flashh4 Posted August 22, 2015 Report Share Posted August 22, 2015 John, you can delete those files ! Yes .... do you have the OTL fix log ?? Lets just forget the mbam log !! Chuck Link to post Share on other sites
N7xlq1 Posted August 22, 2015 Author Report Share Posted August 22, 2015 (edited) John, you can delete those files ! Yes .... do you have the OTL fix log ?? Lets just forget the mbam log !! ChuckNo, I'll have to back and read what you want me to do, with that. If I don't post it tonight, I'll do it in the morning. When I ran MB before it crashed it came up clean.. Edited August 22, 2015 by N7xlq1 Link to post Share on other sites
flashh4 Posted August 22, 2015 Report Share Posted August 22, 2015 John, glad it (mbam) came back clean ! Finally !!!!! Ok here is the OTL FIX i need you to run ! We need to Run an OTL fix !!Warning This fix is only relevant for this system and no other, using on another computer may cause problems.Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot * Double-click OTL.exe to start the program. This is the OTL program i had you download, should be on desk top ! Open it ! * Copy and Paste the following code into the . text box of the OTL tool/program ! Start with and include the colon plus :OTL:OTLIE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRCIE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRCIE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRCIE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-21-3492453536-2379498159-1907998561-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-21-3492453536-2379498159-1907998561-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRCFF - user.js - File not foundFF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not foundFF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found[2013/06/28 21:09:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\John\AppData\Roaming\Mozilla\Extensions[2015/04/04 12:09:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\John\AppData\Roaming\Mozilla\Firefox\Profiles\d351k029.default-1424026281612\extensions[2015/07/05 11:26:57 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensionsCHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah\1.4.20_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\nccchfllceggkmiafgofdpipdpoffmop\1.0_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\O4 - HKLM..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" File not foundO4 - HKU\S-1-5-21-3492453536-2379498159-1907998561-1004..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe File not foundO4 - HKU\S-1-5-21-3492453536-2379498159-1907998561-1004..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe File not foundO4 - Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk = File not foundO13 - gopher Prefix: missingO21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.:Commands[emptyjava][emptyflash][EMPTYTEMP][RESETHOSTS][CREATERESTOREPOINT][Reboot] # Then click the Run Fix button at the top.# Click # Please post the contents of the fix log file back here if you are prompted to open the file. It can also be found at C:\_OTL\Moved Files as MMDDYYY_HHMMSS.log where MMDDYYY is date format and HHMMSS is time format.Remember to enable your real time protection.Post that OTL fix log when done !! ThanksChuck Link to post Share on other sites
flashh4 Posted August 22, 2015 Report Share Posted August 22, 2015 John, glad it (mbam) came back clean ! Finally !!!!! Ok here is the OTL FIX i need you to run ! We need to Run an OTL fix !!Warning This fix is only relevant for this system and no other, using on another computer may cause problems.Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot * Double-click OTL.exe to start the program. This is the OTL program i had you download, should be on desk top ! Open it ! * Copy and Paste the following code into the . text box of the OTL tool/program ! Start with and include the colon plus :OTL:OTLIE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRCIE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRCIE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRCIE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-21-3492453536-2379498159-1907998561-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}IE - HKU\S-1-5-21-3492453536-2379498159-1907998561-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRCFF - user.js - File not foundFF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not foundFF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found[2013/06/28 21:09:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\John\AppData\Roaming\Mozilla\Extensions[2015/04/04 12:09:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\John\AppData\Roaming\Mozilla\Firefox\Profiles\d351k029.default-1424026281612\extensions[2015/07/05 11:26:57 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensionsCHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah\1.4.20_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\nccchfllceggkmiafgofdpipdpoffmop\1.0_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\CHR - Extension: No name found = C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\O4 - HKLM..