Jump to content

DJunknown

Members
  • Posts

    13
  • Joined

  • Last visited

Everything posted by DJunknown

  1. all clear, youre a genius.. enjoy your beer sir! what kind will you get? ;]
  2. Zoek.exe v5.0.0.0 Updated 27-08-2014 Tool run by TK on Thu 08/28/2014 at 7:14:09.26. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\TK\Downloads\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-08-28-085601.log 122389 bytes C:\zoek-results2014-08-28-091036.log 114767 bytes ==== System Restore Info ====================== 8/28/2014 7:15:27 AM Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Batch Command(s) Run By Tool====================== ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn" [08/28/2014 07:14 AM] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\Exts\Chrome.crx[09/12/2013 07:19 AM] Google Voice Search Hotword (Beta) - TK\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn Until AM for Chrome - TK\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjafmkicbmhcbapadecadciafbkecofl Norton Security Toolbar - TK\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk ==== Chromium Startpages ====================== C:\Users\TK\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.google.com/", "startup_urls": [ "http://feed.helperbar.com/?p=mKO_AwFzXIpYRbPPq_NcKDZkQXPy4TZR44LspvC9sb99JtP_8ppO11zBlE0vSwHYhQR9-K4kdsO1ACgT-_irZpp2GSgizIc2tQR3CsAhDNrt7b3R3TpKrnOWTBF133wwTWfElx_FYHjZlt-9ROytECALgvWj6Z_szAOTGvEPay7ofaxRTXihamOtc1V9" ], ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.com/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox" {d43b3890-80c7-4010-a95d-1e77b5924dc3} Wikipedia Url="http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}" {D944BB61-2E34-4DBF-A683-47E505C587DC} eBay Url="http://rover.ebay.com/rover/1/711-30572-11896-1/4?mpre=http://www.ebay.com/sch/i.html?_nkw={searchTerms}" ==== Reset Google Chrome ====================== C:\Users\TK\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\TK\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\TK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\TK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\TK\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=8 folders=1 25659 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\TK\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\TK\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on Thu 08/28/2014 at 7:26:18.21 ======================
  3. its in this txt file, couldnt get it all to save in a post. zoek-results.txt
  4. i accidently ran it once without inserting the text, i hope that didnt mess anything up
  5. had to attach, couldnt get them to save zoek-results.txt
  6. Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 8/27/2014 Scan Time: 3:03:14 PM Logfile: historyyy.txt Administrator: Yes Version: 2.00.2.1012 Malware Database: v2014.08.27.05 Rootkit Database: v2014.08.21.01 License: Premium Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: TK Scan Type: Threat Scan Result: Completed Objects Scanned: 296206 Time Elapsed: 8 min, 22 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 0 (No malicious items detected) Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 1 PUP.Optional.HelperBar.A, C:\Users\TK\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://feed.helperbar.com/?p=mKO_AwFzXIpYRbPPq_NcKDZkQXPy4TZR44LspvC9sb99JtP_8ppO11zBlE0vSwHYhQR9-K4kdsO1ACgT-_irZpp2GSgizIc2tQR3CsAhDNrt7b3R3TpKrnOWTBF133wwTWfElx_FYHjZlt-9ROytECALgvWj6Z_szAOTGvEPay7ofaxRTXihamOtc1V9" ],), Replaced,[a8f172570e6d45f15f4433e165a019e7] Physical Sectors: 0 (No malicious items detected) (end)
  7. Folders: 0 (No malicious items detected) Files: 1 PUP.Optional.HelperBar.A, C:\Users\TK\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://feed.helperbar.com/?p=mKO_AwFzXIpYRbPPq_NcKDZkQXPy4TZR44LspvC9sb99JtP_8ppO11zBlE0vSwHYhQR9-K4kdsO1ACgT-_irZpp2GSgizIc2tQR3CsAhDNrt7b3R3TpKrnOWTBF133wwTWfElx_FYHjZlt-9ROytECALgvWj6Z_szAOTGvEPay7ofaxRTXihamOtc1V9" ],), ,[69259d2edc9f3df91ea6f2219b6a0df3] Physical Sectors: 0 (No malicious items detected) (end)
  8. cant rid my comp of this bastard.. i did this but no luck , could do it again, maybe i missed something https://forums.malwarebytes.org/index.php?/topic/152222-cannot-remove-pupoptionalhelperbara/
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.