Ran Farbar Re Im Infected Instructions

[longbeachlouise]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:21-08-2014
Ran by Carol at 2014-08-21 14:35:53 Run:4
Running from C:\Users\Carol\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
2014-07-28 19:18 - 2014-02-14 12:16 - 00000084 _____ () C:\Windows\system32\wcls.aou
2014-07-16 12:38 - 2014-07-16 12:38 - 00033280 _____ () C:\Windows\system32\psbgpti.eaz
2014-07-16 12:38 - 2014-02-13 17:48 - 00000296 _____ () C:\Windows\system32\zwrqa.dpi
HKLM\...\RunOnce: [AvgUninstallURL] => cmd.exe /c start http://www.avg.com/w...gyMDEwKzItRkwxM (the data entry has 290 more characters).
AlternateDataStreams: C:\Windows:AstInfo
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4
AlternateDataStreams: C:\ProgramData\TEMP:430C6D84
AlternateDataStreams: C:\ProgramData\TEMP:A8ADE5D8
AlternateDataStreams: C:\ProgramData\TEMP:AC9C6AC1
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2

 

*****************

C:\Windows\system32\wcls.aou => Moved successfully.
C:\Windows\system32\psbgpti.eaz => Moved successfully.
C:\Windows\system32\zwrqa.dpi => Moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\AvgUninstallURL => value deleted successfully.
"C:\Windows" => ":AstInfo" ADS not found.
C:\ProgramData\TEMP => ":0B4227B4" ADS removed successfully.
C:\ProgramData\TEMP => ":430C6D84" ADS removed successfully.
C:\ProgramData\TEMP => ":A8ADE5D8" ADS removed successfully.
C:\ProgramData\TEMP => ":AC9C6AC1" ADS removed successfully.
C:\ProgramData\TEMP => ":D1B5B4F1" ADS removed successfully.
C:\ProgramData\TEMP => ":DFC5A2B2" ADS removed successfully.

==== End of Fixlog ====

[deeprybka]

 

What do you say?

 

Hi,

OK!

 

 

I clicked, Never Check for Updates, on installation.

I do not think that this is a good idea. Why?

 

You can proceed with the other steps....

[longbeachlouise]

Do you instruct me to uninstall, MBAM or ESET Onlinescanner? Should I uninstall FRST? Should i uninstall from the app itself?

 

Should i delete FRST?

 

Should I delete, ADWCleaner?

[deeprybka]

Hi,

 

 

You can uninstall programs that you had to install (e.g. MBAM or ESET Onlinescanner) in the control panel if you so wish.

 

I recommend you to scan your pc from time to time with MBAM & ESET. So, there is no need to uninstall.

 

You can't "uninstall" FRST because, it was never installed. If you run DelFix, FRST will be deleted automatically. Otherwise you can delete it manually.

[longbeachlouise]

What about ADWCleaner? Some of these, I thought I could run only under supervision. Will you tell me which I can keep and run occasionally?

[deeprybka]

Hi,

first you should run DelFix now. Afterwards you can download Adwcleaner again.

You should keep Malwarebytes, ESET and Adwcleaner. There is no need for supervision.

[longbeachlouise]

Okay. I ran it in the meantime. Here is the log file, DelFix.txt:

 

# DelFix v10.8 - Logfile created 22/08/2014 at 20:58:53
# Updated 29/07/2014 by Xplode
# Username : Carol - BILL
# Operating System : Windows Vista Home Basic Service Pack 2 (32 bits)

~ Activating UAC ... OK

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Carol\Desktop\FRST-OlderVersion
Deleted : C:\Users\Carol\Desktop\Addition.txt
Deleted : C:\Users\Carol\Desktop\AdwCleaner.exe
Deleted : C:\Users\Carol\Desktop\esetsmartinstaller_enu.exe
Deleted : C:\Users\Carol\Desktop\Fixlog.txt
Deleted : C:\Users\Carol\Desktop\FRST.exe
Deleted : C:\Users\Carol\Desktop\FRST.txt
Deleted : C:\Users\Carol\Desktop\Search.txt
Deleted : C:\Users\Carol\Desktop\TFC.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware

~ Creating registry backup ... OK

~ Cleaning system restore ...

New restore point created !

~ Resetting system settings ... OK

########## - EOF - ##########

[longbeachlouise]

Now, I'll download ESET and ADWCleaner.

 

Question: do you have a link to update Adobe Reader? May I keep the old one? I like the old one. I prefer the version I have. Let me just keep it.

[longbeachlouise]

Before I do anything else, I'll shut down my pc.

[deeprybka]

Let me just keep it.

 Of course!

If you wish, you can use it.

It appears that this issue is resolved, therefore I am closing the topic.

[longbeachlouise]

 Of course!

If you wish, you can use it.

It appears that this issue is resolved, therefore I am closing the topic.

No!

[longbeachlouise]

Okay, I'll put the new Adobe reader in. I'll do what you say! Is there a link?

[longbeachlouise]

I'm going to the next step, TFC. Just downloaded it. Okay, thanx.

[deeprybka]

Hi,

thread will closed. We're done yet.

Adobe Reader is outdated...

Visit http://get.adobe.com/uk/reader/otherversions/ and download the latest version of Acrobat Reader.

[AdvancedSetup]

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!