Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Laptop running slow; task manager said otherwise, found adware


  • Please log in to reply
2 replies to this topic

#1 Malwarebits

Malwarebits

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:10:15 AM

Posted 08 July 2017 - 01:09 PM

Beforehand knowledge: I use a HP laptop running windows 10(build 15063.296) using McAfee SecurityScan antivirus and Windows Defender.

 

 

 

 

 

Ok, so I found that my computer was running slow. Slower than it's usually slow. So i decided to go into task manager, and see what was happening.

 

Apparently, not much.

 

I killed a few unimportant processes and went on playing an online browser game for some time, where i noted that it was still rather slow. I decided to download malwarebytes, and run a scan.

 

I found 118 infected folders, all the same adware virus (ThunderNetwork). I decided to place them into quarantine (If you want me to, I will release the log).

 

Went along with my daily business, and... it got slow again. Very. I checked task manager, and noticed every time i view it, my cpu drops to 2-7% and same with disk. Every now and then it spikes tremendously then disappears swiftly.

 

I view processes. What I view always cuts amazingly low from high percentages. Chrome also randomly stops responding at certain times, and any other browser works even slower.

 

I find the low CPU hard to believe, since when I open 7 tabs it usually rises to 40%+, while currently it's (30% jumped to ~15%)

 

Am I infected, and what can I do?

 

Thanks! :)

 

EDIT: Memory displays normally (72% at the moment)


Edited by Malwarebits, 08 July 2017 - 01:13 PM.


BC AdBot (Login to Remove)

 


#2 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:15 AM

Posted 08 July 2017 - 04:33 PM

Do the following malware checks and post the logs...

Download and run AdwCleaner -

https://www.bleepingcomputer.com/download/adwcleaner/

Download and run Malwarebytes Anti-Malware -

https://www.malwarebytes.org/antimalware/

Download and run the portable version of Zemana Anti-Malware

https://www.zemana.com/en-US/Download

Download and run Junkware Removal Tool -

https://www.bleepingcomputer.com/download/junkware-removal-tool/

Create a System Restore point first.
 



#3 Malwarebits

Malwarebits
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:10:15 AM

Posted 09 July 2017 - 09:04 AM

Oh? MalwareBytes Scan is skyrocketing the disk to 100%, but the CPU keeps dropping when viewed.

 

MalwareBytes Log:

 

Current: 

Malwarebytes
www.malwarebytes.com
 
-Log Details-
Scan Date: 7/9/17
Scan Time: 1:40 PM
Log File: 
Administrator: Yes
 
-Software Information-
Version: 3.1.2.1733
Components Version: 1.0.160
Update Package Version: 1.0.2325
License: Trial
 
-System Information-
OS: Windows 10 (Build 15063.296)
CPU: x64
File System: NTFS
User: LULU\lu
 
-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 454167
Threats Detected: 0
(No malicious items detected)
Threats Quarantined: 0
(No malicious items detected)
Time Elapsed: 15 min, 40 sec
 
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
-Scan Details-
Process: 0
(No malicious items detected)
 
Module: 0
(No malicious items detected)
 
Registry Key: 0
(No malicious items detected)
 
Registry Value: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Data Stream: 0
(No malicious items detected)
 
Folder: 0
(No malicious items detected)
 
File: 0
(No malicious items detected)
 
Physical Sector: 0
(No malicious items detected)
 
 
(end)
 
Previous (Thunder Network one):
 
Malwarebytes
www.malwarebytes.com
 
-Log Details-
Scan Date: 7/8/17
Scan Time: 5:37 PM
Log File: 
Administrator: Yes
 
-Software Information-
Version: 3.1.2.1733
Components Version: 1.0.160
Update Package Version: 1.0.2320
License: Trial
 
-System Information-
OS: Windows 10 (Build 15063.296)
CPU: x64
File System: NTFS
User: LULU\lu
 
-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 453915
Threats Detected: 118
Threats Quarantined: 118
Time Elapsed: 13 min, 16 sec
 
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
-Scan Details-
Process: 0
(No malicious items detected)
 
Module: 0
(No malicious items detected)
 
Registry Key: 0
(No malicious items detected)
 
Registry Value: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Data Stream: 0
(No malicious items detected)
 
