lhbmojliagbancdcmookpmaaoipjifmc
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneibbnooinfbjaloooeppebnnjbalhp
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\copciehbkikbfnppdndaegnlgkelahfe
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cphbflpjkempeiielbhoflglglkfpjfc
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dcgonajaaglplmfclgibcamlghfbkiob
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kipemmnobepaedbkfjgdicmdlmjocekf
Folder Found : C:\Users\tvrtko\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lhbmojliagbancdcmookpmaaoipjifmc
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dfohdbmjdkfijghgklbickfnaepghgba
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jjflmfkjppbmejlfbhlpgjnomdoefkfa
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aneibbnooinfbjaloooeppebnnjbalhp
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\copciehbkikbfnppdndaegnlgkelahfe
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cphbflpjkempeiielbhoflglglkfpjfc
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcgonajaaglplmfclgibcamlghfbkiob
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\kipemmnobepaedbkfjgdicmdlmjocekf
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lhbmojliagbancdcmookpmaaoipjifmc
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aneibbnooinfbjaloooeppebnnjbalhp
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\copciehbkikbfnppdndaegnlgkelahfe
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cphbflpjkempeiielbhoflglglkfpjfc
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dcgonajaaglplmfclgibcamlghfbkiob
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\kipemmnobepaedbkfjgdicmdlmjocekf
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lhbmojliagbancdcmookpmaaoipjifmc
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jjflmfkjppbmejlfbhlpgjnomdoefkfa
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkpahjicmehopmlkbenbkmckcedlcmhk
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebdenbdpimjgfhmjlpkaibapagjfphao
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Extensions\efinmbicabejjhjafeidhfbojhnfiepj
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkpahjicmehopmlkbenbkmckcedlcmhk
Folder Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pncfocpbhmmfmdgjinmebjfajehgomae
Folder Found : C:\Users\tvrtko\AppData\LocalLow\Softonic
Folder Found : C:\Users\tvrtko\AppData\LocalLow\Plus-HD-4.9
Folder Found : C:\Users\tvrtko\AppData\Roaming\GetPrivate
Folder Found : C:\Users\tvrtko\AppData\Roaming\InetStat
Folder Found : C:\Users\tvrtko\AppData\Roaming\MRS
Folder Found : C:\Users\tvrtko\AppData\Roaming\newnext.me
Folder Found : C:\Users\tvrtko\AppData\Roaming\OpenCandy
Folder Found : C:\Users\tvrtko\AppData\Roaming\SkypEmoticons
Folder Found : C:\Users\tvrtko\AppData\Roaming\Systweak
Folder Found : C:\Users\tvrtko\AppData\Roaming\Windows Net Data
Folder Found : C:\Users\tvrtko\Documents\Mobogenie
Folder Found : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\defaulttab

***** [ Files ] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml
File Found : C:\Users\tvrtko\daemonprocess.txt
File Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_elchiiiejkobdbblfejjkbphbddgmljf_0.localstorage
File Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jkpahjicmehopmlkbenbkmckcedlcmhk_0.localstorage
File Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ebdenbdpimjgfhmjlpkaibapagjfphao_0.localstorage
File Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_efinmbicabejjhjafeidhfbojhnfiepj_0.localstorage
File Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jkpahjicmehopmlkbenbkmckcedlcmhk_0.localstorage
File Found : C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pncfocpbhmmfmdgjinmebjfajehgomae_0.localstorage
File Found : C:\Users\tvrtko\AppData\Roaming\LiveSupport.exe_log.txt
File Found : C:\Users\tvrtko\AppData\Roaming\regsvr32.exe_log.txt
File Found : C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\searchplugins\Search The Web.xml
File Found : C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\searchplugins\trovi-search.xml
File Found : C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\user.js
File Found : C:\Windows\Sysnative\roboot64.exe

***** [ Shortcuts ] *****

Shortcut Infected : C:\Users\tvrtko\Desktop\s5 (1)\Search.lnk ( -url hxxp://www.buenosearch.com/?babsrc=DT_ss&mntrId=2677801F02158AFC&affID=128493&tsp=5347 -wbr 4 )