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" File not foundO4 - HKU\S-1-5-21-3492453536-2379498159-1907998561-1004..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe File not foundO4 - HKU\S-1-5-21-3492453536-2379498159-1907998561-1004..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe File not foundO4 - Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk = File not foundO13 - gopher Prefix: missingO21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.:Commands[emptyjava][emptyflash][EMPTYTEMP][RESETHOSTS][CREATERESTOREPOINT][Reboot] # Then click the Run Fix button at the top.# Click # Please post the contents of the fix log file back here if you are prompted to open the file. It can also be found at C:\_OTL\Moved Files as MMDDYYY_HHMMSS.log where MMDDYYY is date format and HHMMSS is time format.Remember to enable your real time protection.Post that OTL fix log when done !! ThanksChuck Link to post Share on other sites
N7xlq1 Posted August 22, 2015 Author Report Share Posted August 22, 2015 Chuck, Okay, a few things I mentioned: 1) I had to re-dowload to OTL again to get to run, had problem getting the one I had to work,2) When I ran the program again, I didn't setup like the first time I ran it, I just did the fix. I hope its okay if not let me know. Here's the log: All processes killed========== OTL ==========HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!Registry key HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!Registry key HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!HKEY_USERS\S-1-5-21-3492453536-2379498159-1907998561-1004\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!Registry key HKEY_USERS\S-1-5-21-3492453536-2379498159-1907998561-1004\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ not found.Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ not found.Folder C:\Users\John\AppData\Roaming\Mozilla\Extensions\ not found.Folder C:\Users\John\AppData\Roaming\Mozilla\Firefox\Profiles\d351k029.default-1424026281612\extensions\ not found.Folder C:\Program Files\Mozilla Firefox\browser\extensions\ not found.File C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0 not found.File C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0 not found.File C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah\1.4.20_0 not found.File C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_0 not found.File C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\nccchfllceggkmiafgofdpipdpoffmop\1.0_0 not found.File C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0 not found.File C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0 not found.Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Nvtmru not found.Registry value HKEY_USERS\S-1-5-21-3492453536-2379498159-1907998561-1004\Software\Microsoft\Windows\CurrentVersion\Run\\com.apple.dav.bookmarks.daemon not found.Registry value HKEY_USERS\S-1-5-21-3492453536-2379498159-1907998561-1004\Software\Microsoft\Windows\CurrentVersion\Run\\MobileDocuments not found.File move failed. C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk scheduled to be moved on reboot.HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.========== COMMANDS ========== [EMPTYJAVA] User: Administrator User: Alex->Java cache emptied: 0 bytes User: All Users User: Default User: Default User User: John->Java cache emptied: 0 bytes User: phyllis User: Public Total Java Files Cleaned = 0.00 mb [EMPTYFLASH] User: Administrator User: Alex->Flash cache emptied: 0 bytes User: All Users User: Default User: Default User User: John->Flash cache emptied: 0 bytes User: phyllis User: Public Total Flash Files Cleaned = 0.00 mb [EMPTYTEMP] User: Administrator User: Alex->Temp folder emptied: 396580 bytes->Temporary Internet Files folder emptied: 4478 bytes->Java cache emptied: 0 bytes->Google Chrome cache emptied: 0 bytes->Flash cache emptied: 0 bytes User: All Users User: Default->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 0 bytes User: Default User->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 0 bytes User: John->Temp folder emptied: 17821620 bytes->Temporary Internet Files folder emptied: 1924873086 bytes->Java cache emptied: 0 bytes->FireFox cache emptied: 422215352 bytes->Google Chrome cache emptied: 136091875 bytes->Apple Safari cache emptied: 160020480 bytes->Flash cache emptied: 0 