Folder: 14
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\ActionTemplate, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\DownloadLib, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\XLLiveUD, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\PROGRAMDATA\THUNDER NETWORK, Quarantined, [1178], [374745],1.0.2320
 
File: 104
Adware.ChinAd, C:\PROGRAMDATA\THUNDER NETWORK\DOWNLOADLIB\PUB_STORE.DAT, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\ActionTemplate\内置电影边框.NeoActionTmp, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\ActionTemplate\摄影作品发布.NeoActionTmp, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\ActionTemplate\日系小清新.NeoActionTmp, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\ActionTemplate\暗角边框.NeoActionTmp, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\ActionTemplate\温暖时光.NeoActionTmp, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\ActionTemplate\素雅蓝紫色.NeoActionTmp, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\ActionTemplate\记忆的色彩.NeoActionTmp, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\dslr边框.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\dslr边框.neoFrame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\中白边框.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\中白边框.neoFrame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\中黑框边.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\中黑框边.neoFrame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\双白线框.neoFrameEx, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\双红线框.neoFrameEx, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\小熊边框.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\小熊边框.neoFrame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\小黑框边.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\小黑框边.neoFrame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\暗底勾边.neoFrameEx, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\相片白边.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\相片白边.neoFrameEx, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\胶片边框.neoFrameEx, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\花纹边框.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\EasyFrame\内置素材\花纹边框.neoFrame, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\cameraunion.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\WhiteMargin.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\a-pins.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\a-pins.nlf, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\a-simple shadow.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\a-simple shadow.nlf, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\BlackEdge.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\BlackEdge.nlf, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\BlackEdge2.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\BlackEdge2.nlf, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\Book2.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\Book2.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\cameraunion.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\canon1.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\canon1.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\canon_eos.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\canon_eos.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\corner.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\corner.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\draw_line.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\draw_line.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\draw_line4.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\draw_line4.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\draw_line5.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\draw_line5.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\nikon.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\nikon.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\paper0.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\paper0.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\paper1.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\paper1.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\paper_layers.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\paper_layers.nlf2, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\scanningbeam.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\scanningbeam.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\WhiteMargin.nlf, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\WhiteMargin4.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\WhiteMargin4.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\white_cross.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\white_cross.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\white_cross2.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\white_cross2.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\White_Shadow.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\White_Shadow.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\插角相册效果.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\插角相册效果.NLF, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\电影胶卷.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\电影胶卷.nlf, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\邮票边框.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\邮票边框.nlf, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\邮票边框2.JPG, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Frame\内置素材\邮票边框2.nlf, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Basic.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Blur.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Blur2.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Brush.JPG, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Camera.JPG, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\feng.JPG, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Flame.JPG, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Lines.JPG, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Spray.JPG, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\Mask\内置素材\Watercolor.JPG, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\九格-1.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\九格-1.nlf3, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\九格-2.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\九格-2.nlf3, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\五格.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\五格.nlf3, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\四格-1.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\四格-1.nlf3, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\四格-2.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\四格-2.nlf3, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\四格-3.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\四格-3.nlf3, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\四格-4.jpg, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\NeoImaging\FrameMaterial\MultiFrame\内置素材\四格-4.nlf3, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\XLLiveUD\DownloadRecord.xml, Quarantined, [1178], [374745],1.0.2320
Adware.ChinAd, C:\ProgramData\Thunder Network\XLLiveUD\Thunder8_7.9.9.4578_ED132BFAD0577174CC044A3E8C0742F5_StartupInfo.xml, Quarantined, [1178], [374745],1.0.2320
 
Physical Sector: 0
(No malicious items detected)
 
 
(end)
 
AdwCleaner report:
 
# AdwCleaner v6.047 - Logfile created 09/07/2017 at 14:53:16
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-07-07.1 [Server]
# Operating System : Windows 10 Home  (X64)
# Username : lu - LULU
# Running from : C:\Users\lu\Downloads\AdwCleaner.exe
# Mode: Clean
 
 
 
***** [ Services ] *****
 
[!] Service not deleted: CouponPrinterService
[-] Service deleted: secbizsrv
[-] Service deleted: tbsecsvc
[!] Service not deleted: couponprinterservice
[-] Service deleted: pcas
 