***** [ Scheduled tasks ] *****

Task Found : LaunchSignup
Task Found : RunAsStdUser Task

***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\driverscanner
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKCU\Software\Classes\keepmysearch
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [Plus-HD-4.9-bg.exe]
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0045918.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0045918.BHO.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0045918.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0045918.Sandbox.1
Key Found : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6D4506CE-F855-4657-AA38-DB6B1F733982}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444594418}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1c7f95af-1ba9-4bca-91aa-869349478b87}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1fb84ebc-cd17-4604-9813-3bcaf9a067d0}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612080d9-bade-4753-b53b-024e7ced5625}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8c69b09c-666d-465f-8520-fcc9312cd300}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d14d6ea1-41bf-47b1-a0e6-c2081d009a5b}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1c7f95af-1ba9-4bca-91aa-869349478b87}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1fb84ebc-cd17-4604-9813-3bcaf9a067d0}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612080d9-bade-4753-b53b-024e7ced5625}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8c69b09c-666d-465f-8520-fcc9312cd300}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d14d6ea1-41bf-47b1-a0e6-c2081d009a5b}
Key Found : HKU\.DEFAULT\Software\AVG Secure Search
Key Found : HKU\.DEFAULT\Software\Default Tab
Key Found : HKU\.DEFAULT\Software\DefaultTab
Key Found : HKU\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\DefaultTab
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\iWebar
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\SavePass
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\Sense
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\Plus-HD-4.9
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\genesis
Key Found : HKCU\Software\GlobalUpdate
Key Found : HKCU\Software\InetStat
Key Found : HKCU\Software\InstalledBrowserExtensions
Key Found : HKCU\Software\performersoft llc
Key Found : HKCU\Software\Popajar
Key Found : HKCU\Software\powerpack
Key Found : HKCU\Software\RegisteredApplicationsEx
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\systweak
Key Found : HKCU\Software\TNT2
Key Found : HKCU\Software\Smart PC Solutions
Key Found : HKCU\Software\OB
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\PassShow
Key Found : HKCU\Software\AppDataLow\Software\Plus-HD-4.9
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\Discount Buddy
Key Found : HKLM\SOFTWARE\lucky leap
Key Found : HKLM\SOFTWARE\systweak
Key Found : HKLM\SOFTWARE\Uniblue
Key Found : HKLM\SOFTWARE\V9Software
Key Found : HKLM\SOFTWARE\Plus-HD-4.9
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AEB719FD-EDB0-43E9-B524-90F97C1E6499}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Smart Driver Updater_is1
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\genesis
Key Found : [x64] HKCU\Software\GlobalUpdate
Key Found : [x64] HKCU\Software\InetStat
Key Found : [x64] HKCU\Software\InstalledBrowserExtensions
Key Found : [x64] HKCU\Software\performersoft llc
Key Found : [x64] HKCU\Software\Popajar
Key Found : [x64] HKCU\Software\powerpack
Key Found : [x64] HKCU\Software\RegisteredApplicationsEx
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\systweak
Key Found : [x64] HKCU\Software\TNT2
Key Found : [x64] HKCU\Software\Smart PC Solutions
Key Found : [x64] HKCU\Software\OB
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\DefaultTab
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\iWebar
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\SavePass
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\Sense
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\Plus-HD-4.9
Key Found : HKU\S-1-5-21-1500011072-2589441419-320298497-1000\Software\AppDataLow\Software\Crossrider
Key Found : HKU\S-1-5-21-1500011072-2589441419-320298497-1000\Software\AppDataLow\Software\PassShow
Key Found : HKU\S-1-5-21-1500011072-2589441419-320298497-1000\Software\AppDataLow\Software\Plus-HD-4.9
Key Found : HKU\S-1-5-18\Software\AppDataLow\Software\DefaultTab
Key Found : HKU\S-1-5-18\Software\AppDataLow\Software\iWebar
Key Found : HKU\S-1-5-18\Software\AppDataLow\Software\SavePass
Key Found : HKU\S-1-5-18\Software\AppDataLow\Software\Sense
Key Found : HKU\S-1-5-18\Software\AppDataLow\Software\Plus-HD-4.9
Key Found : HKLM\SOFTWARE\Classes\Installer\Features\DF917BEA0BDE9E345B42099FC7E14699
Key Found : HKLM\SOFTWARE\Classes\Installer\Products\DF917BEA0BDE9E345B42099FC7E14699
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\DF917BEA0BDE9E345B42099FC7E14699
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://search.v9.com/web/?type=ds&ts=1402368092&from=irs&uid=WDCXWD5000AAKX-00ERMA0_WD-WMC2E597496474964&i=psd&t=343e0639d&q={searchTerms}
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.v9.com/web/?type=ds&ts=1402368092&from=irs&uid=WDCXWD5000AAKX-00ERMA0_WD-WMC2E597496474964&i=psd&t=343e0639d&q={searchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\suptab\search~1.dll
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~2.DLL

