Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Kindly help: My laptop touckpad click is not working


  • Please log in to reply
8 replies to this topic

#1 swethaJ

swethaJ

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 20 May 2016 - 01:25 AM

Hi,

 

My laptop touchpad click is not working..

I have tried running the Avast anti virus and got no threats found.

And also tried scanning AVG anti virus, in this got one threat and it got removed.

And also the problem not resolved.

Again tried using Malwarebytes Anti malware, and got 123 objects and it got removed.

And the same asked for restarting the laptop. I did the same and the same touchpad issue happens in my again...

Please help me in this ASAP.

:love4u:



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:51 AM

Posted 22 May 2016 - 07:01 PM

Remove AVG from your machine, then run the AVG removal tool and reboot.

 

 

 

Adware Cleaner Scan.

 

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

JRT Scan.

Please download Junkware Removal Tool and save it on your desktop.

 

  • Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log is saved to your desktop and will automatically open.
  • Please post the JRT log.
  •  

Adware Removal Tool Scan.

 

Download Adware removal tool to your desktop, right click the icon and select Run as Administrator.

 

 

LOr0Gd7.png

 

Hit Ok.

 

sYFsqHx.png

 

Hit next make sure to leave all items checked, for removal.

 

8NcZjGc.png

 

 

The Program will close all open programs to complete the removal, so save any work and hit OK. Then hit OK after the removal process is complete, thenOK again to finish up. Post log generated by tool.

 

ZHP Scan.

Please download Zhp Cleaner  to your desktop.  Right Click the icon and select run as administrator.

 http://nicolascoolman.com/download/zhpcleaner

 

 

2. Once you have started the program, you will need to click the scanner button.

EgsT69u.png

The program will close all open browsers!

3. Once the scan is completed, the you will want to click the Repair button.

6QJjV50.png

At the end of the process you may be asked to reboot your machine. After you reboot a report will open on your desktop.

Copy and paste the report here in your next reply.

 Zemana Scan

 

 

Run a full scan with Zemana AntiMalware!

Install and select deep scan.

jdmyscF.jpg

Remove any infections found.

Then click on the icon in the pic below.

DOLGyto.jpg

Double click on the scan log, copy and paste here in your reply



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,760 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:51 AM

Posted 23 May 2016 - 10:43 AM

Also check

Enabling the Tap to Click option for Synaptics touchpads:

1.Click Start and then Control Panel.
2.Select Classic View from the left side of the window.
3.Double-click the Mouse icon and, then, select the Device settings tab.
4.Click the Settings button and, then, Tapping .
5.Select the Enable tapping check box and click OK .
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 swethaJ

swethaJ
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 24 May 2016 - 11:50 PM

Thank you..

will check today and post you the logs.

@boopme-

I have checked the settings in the control panel.. It was enabled.



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,760 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:51 AM

Posted 25 May 2016 - 03:24 PM

Run the tools posted above.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 swethaJ

swethaJ
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 28 May 2016 - 04:12 AM

Adware Removal Tool 5.1
Time: 2016_05_27_21_46_55
OS: Windows 10 Home - x64 Bit
Account Name: Swetha Jaya
Adware Definition: 05262016
Elapsed time: 12:45
Scan Status:- Automatic Done
 
\\\\\\\\\\\\\\\\\\\\\\\ Scan Logs \\\\\\\\\\\\\\\\\\\\\\
 
Browser: Firefox Found : Adware.Torntv : C:\Users\Swetha Jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js
Browser: Chrome Found : PUP.onclickads : C:\Users\Swetha Jaya\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * 
 
Adware Removal Tool 5.1
Time: 2016_05_27_21_46_55
OS: Windows 10 Home - x64 Bit
Account Name: Swetha Jaya
Adware Definition: 05262016
Elapsed time: 12:45
Repair Status:- Automatic Done
\\\\\\\\\\\\\\\\\\\\\\\ Repair Logs \\\\\\\\\\\\\\\\\\\\\\
 
[-] Repaired ->> File ->> C:\Users\Swetha Jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js
 
[-] Repaired ->> File ->> C:\Users\Swetha Jaya\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
 
 
 