 
***** [ Folders ] *****
 
[!] Folder not deleted: C:\WINDOWS\Installer\{CA1D163C-C52C-4F77-8134-41A146D9BB02}
[-] Folder deleted: C:\Users\lu\AppData\Local\Tencent
[-] Folder deleted: C:\Users\lu\AppData\LocalLow\Tencent
[!] Folder not deleted: C:\Users\lu\AppData\LocalLow\BaiduAddr
[-] Folder deleted: C:\Users\lu\AppData\Roaming\Tencent
[-] Folder deleted: C:\Users\lu\AppData\Local\VirtualStore\Program Files (x86)\Tencent
[-] Folder deleted: C:\ProgramData\Tencent
[!] Folder not deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
[-] Folder deleted: C:\Users\Public\Documents\Tencent
[#] Folder deleted on reboot: C:\Program Files (x86)\Tencent
[-] Folder deleted: C:\Program Files (x86)\Common Files\Tencent
 
 
***** [ Files ] *****
 
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_www.azlyrics.com_0.localstorage
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\hxxp_v.qq.com_0.localstorage
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxps_static.cmptch.com_0.localstorage
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxps_static.cmptch.com_0.localstorage-journal
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxps_www.spigotmc.org_0.localstorage
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxps_www.spigotmc.org_0.localstorage-journal
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_funpopulargames.dl.tb.ask.com_0.localstorage
[#] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_www.azlyrics.com_0.localstorage
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_www.solvusoft.com_0.localstorage
[-] File deleted: C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\hxxp_www.solvusoft.com_0.localstorage-journal
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Shortcuts ] *****
 
 
 
***** [ Scheduled Tasks ] *****
 
 
 
***** [ Registry ] *****
 
[!] Key not deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[!] Key not deleted: HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[!] Key not deleted: HKU\S-1-5-21-1737141412-3917516813-2268175499-1001\Software\Thunder Network
[!] Key not deleted: HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
[!] Key not deleted: HKLM\SOFTWARE\MozillaPlugins\@qq.com/npqscall
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CA1D163C-C52C-4F77-8134-41A146D9BB02}
[#] Key deleted on reboot: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CA1D163C-C52C-4F77-8134-41A146D9BB02}_is1
[-] Key deleted: HKU\S-1-5-21-1737141412-3917516813-2268175499-1001\Software\Classes\Tencent
[#] Key deleted on reboot: HKCU\Software\Classes\Tencent
[-] Key deleted: HKLM\SOFTWARE\Classes\metnsd
[-] Key deleted: HKLM\SOFTWARE\Classes\Tencent
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Tencent
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\metnsd
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\Tencent
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-86DB50A2FD64}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{B9E49847-9822-4139-BC55-7173ED1ADA11}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{6B3732AA-F6D4-4F16-9E22-49EDC52C9514}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{B9E49847-9822-4139-BC55-7173ED1ADA11}
[-] Key deleted: HKCU\Software\Thunder Network
[#] Key deleted on reboot: [x64] HKCU\Software\Thunder Network
[-] Key deleted: HKLM\SOFTWARE\MozillaPlugins\@qq.com/TXSSO
[-] Key deleted: HKLM\SOFTWARE\MozillaPlugins\@qq.com/QQPhotoDrawEx
[-] Key deleted: HKLM\SOFTWARE\MozillaPlugins\@qq.com/QzoneMusic
 
 
***** [ Web browsers ] *****
 
[-] Firefox preferences cleaned: "extensions.cpmanager@mozillaonline.com.qvod_hao123_ts" -  17244
[-] [C:\Users\lu\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: uk.ask.com
[-] [C:\Users\lu\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: terraria.en.softonic.com
[-] [C:\Users\lu\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: bopakagnckmlgajfccecajhnimjiiedh
[-] [C:\Users\lu\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: uk.ask.com
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [5607 Bytes] - [09/07/2017 14:53:16]
C:\AdwCleaner\AdwCleaner[S0].txt - [5712 Bytes] - [09/07/2017 14:46:15]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5753 Bytes] ##########
 
EDIT: Worked! Computer now fast! Thanks so much, jwoods301! :]





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users