Go Back   Cyber Tech Help Support Forums > Software > Malware Removal

Notices

Reply
 
Topic Tools
  #46  
Old March 27th, 2017, 09:26 PM
wjd73_59 wjd73_59 is offline
Senior Member
 
Join Date: Apr 2004
O/S: Windows 10 Pro
Location: saudi arabia
Posts: 222
hi
I don't really know what is going on with my PC!! is it a malware or something else?
but I still have the same problem with pop-up windows whenever I attempt to open any web page, especially when using google chrome!!
I wonder what would be the next step?
thanks
Reply With Quote


  #47  
Old March 27th, 2017, 11:57 PM
Jintan's Avatar
Jintan Jintan is offline
Malware Removal Team Advisor
 
Join Date: Dec 2004
Posts: 51,626
Now we're talking.


Download ADWCleaner and run it, then click Scan.

When the scan completes, click Logfile, and copy/paste that back here please. Best not to click Clean - ADWCleaner makes mistakes.
Reply With Quote
  #48  
Old March 28th, 2017, 12:24 AM
wjd73_59 wjd73_59 is offline
Senior Member
 
Join Date: Apr 2004
O/S: Windows 10 Pro
Location: saudi arabia
Posts: 222
# AdwCleaner v6.044 - Logfile created 27/03/2017 at 19:11:45
# Updated on 28/02/2017 by Malwarebytes
# Database : 2017-03-27.1 [Server]
# Operating System : Windows 10 Pro (X64)
# Username : Main - MAIN-PC
# Running from : C:\Users\Main\Downloads\adwcleaner_6.044.exe
# Mode: Scan
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

No malicious services found.


***** [ Folders ] *****

Folder Found: C:\Users\Main\AppData\Local\DriverToolkit
Folder Found: C:\Program Files (x86)\DriverToolkit
Folder Found: C:\quardata


***** [ Files ] *****

File Found: C:\Users\Public\Desktop\Free Youtube Downloader.lnk


***** [ DLL ] *****

No malicious DLLs found.


***** [ WMI ] *****

No malicious keys found.


***** [ Shortcuts ] *****

No infected shortcut found.


***** [ Scheduled Tasks ] *****

No malicious task found.


***** [ Registry ] *****

Key Found: HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Found: HKU\S-1-5-21-134294994-1029247136-1126762870-1000\Software\Conduit
Key Found: HKU\S-1-5-21-134294994-1029247136-1126762870-1000\Software\DriverToolkit
Key Found: HKCU\Software\Conduit
Key Found: HKCU\Software\DriverToolkit
Key Found: [x64] HKCU\Software\Conduit
Key Found: [x64] HKCU\Software\DriverToolkit


***** [ Web browsers ] *****

No malicious Firefox based browser items found.
No malicious Chromium based browser items found.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1501 Bytes] - [27/03/2017 19:11:45]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1574 Bytes] ##########
Reply With Quote
  #49  
Old March 28th, 2017, 11:57 PM
Jintan's Avatar
Jintan Jintan is offline
Malware Removal Team Advisor
 
Join Date: Dec 2004
Posts: 51,626
Not really seeing, but might be a popup source in that, but maybe.

First, reset your browser. Internet Eplorer, Firefox, and/or Chrome.

---------------------

Be sure to continue to temporarily disable any protective software when running the scan tools we use here.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


Open AdwCleaner, and click File, then Uninstall to have it remove itself.

Then before we might check more, post back an update please.
Reply With Quote
  #50  
Old March 29th, 2017, 12:43 AM
wjd73_59 wjd73_59 is offline
Senior Member
 
Join Date: Apr 2004
O/S: Windows 10 Pro
Location: saudi arabia
Posts: 222
# AdwCleaner v6.045 - Logfile created 28/03/2017 at 19:36:00
# Updated on 28/03/2017 by Malwarebytes
# Database : 2017-03-28.2 [Server]
# Operating System : Windows 10 Pro (X64)
# Username : Main - MAIN-PC
# Running from : C:\Users\Main\Downloads\adwcleaner_6.045.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****