# AdwCleaner v5.117 - Logfile created 21/05/2016 at 01:03:50
# Updated 15/05/2016 by Xplode
# Database : 2016-05-15.2 [Server]
# Operating system : Windows 10 Home  (X64)
# Username : Swetha jaya - Swethajaya
# Running from : C:\Users\Swetha jaya\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
[-] Folder Deleted : C:\ProgramData\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar
[-] Folder Deleted : C:\ProgramData\ytd video downloader
[-] Folder Deleted : C:\ProgramData\avg web tuneup
[#] Folder Deleted : C:\ProgramData\Application Data\AVG Secure Search
[#] Folder Deleted : C:\ProgramData\Application Data\AVG Security Toolbar
[#] Folder Deleted : C:\ProgramData\Application Data\ytd video downloader
[#] Folder Deleted : C:\ProgramData\Application Data\avg web tuneup
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
[-] Folder Deleted : C:\Program Files (x86)\GreenTree Applications
[-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Folder Deleted : C:\Users\Swetha jaya\AppData\Local\avg web tuneup
[-] Folder Deleted : C:\Users\Swetha jaya\AppData\Roaming\BrowserExtensions
[-] Folder Deleted : C:\Program Files\avg web tuneup
[-] Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
 
***** [ Files ] *****
 
[-] File Deleted : C:\Users\Public\Desktop\YTD Video Downloader.lnk
[-] File Deleted : C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\extensions\Avg@toolbar.xpi
[-] File Deleted : C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\extensions\staged\ffxtlbr@mysearchdial.com.json
[-] File Deleted : C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\searchplugins\avg-secure-search.xml
 
***** [ DLLs ] *****
 
 
***** [ WMI ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key Deleted : HKLM\SOFTWARE\Classes\s
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj
[-] Key Deleted : HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKCU\Software\APN PIP
[-] Key Deleted : HKCU\Software\GreenTree Applications\YTD
[-] Key Deleted : HKLM\SOFTWARE\PIP
[-] Key Deleted : HKLM\SOFTWARE\AVG Tuneup
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akamaihd.net
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\discovertreasure-a.akamaihd.net
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akamaihd.net
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\discovertreasure-a.akamaihd.net
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.irmysearch.aflt", "coolmsd");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzuzyyEtAzy0EyDtCyEyC0EzyzyyCyDzzyEtN0D0Tzu0CyDtBtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.irmysearch.cr", "655565506");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.irmysearch.instlRef", "");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.dnsErr", true);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.excTlbr", false);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.hmpg", true);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzuzyyEtAzy0EyDtCyEyC0EzyzyyCyDzzyEtN0D0Tzu0CyDtBtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I[...]
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.id", "9439E5146E996584");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.instlDay", "15862");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.instlRef", "");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzuzyyEtAzy0EyDtCyEyC0EzyzyyCyDzzyEtN0D0Tzu0CyDtBtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F[...]
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.tlbrId", "base");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=coolmsd&cd=2XzuyEtN2Y1L1QzuzyyEtAzy0EyDtCyEyC0EzyzyyCyDzzyEtN0D0Tzu0CyDtBtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F[...]
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.vrsn", "");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.vrsni", "");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial_i.hmpg", true);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial_i.newTab", false);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial_i.smplGrp", "none");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial_i.vrsnTs", "17:10:52");
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C1].txt - [9697 bytes] - [21/05/2016 01:03:50]
C:\AdwCleaner\AdwCleaner[S1].txt - [9801 bytes] - [21/05/2016 00:53:56]
C:\AdwCleaner\AdwCleaner[S2].txt - [9874 bytes] - [21/05/2016 00:59:45]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [9916 bytes] ##########
# AdwCleaner v5.118 - Logfile created 27/05/2016 at 21:27:47
# Updated 23/05/2016 by Xplode
# Database : 2016-05-26.2 [Server]
# Operating system : Windows 10 Home  (X64)
# Username : Swetha jaya - Swethajaya
# Running from : C:\Users\Swetha jaya\Desktop\adwcleaner_5.118.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
[-] Folder Deleted : C:\ProgramData\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\avg web tuneup
[#] Folder Deleted : C:\ProgramData\Application Data\AVG Secure Search
[#] Folder Deleted : C:\ProgramData\Application Data\avg web tuneup
[-] Folder Deleted : C:\Program Files (x86)\GreenTree Applications
[-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Folder Deleted : C:\Users\Swetha jaya\AppData\Local\MalwareProtectionLive
[-] Folder Deleted : C:\Users\Swetha jaya\AppData\Local\avg web tuneup
[-] Folder Deleted : C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\extensions\{7e80e173-7e63-464e-8252-fe170b15c15a}
[-] Folder Deleted : C:\Program Files\avg web tuneup
[-] Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
 