***** [ Web browsers ] *****

[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("browser.search.order.1", "Search The Web");
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("browser.search.selectedEngine", "Search The Web");
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.1EKM9HS.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.5AXDdcQ3w.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumoro[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.O6XlPqS8.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorob[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.P9E8.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo.ne[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292.48292.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com4829248292e48292x48292t48292e48292n48292s48292i48292o48292n48292s48292.48292148292E48292K48292M48292948292H482[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com4829248292e48292x48292t48292e48292n48292s48292i48292o48292n48292s48292.48292548292A48292X48292D48292d48292c482[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com4829248292e48292x48292t48292e48292n48292s48292i48292o48292n48292s48292.48292O48292648292X48292l48292P48292q482[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com4829248292e48292x48292t48292e48292n48292s48292i48292o48292n48292s48292.48292P48292948292E48292848292.48292s482[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510.35510.internaldb.Resources_meta.value", "%7B%22handlebars.js%22%3A%7B%22id%22%3A183015%2C%22ver%22%3A2%2[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510.35510.internaldb.Resources_resource_646958.value", "%22function%20startAskCom%28e%2Ct%2Cr%29%7Bfunction%[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510.35510.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com3551035510e35510x35510t35510e35510n35510s35510i35510o35510n35510s35510.35510135510E35510K35510M35510935510H355[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com3551035510e35510x35510t35510e35510n35510s35510i35510o35510n35510s35510.35510535510A35510X35510D35510d35510c355[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com3551035510e35510x35510t35510e35510n35510s35510i35510o35510n35510s35510.35510O35510635510X35510l35510P35510q355[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com3551035510e35510x35510t35510e35510n35510s35510i35510o35510n35510s35510.35510P35510935510E35510835510.35510s355[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com3551035510e35510x35510t35510e35510n35510s35510i35510o35510n35510s35510.35510a35510135510435510335510f355104355[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com3551035510e35510x35510t35510e35510n35510s35510i35510o35510n35510s35510.35510a35510135510435510335510f355104355[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com3551035510e35510x35510t35510e35510n35510s35510i35510o35510n35510s35510.35510a35510135510435510335510f355104355[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com3551035510e35510x35510t35510e35510n35510s35510i35510o35510n35510s35510.35510a35510135510435510335510f355104355[...]
[C:\Users\tvrtko\AppData\Roaming\Mozilla\Firefox\Profiles\d44q1f7r.default\prefs.js] [Preference] Found : user_pref("extensions.crossrider.bic", "147642af7fbd23aa80d23662f2a16f7d");
[C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : booedmolknjekdopkepjjeckmjkdpfgl
[C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : ebdenbdpimjgfhmjlpkaibapagjfphao
[C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : efinmbicabejjhjafeidhfbojhnfiepj
[C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : flpcjncodpafbgdpnkljologafpionhb
[C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : jkpahjicmehopmlkbenbkmckcedlcmhk
[C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : jkpahjicmehopmlkbenbkmckcedlcmhk
[C:\Users\tvrtko\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : pncfocpbhmmfmdgjinmebjfajehgomae

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [27227 bytes] ##########


Edited by Squexi, 20 September 2015 - 06:04 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:46 PM

Posted 20 September 2015 - 08:19 PM

Hello Squexi

Remove what was found there...
Double click on AdwCleaner.exe to run the tool again. Vista/Windows 7/8 users right-click and select Run As Administrator[/i]
  • The tool will start to update the database, please wait a bit.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
  • <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Cleaning button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[C#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
Next run these...

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users