[-] Folder deleted: C:\Users\Main\AppData\Local\DriverToolkit
[-] Folder deleted: C:\Program Files (x86)\DriverToolkit
[-] Folder deleted: C:\quardata


***** [ Files ] *****

[-] File deleted: C:\Users\Public\Desktop\Free Youtube Downloader.lnk


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
[-] Key deleted: HKU\S-1-5-21-134294994-1029247136-1126762870-1000\Software\Conduit
[-] Key deleted: HKU\S-1-5-21-134294994-1029247136-1126762870-1000\Software\DriverToolkit
[#] Key deleted on reboot: HKCU\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\DriverToolkit
[#] Key deleted on reboot: [x64] HKCU\Software\Conduit
[#] Key deleted on reboot: [x64] HKCU\Software\DriverToolkit


***** [ Web browsers ] *****

[-] [C:\Users\Main\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: super-torrent-search.en.softonic.com
[-] [C:\Users\Main\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: mun.ca
[-] [C:\Users\Main\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: vlc-media-player.en.softonic.com
[-] [C:\Users\Main\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: home.sweetim.com
[-] [C:\Users\Main\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\Main\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: ask.com
[-] [C:\Users\Main\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: search here
[-] [C:\Users\Main\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: torrentz.colorask.com


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2418 Bytes] - [28/03/2017 19:36:00]
C:\AdwCleaner\AdwCleaner[S0].txt - [1661 Bytes] - [27/03/2017 19:11:45]
C:\AdwCleaner\AdwCleaner[S1].txt - [2580 Bytes] - [28/03/2017 19:29:15]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2637 Bytes] ##########
Reply With Quote
  #51  
Old March 29th, 2017, 12:43 AM
wjd73_59 wjd73_59 is offline
Senior Member
 
Join Date: Apr 2004
O/S: Windows 10 Pro
Location: saudi arabia
Posts: 222
I still have the same problem especially when using google chrome!!
a lot of pop up windows
thanks
Reply With Quote
  #52  
Old March 30th, 2017, 12:22 AM
Jintan's Avatar
Jintan Jintan is offline
Malware Removal Team Advisor
 
Join Date: Dec 2004
Posts: 51,626
On one web page, or all of them? And you did reset Chrome, yes?
Reply With Quote
  #53  
Old March 30th, 2017, 12:43 AM
wjd73_59 wjd73_59 is offline
Senior Member
 
Join Date: Apr 2004
O/S: Windows 10 Pro
Location: saudi arabia
Posts: 222
all web pages especially from chrome

sorry
but how can i reset chrome?
Reply With Quote
  #54  
Old March 31st, 2017, 12:57 AM
Jintan's Avatar
Jintan Jintan is offline
Malware Removal Team Advisor
 
Join Date: Dec 2004
Posts: 51,626
At the top here.
Reply With Quote
  #55  
Old March 31st, 2017, 02:17 AM
wjd73_59 wjd73_59 is offline
Senior Member
 
Join Date: Apr 2004
O/S: Windows 10 Pro
Location: saudi arabia
Posts: 222
thanks
i did the reset
i dont have the popups any more
am i clean now? or do i have to do any additional step?
thanks again
Reply With Quote
  #56  
Old April 1st, 2017, 12:24 AM
Jintan's Avatar
Jintan Jintan is offline
Malware Removal Team Advisor
 
Join Date: Dec 2004
Posts: 51,626
Good news, so we are likely done here. If you have no more things that need fixing, you can just delete all the files we used there to finish up.
Reply With Quote
  #57  
Old April 1st, 2017, 02:48 AM
wjd73_59 wjd73_59 is offline
Senior Member
 
Join Date: Apr 2004
O/S: Windows 10 Pro
Location: saudi arabia
Posts: 222
thanks a lot
Reply With Quote
  #58  
Old April 2nd, 2017, 12:49 AM
Jintan's Avatar
Jintan Jintan is offline
Malware Removal Team Advisor
 
Join Date: Dec 2004
Posts: 51,626


One more item. For ADWCleaner, run it, click File, then Uninstall. It will delete itself and it's files.
Reply With Quote
Reply

Bookmarks

Topic Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT +1. The time now is 12:34 AM.