***** [ Files ] *****
 
[-] File Deleted : C:\Users\Public\Desktop\YTD Video Downloader.lnk
[-] File Deleted : C:\Users\Swetha jaya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malware Protection Live.lnk
 
***** [ DLLs ] *****
 
 
***** [ WMI ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key Deleted : HKLM\SOFTWARE\Classes\s
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj
[-] Key Deleted : HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKCU\Software\APN PIP
[-] Key Deleted : HKCU\Software\GreenTree Applications\YTD
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Browser Extensions
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Settings Manager
[-] Key Deleted : HKLM\SOFTWARE\PIP
[-] Key Deleted : HKLM\SOFTWARE\AVG Tuneup
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareProtectionLive
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Data Restored : HKU\S-1-5-21-293598265-3936127107-1627539902-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akamaihd.net
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\discovertreasure-a.akamaihd.net
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akamaihd.net
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\discovertreasure-a.akamaihd.net
[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Extensions]
[#] Value Deleted : HKU\S-1-5-21-293598265-3936127107-1627539902-1000\Software\Microsoft\Windows\CurrentVersion\Run [Browser Extensions]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [MalwareProtectionLive]
[-] Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [vProt]
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.irmysearch.aflt", "coolmsd");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzuzyyEtAzy0EyDtCyEyC0EzyzyyCyDzzyEtN0D0Tzu0CyDtBtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.irmysearch.cr", "655565506");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.irmysearch.instlRef", "");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.dfltSrch", true);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.dnsErr", true);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.excTlbr", false);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.hmpg", true);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzuzyyEtAzy0EyDtCyEyC0EzyzyyCyDzzyEtN0D0Tzu0CyDtBtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I[...]
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.id", "9439E5146E996584");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.instlDay", "15862");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.instlRef", "");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzuzyyEtAzy0EyDtCyEyC0EzyzyyCyDzzyEtN0D0Tzu0CyDtBtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F[...]
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.tlbrId", "base");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=coolmsd&cd=2XzuyEtN2Y1L1QzuzyyEtAzy0EyDtCyEyC0EzyzyyCyDzzyEtN0D0Tzu0CyDtBtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F[...]
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.vrsn", "");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial.vrsni", "");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial_i.hmpg", true);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial_i.newTab", false);
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial_i.smplGrp", "none");
[-] [C:\Users\Swetha jaya\AppData\Roaming\Mozilla\Firefox\Profiles\kh4m4ug7.default\prefs.js] Deleted : user_pref("extensions.mysearchdial_i.vrsnTs", "17:10:52");
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C1].txt - [20623 bytes] - [21/05/2016 01:03:50]
C:\AdwCleaner\AdwCleaner[S1].txt - [21095 bytes] - [21/05/2016 00:53:56]
C:\AdwCleaner\AdwCleaner[S2].txt - [9874 bytes] - [21/05/2016 00:59:45]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [20844 bytes] ##########
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 10 Home x64 
Ran by Swetha jaya (Administrator) on Fri 05/27/2016 at 21:39:17.27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 1 
 
Successfully deleted: C:\WINDOWS\system32\Tasks\Google Update (Task)
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 05/27/2016 at 21:44:54.09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
Zemana AntiMalware 2.20.2.905 (Installed)
 
