Jump to content

jtsshieh

Members
  • Posts

    53
  • Joined

  • Last visited

Reputation

0 Neutral

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. I've followed the steps but my computer is still running a bit slow. I don't know if it is directly related to malware, but if you could help me to scan my computer with different antiviruses, that would be great! I attached the fixlog. Fixlog.txt
  2. Hey all, my computer has been running a bit sluggish. I'm not sure if I have malware. I scanned with Malwarebytes and it found no threats. But, I know that Malwarebytes can't find everything. Any other suggestions for scanning deeper for malware? Attached is the Malwarebytes Scan Report and the FRST scan. Malwarebytes Scan Report.txt Addition.txt FRST.txt
  3. Just wondering, is there a way to remove all these tools in one program? Aura showed me one at the end except I forgot what it was an it self-destructed itself at the end.
  4. Also btw, I never knew it was in chrome. Chrome never had it redirecting after the fix by aura.
  5. Alright, it has finally finished! The report is attached to this message. 2018.03.04-18.35.33-i0-t92-d2.txt
  6. ADW Cleaner log: # AdwCleaner 7.0.8.0 - Logfile created on Sun Mar 04 23:26:50 2018 # Updated on 2018/08/02 by Malwarebytes # Running on Windows 10 Pro (X64) # Mode: clean # Support: https://www.malwarebytes.com/support ***** [ Services ] ***** No malicious services deleted. ***** [ Folders ] ***** Deleted: C:\Users\jtssh\AppData\Local\AdvinstAnalytics ***** [ Files ] ***** Deleted: C:\Users\jtssh\AppData\Roaming\Mozilla\Firefox\Profiles\c8s22hnd.default-1505852536080\searchplugins\Search Provided by Bing.xml ***** [ DLL ] ***** No malicious DLLs cleaned. ***** [ WMI ] ***** No malicious WMI cleaned. ***** [ Shortcuts ] ***** No malicious shortcuts cleaned. ***** [ Tasks ] ***** No malicious tasks deleted. ***** [ Registry ] ***** Deleted: [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\safesear.ch Deleted: [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.safesear.ch Deleted: [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\safesear.ch Deleted: [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.safesear.ch ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries deleted. ***** [ Chromium (and derivatives) ] ***** Plugin deleted: User-Agent Switcher for Chrome - SearchProvider deleted: Norton Safe Search - nortonsafe.search.ask.com SearchProvider deleted: adfly.com - adfly.com ************************* ::Tracing keys deleted ::Winsock settings cleared ::Additional Actions: 0 ************************* C:/AdwCleaner/AdwCleaner[S0].txt - [2320 B] - [2018/3/4 23:25:38] ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ########## That's the Adw Log, The other one is still scanning after 15 minutes.
  7. I get an error saying "Cannot import C:\Users\jtssh\Desktop\fixme.reg: Error accessing the registry." after right clicking and clicking merge in the file you gave me.
  8. Farbar Recovery Scan Tool (x64) Version: 04.03.2018 Ran by jtssh (04-03-2018 14:09:40) Running from C:\Users\jtssh\Downloads\Setup's Boot Mode: Normal ================== Search Registry: "carryformation." =========== [HKEY_USERS\S-1-5-21-1080822061-2706406846-2729724613-1001\Software\Microsoft\Windows\CurrentVersion\ApplicationAssociationToasts] "Applications\chrome.exe_.com/topic/224281-edge-browser-always-opening-on-carryformationcombasic/?do=findComment&comment=1221274"="0" [HKEY_USERS\S-1-5-21-1080822061-2706406846-2729724613-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.com/topic/224281-edge-browser-always-opening-on-carryformationcombasic/?do=findComment&comment=1221274] [HKEY_USERS\S-1-5-21-1080822061-2706406846-2729724613-1001\Software\Policies\Microsoft\MicrosoftEdge\Main\SecondaryStartPages] "Firstpage"="http://www.carryformation.com/basic/" [HKEY_USERS\S-1-5-21-1080822061-2706406846-2729724613-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03042018134020462\Software\Microsoft\Windows\CurrentVersion\ApplicationAssociationToasts] "Applications\chrome.exe_.com/topic/224281-edge-browser-always-opening-on-carryformationcombasic/?do=findComment&comment=1221274"="0" [HKEY_USERS\S-1-5-21-1080822061-2706406846-2729724613-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03042018134020462\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.com/topic/224281-edge-browser-always-opening-on-carryformationcombasic/?do=findComment&comment=1221274] [HKEY_USERS\S-1-5-21-1080822061-2706406846-2729724613-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03042018134020462\Software\Policies\Microsoft\MicrosoftEdge\Main\SecondaryStartPages] "Firstpage"="http://www.carryformation.com/basic/" ====== End of Search ======
  9. It doesn't seem to be working. I'm starting to think it might be something in the registry or hidden in the file system.
  10. Alright, I'll try that and get back to you if it works or if it doesn't.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.