bytes User: phyllis User: Public %systemdrive% .tmp files removed: 0 bytes%systemroot% .tmp files removed: 0 bytes%systemroot%\System32 .tmp files removed: 0 bytes%systemroot%\System32\drivers .tmp files removed: 0 bytesWindows Temp folder emptied: 3829410869 bytes%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytesRecycleBin emptied: 0 bytes Total Files Cleaned = 6,190.00 mb C:\Windows\System32\drivers\etc\Hosts moved successfully.HOSTS file reset successfullyRestore point Set: OTL Restore Point OTL by OldTimer - Version 3.2.69.0 log created on 08222015_110324 Files\Folders moved on Reboot...File\Folder C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk not found!C:\Users\John\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\c4c1ea5d31795b8922f50a599a26c6d5_fce8395f8fd8a82b_6229ccd76215aea1_0_0.bin moved successfully.C:\Users\John\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\c4c1ea5d31795b8922f50a599a26c6d5_fce8395f8fd8a82b_6229ccd76215aea1_0_0.toc moved successfully.File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.File move failed. C:\Windows\temp\Low\SkypeClickToCall\Logs\AutoUpdateSvc.log scheduled to be moved on reboot. PendingFileRenameOperations files... Registry entries deleted on Reboot... Link to post Share on other sites
flashh4 Posted August 22, 2015 Report Share Posted August 22, 2015 Good job John, that's what i wanted !! Clean up of Malware Removal ToolsNow that we are through using these tools, let's clean them off your system so that should you ever need to have malware removed again (we hope not) fresh, updated copies will be downloaded. Download Delfix to your desktop and double click it to start the program here Ensure Remove disinfection tools is ticked Also tick: o Create registry backup o Purge system restore o Reset system settings o Click Run The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply.You can delete any log files left on your desktop as these are no longer needed. ========================= Congratulation you are clean !!!Any of the logs that you created for use in the forums or remaining tools that have not yet been removed can be deleted so they aren't cluttering up your desktop.This is my standard "All Clean Speech." You may have some already installed, these are just recommendations !Here are some tips to reduce the potential for spyware infection in the future: Here are some tips to reduce the potential for spyware/malware infection in the future: 1. Make your Internet Explorer more secure - This can be done by following these simple instructions: From within Internet Explorer click on the Tools menu and then click onOptions. Click once on theSecurity tab Click once on the Internet icon so it becomes highlighted. Click once on the Custom Level button. Change the Download signed ActiveX controls to Prompt Change the Download unsigned ActiveX controls to Disable Change the Initialize and script ActiveX controls not marked as safe to Disable Change the Installation of desktop items to Prompt Change the Launching programs and files in an IFRAME to Prompt Change the Navigate sub-frames across different domains to Prompt When all these settings have been made, click on the OK button. If it prompts you as to whether or not you want to save the settings, press the Yes button. Next press the Apply button and then the OK to exit the Internet Properties page.2. FireFox If you use Firefox, I recommend installing the following add-ons to help make your Firefox browser more secure. NoScript adblock plus 3. Use and update an anti-virus software - I can not overemphasize the need for you to use and update your anti-virus application on a regular basis. With the ever increasing number of new variants of malware arriving on the scene daily, you become very susceptible to an attack without updated protection. 4. Firewall Using a third-party firewall will allow you to give/deny access for applications that want to go online. Without a firewall your computer is susceptible to being hacked and taken over. Simply using a firewall in its default configuration can lower your risk greatly. **There are firewalls that could be downloaded and used but I would personally only recommend using one of the following below:Online Armor FreeAgnitum Outpost Firewall FreeComodo Firewall Free 5. Make sure you keep your Windows OS current. And regularly to download and install any critical updates and service packs. Windows Vista/7 users can open the Start menu > All Programs > Windows Update > Check for Updates (in left hand task pane) to update these systems. Without these you are leaving the back door open. 6.WOT(Web of Trust) As "Googling" is such an integral part of internet life, this free browser add on warns you about risky websites that try to scam visitors, deliver malware or send spam. It is especially helpful when browsing or searching in unfamiliar territory. WOT's color-coded icons show you ratings for 21 million websites, helping you avoid the dangerous sites. WOT has an add-on available for Firefox, Internet Explorer as well as Google Chrome. 7. Finally, I strongly recommend that you read Miekiemoes' great advice How to prevent malware . Let me know how it's running ?Any problems ?It may run a tad slow until a few normal re-boots, but according to all logs you are clean !!ThanksChuck Link to post Share on other sites