-------------------------------------------------------
Scan Result            : Completed
Scan Date              : 2016/5/28
Operating System       : Windows 10 64-bit
Processor              : 4X Intel® Core™ i5-2430M CPU @ 2.40GHz
BIOS Mode              : Legacy
CUID                   : 126C278EF75905C6C393C1
Scan Type              : Deep Scan
Duration               : 46m 45s
Scanned Objects        : 222517
Detected Objects       : 2
Excluded Objects       : 0
Read Level             : SCSI
Auto Upload            : ON
Detect All Extensions  : OFF
Scan Documents         : OFF
Domain Info            : WORKGROUP,0,2
 
Detected Objects
-------------------------------------------------------
 
New Tab Helper 72
Status             : Scanned
Object             : %localappdata%\google\chrome\user data\default\extensions\kdmchalhobbejlbnkgkldeblaeijamhb
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : PUA.ChromeExt!Gr
Cleaning Action    : Repair
Related Objects    :
                Browser Extension - New Tab Helper 72
 
BrowserExtensionsSetup.exe
Status             : Scanned
Object             : %localappdata%\temp\{62c67a0e-fb3f-412b-a17e-981bded6d351}\browserextensionssetup.exe
MD5                : D180FFF4963CB316A87998B1992466B7
Publisher          : Spigot, Inc.
Size               : 1794656
Version            : 2.8.8.11
Detection          : Adware:Win32/Spigot!Ep
Cleaning Action    : Quarantine
Related Objects    :
                File - %localappdata%\temp\{62c67a0e-fb3f-412b-a17e-981bded6d351}\browserextensionssetup.exe
 
 
Cleaning Result
-------------------------------------------------------
Cleaned               : 2
Reported as safe      : 0
Failed                : 0
 


#7 swethaJ

swethaJ
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 28 May 2016 - 04:15 AM

Hi Inadequateinfirmity: Attached the logs..

And could not find the  ZHP cleaner download option in the link provided..


was my system seriously affected?



#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:51 AM

Posted 28 May 2016 - 09:03 AM

could not find the  ZHP cleaner download option in the link provided..

 

 

 

 

Use this link.  Click on this....8DfnBlx.png

 

 

was my system seriously affected?

 

 

Not that I see so far.

 

Malwarebytes Scan.

 

We need you to run MalwareBytes to get a log, please download the free version of MalwareBytes HERE

http://data-cdn.mbamupdates.com/web/mbam-setup-2.2.0.1024.exe  Alternate Link.

Save the file to somewhere you can easily find it. Double click the saved file to start the install, accept any security warnings that may appear, and after the install click the new desktop icon to start the program. We need to modify a couple of things with MalwareBytes before we use it so please follow the steps below.

  1. If the dashboard is not already displayed select it.
  2. Then select "Update Now" to get the latest database.

VSKiiIc.jpg

  1. Next we need to change a scanning option, select "Settings" on the main menu, then "Detection and Protection" on the left.
  2. Then select "Scan for rootkits" in the detection options, as well as the other two options already checked.

ZU4W2g2.jpg

  • Now return to Dashboard on the main menu and select "Scan Now" at the bottom of the screen.

nF8dOcq.jpg

  • Allow MalwareBytes to scan your system, it may take some time depending on what you have loaded onto your hard drive.

L8lsasM.jpg

When the scan is finished

  1. Click "Save Results"
  2. Then click on "Text file"

5x4JOvA.jpg

  • A window will then open allowing you to choose a name for the logfile and also allowing you to choose where to save it, save it to the desktop.
  • Please copy and paste the contents of this file in your next post.

 

 

Eset Online Scanner.

 

Eset Scan

Click Me To Download Eset Scan

Disable your antivirus prior to this scan.
 
 esetonlinebtn.png
 

  •  Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

 

Minitoolbox scan.

 

 

Please download MINITOOLBOX and run it.



Checkmark following boxes:


Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

Security Check Scan.

 

Download Security Check to your desktop, right click it run as administrator. When the program completes, the tool will automatically open a log file, please post that log here in your next post.



#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:51 AM

Posted 28 May 2016 - 09:45 AM

Can you also tell me if you see any issues in your device manager? How to open device manager windows 10.

 

If you could then use the snipping tool and upload to imgur a screen shot of the issue(s)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users