Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
RAT on my PC?
Message
<blockquote data-quote="alakazam" data-source="post: 281860" data-attributes="member: 20235"><p><strong><span style="font-size: 26px">AdwCleaner results</span></strong></p><p></p><p><span style="font-size: 15px"># AdwCleaner v4.001 - Report created 22/10/2014 at 11:48:02</span></p><p><span style="font-size: 15px"># DB v2014-10-21.1</span></p><p><span style="font-size: 15px"># Updated 20/10/2014 by Xplode</span></p><p><span style="font-size: 15px"># Operating System : Windows 8.1 Pro (64 bits)</span></p><p><span style="font-size: 15px"># Username : Lucian</span></p><p><span style="font-size: 15px"># Running from : C:\Users\Lucian\Desktop\AdwCleaner.exe</span></p><p><span style="font-size: 15px"># Option : Clean</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">***** [ Services ] *****</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">***** [ Files / Folders ] *****</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">Folder Deleted : C:\Users\Lucian\AppData\Local\Temp\apn</span></p><p><span style="font-size: 15px">Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightspark 0.5.3-git</span></p><p><span style="font-size: 15px">Folder Deleted : C:\Program Files (x86)\Lightspark 0.5.3-git</span></p><p><span style="font-size: 15px">Folder Deleted : C:\Users\Lucian\AppData\Roaming\Settings Manager</span></p><p><span style="font-size: 15px">Folder Deleted : C:\ProgramData\PC Drivers HeadQuarters</span></p><p><span style="font-size: 15px">Folder Deleted : C:\Program Files (x86)\PC Drivers HeadQuarters</span></p><p><span style="font-size: 15px">Folder Deleted : C:\Users\Lucian\AppData\Roaming\PC Drivers HeadQuarters</span></p><p><span style="font-size: 15px">File Deleted : C:\Users\Lucian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_<a href="http://www.azlyrics.com_0.localstorage" target="_blank">www.azlyrics.com_0.localstorage</a></span></p><p><span style="font-size: 15px">File Deleted : C:\Users\Lucian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_<a href="http://www.azlyrics.com_0.localstorage-journal" target="_blank">www.azlyrics.com_0.localstorage-journal</a></span></p><p><span style="font-size: 15px">File Deleted : C:\Users\Lucian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_<a href="http://www.superfish.com_0.localstorage" target="_blank">www.superfish.com_0.localstorage</a></span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">***** [ Scheduled Tasks ] *****</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">Task Deleted : LaunchSignup</span></p><p><span style="font-size: 15px">Task Deleted : RunAsStdUser Task</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">***** [ Shortcuts ] *****</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">***** [ Registry ] *****</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}</span></p><p><span style="font-size: 15px">Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}</span></p><p><span style="font-size: 15px">Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}</span></p><p><span style="font-size: 15px">Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}</span></p><p><span style="font-size: 15px">Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}</span></p><p><span style="font-size: 15px">Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]</span></p><p><span style="font-size: 15px">Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}</span></p><p><span style="font-size: 15px">Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Flash-Enhancer</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Lightspark Team</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Lightspark</span></p><p><span style="font-size: 15px">Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4F564F32-2D53-5000-76A7-A758B70C1200}</span></p><p><span style="font-size: 15px">Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9</span></p><p><span style="font-size: 15px">Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044</span></p><p><span style="font-size: 15px">Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094</span></p><p><span style="font-size: 15px">Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">***** [ Browsers ] *****</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">-\\ Internet Explorer v11.0.9600.17344</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">-\\ Mozilla Firefox v33.0 (x86 en-US)</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">-\\ Google Chrome v38.0.2125.104</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">*************************</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">AdwCleaner[R0].txt - [6626 octets] - [02/04/2014 01:21:41]</span></p><p><span style="font-size: 15px">AdwCleaner[R1].txt - [4513 octets] - [22/10/2014 11:44:24]</span></p><p><span style="font-size: 15px">AdwCleaner[S0].txt - [6469 octets] - [02/04/2014 03:24:11]</span></p><p><span style="font-size: 15px">AdwCleaner[S1].txt - [4319 octets] - [22/10/2014 11:48:02]</span></p><p><span style="font-size: 15px"></span></p><p><span style="font-size: 15px">########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4379 octets] ##########</span></p><p><span style="font-size: 15px"></span></p><p><strong><span style="font-size: 26px">Farbar Recovery Scan Tool results - in attachments</span></strong></p></blockquote><p></p>
[QUOTE="alakazam, post: 281860, member: 20235"] [B][SIZE=7]AdwCleaner results[/SIZE][/B] [B][SIZE=7][/SIZE][/B] [SIZE=4]# AdwCleaner v4.001 - Report created 22/10/2014 at 11:48:02 # DB v2014-10-21.1 # Updated 20/10/2014 by Xplode # Operating System : Windows 8.1 Pro (64 bits) # Username : Lucian # Running from : C:\Users\Lucian\Desktop\AdwCleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\Users\Lucian\AppData\Local\Temp\apn Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightspark 0.5.3-git Folder Deleted : C:\Program Files (x86)\Lightspark 0.5.3-git Folder Deleted : C:\Users\Lucian\AppData\Roaming\Settings Manager Folder Deleted : C:\ProgramData\PC Drivers HeadQuarters Folder Deleted : C:\Program Files (x86)\PC Drivers HeadQuarters Folder Deleted : C:\Users\Lucian\AppData\Roaming\PC Drivers HeadQuarters File Deleted : C:\Users\Lucian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_[url="http://www.azlyrics.com_0.localstorage"]www.azlyrics.com_0.localstorage[/url] File Deleted : C:\Users\Lucian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_[url="http://www.azlyrics.com_0.localstorage-journal"]www.azlyrics.com_0.localstorage-journal[/url] File Deleted : C:\Users\Lucian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_[url="http://www.superfish.com_0.localstorage"]www.superfish.com_0.localstorage[/url] ***** [ Scheduled Tasks ] ***** Task Deleted : LaunchSignup Task Deleted : RunAsStdUser Task ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Flash-Enhancer Key Deleted : HKLM\SOFTWARE\Lightspark Team Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Lightspark Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4F564F32-2D53-5000-76A7-A758B70C1200} Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9 Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044 Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094 Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17344 -\\ Mozilla Firefox v33.0 (x86 en-US) -\\ Google Chrome v38.0.2125.104 ************************* AdwCleaner[R0].txt - [6626 octets] - [02/04/2014 01:21:41] AdwCleaner[R1].txt - [4513 octets] - [22/10/2014 11:44:24] AdwCleaner[S0].txt - [6469 octets] - [02/04/2014 03:24:11] AdwCleaner[S1].txt - [4319 octets] - [22/10/2014 11:48:02] ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4379 octets] ########## [/SIZE] [B][SIZE=7]Farbar Recovery Scan Tool results - in attachments[/SIZE][/B] [/QUOTE]
Insert quotes…
Verification
Post reply
Top