N7xlq1 Posted August 23, 2015 Author Report Share Posted August 23, 2015 Here ya go Chuck. # DelFix v1.011 - Logfile created 23/08/2015 at 10:43:48# Updated 18/08/2015 by Xplode# Username : John - ALEX-PC# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits) ~ Removing disinfection tools ... Deleted : C:\_OTLDeleted : C:\FRSTDeleted : C:\AdwCleanerDeleted : C:\Users\John\Desktop\Addition.txtDeleted : C:\Users\John\Desktop\AdwCleaner[s1].txtDeleted : C:\Users\John\Desktop\adwcleaner_4.208.exeDeleted : C:\Users\John\Desktop\dds.scrDeleted : C:\Users\John\Desktop\dds.txtDeleted : C:\Users\John\Desktop\Extras.TxtDeleted : C:\Users\John\Desktop\FRST.exeDeleted : C:\Users\John\Desktop\FRST.txtDeleted : C:\Users\John\Desktop\JRT.exeDeleted : C:\Users\John\Desktop\JRT.txtDeleted : C:\Users\John\Desktop\OTL.TxtDeleted : C:\Users\John\Desktop\SecurityCheck.exeDeleted : C:\Users\John\Downloads\JRT (1).exeDeleted : HKLM\SOFTWARE\OldTimer ToolsDeleted : HKLM\SOFTWARE\AdwCleaner ~ Creating registry backup ... OK ~ Cleaning system restore ... Deleted : RP #765 [OTL Restore Point - 8/22/2015 11:23:41 AM | 08/22/2015 18:23:42] New restore point created ! ~ Resetting system settings ... OK ########## - EOF - ########## It didn't remove OTL.SCR on the desktop. So I deleted it. Now a couple of questions for you. 1) Are you sure I am clean, even after not doing the MB log that I forgot? And If I amhow can you tell? 2) How did I get effected? Link to post Share on other sites
flashh4 Posted August 23, 2015 Report Share Posted August 23, 2015 1) Are you sure I am clean, even after not doing the MB log that I forgot? And If I amhow can you tell? Yes because the logs are clean & we removed everything they found !! 2) How did I get effected? By downloading/visiting some Questionable Sites is usually how one gets infected ! Happy Surfing John & good luck with the computer !! Seeing how the problems are resolved i will lock this topic in 5 days !!! Chuck Link to post Share on other sites
N7xlq1 Posted August 23, 2015 Author Report Share Posted August 23, 2015 I do have a minor problem has to do with Chrome which I use. There is a FB game I play and everytime I play it, I get this dropped down box, Saying Flash has crashed, then it disapears, then a it reappears again after a while. For thelife of me, I can't figure out how to fix it. You and I can talk about over FB. Ok. Link to post Share on other sites
flashh4 Posted August 23, 2015 Report Share Posted August 23, 2015 John, chrome i stay away from ! I never use it so can't help you there ! The other problems i can't help with either since i do not play games on FB !! You are own your own with those problems that i know nothing about ! Good Luck & catch ya around sometime !! Stay Safe out there !! Chuck Link to post Share on other sites
N7xlq1 Posted August 24, 2015 Author Report Share Posted August 24, 2015 Chuck, Don't tell me you use IE. Chrome is safer than IE, and much faster. IMHO. Yeah the system is running really fast, it's seems faster than before I got this machine. When it was handed downto me I thought it was fast, but now wow. ? Avast has this area where it checks for outdated software on your system, should I follow that or not? You can close this thread, after you respond. I'll TTY on FB about it more. Link to post Share on other sites
flashh4 Posted August 24, 2015 Report Share Posted August 24, 2015 Glad to hear it is fast ! No i don't use IE ..... i have always used Firefox (Mozzila) along with the new W10's Edge <<< took the place of IE in Windows 10. ...... It i like very much because of the other options it come with !! Yes you can follow Avast but watch out for it wanting you to upgrade to the paid version, i just close it when that happens. Also watch for it wanting to add other things with Boxes being checked, just uncheck them then it's ok !! Chuck Link to post Share on other sites
flashh4 Posted August 29, 2015 Report Share Posted August 29, 2015 Seeing how the issues with this computer have been resolved this topic is now locked ! If you need it opened for any reason please contact me or any Mod !!! ThanksChuck Link to post Share on other sites
Recommended Posts