Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Trouble removing disk antivirus pro
Message
<blockquote data-quote="winddancer" data-source="post: 111972" data-attributes="member: 6783"><p>All processes killed</p><p>========== OTL ==========</p><p>HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!</p><p>HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!</p><p>HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!</p><p>HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!</p><p>Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ deleted successfully.</p><p>Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found.</p><p>Registry key HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ deleted successfully.</p><p>Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found.</p><p>Registry key HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found.</p><p>Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found.</p><p>HKU\S-1-5-21-3615664846-1967934640-507609581-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!</p><p>HKU\S-1-5-21-3615664846-1967934640-507609581-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!</p><p>Registry key HKEY_USERS\S-1-5-21-3615664846-1967934640-507609581-1005\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ deleted successfully.</p><p>Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found.</p><p>Registry key HKEY_USERS\S-1-5-21-3615664846-1967934640-507609581-1005\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ deleted successfully.</p><p>Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found.</p><p>Prefs.js: "22find" removed from browser.search.defaultenginename</p><p>Prefs.js: "22find" removed from browser.search.order.1</p><p>Prefs.js: "22find" removed from browser.search.selectedEngine</p><p>C:\Program Files\Mozilla Firefox\searchplugins\searchresultstb.xml moved successfully.</p><p>C:\Program Files\Mozilla Firefox\searchplugins\Search_Results.xml moved successfully.</p><p>Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\qeshel deleted successfully.</p><p>C:\Documents and Settings\Dawn\Application Data\qeshel.dll moved successfully.</p><p>Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\CheckRun22find_uninstaller deleted successfully.</p><p>C:\Documents and Settings\Dawn\Application Data\CheckRun22find.exe moved successfully.</p><p>Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\dpneip deleted successfully.</p><p>C:\Documents and Settings\Dawn\Application Data\dpneip.dll moved successfully.</p><p>Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\wuvtcp deleted successfully.</p><p>C:\Documents and Settings\Dawn\Application Data\wuvtcp.dll moved successfully.</p><p>Registry value HKEY_USERS\S-1-5-21-3615664846-1967934640-507609581-1005\Software\Microsoft\Windows\CurrentVersion\Run\\cvpkmbqm deleted successfully.</p><p>C:\Documents and Settings\Dawn\Local Settings\Application Data\xmnsvqif.exe moved successfully.</p><p>Registry value HKEY_USERS\S-1-5-21-3615664846-1967934640-507609581-1005\Software\Microsoft\Windows\CurrentVersion\RunOnce\\3C946E6B620E104D00003C9431DC1532 deleted successfully.</p><p>C:\Documents and Settings\All Users\Application Data\3C946E6B620E104D00003C9431DC1532\3C946E6B620E104D00003C9431DC1532.exe moved successfully.</p><p>C:\Documents and Settings\Dawn\Local Settings\Application Data\1f1d6ba3-23b2-4e15-82a7-a14baac0b137.crx moved successfully.</p><p>C:\Documents and Settings\Dawn\Local Settings\Application Data\viwxipdd moved successfully.</p><p>C:\Documents and Settings\Dawn\Local Settings\Application Data\bxnxubqv.exe moved successfully.</p><p>File C:\Documents and Settings\Dawn\Application Data\qeshel.dll not found.</p><p>File C:\Documents and Settings\Dawn\Application Data\wuvtcp.dll not found.</p><p>C:\WINDOWS\tasks\Driver Robot.job moved successfully.</p><p>========== FILES ==========</p><p><span style="color: #A23BEC">< ipconfig /flushdns /c ></span></p><p>Windows IP Configuration</p><p>Could not flush the DNS Resolver Cache: Function failed during execution.</p><p>C:\Documents and Settings\Dawn\Desktop\cmd.bat deleted successfully.</p><p>C:\Documents and Settings\Dawn\Desktop\cmd.txt deleted successfully.</p><p>========== COMMANDS ==========</p><p> </p><p>[EMPTYTEMP]</p><p> </p><p>User: A & T</p><p>->Temp folder emptied: 0 bytes</p><p>->Temporary Internet Files folder emptied: 1201529 bytes</p><p>->Java cache emptied: 11666990 bytes</p><p>->FireFox cache emptied: 65862513 bytes</p><p>->Flash cache emptied: 107021 bytes</p><p> </p><p>User: Administrator</p><p>->Temp folder emptied: 0 bytes</p><p>->Temporary Internet Files folder emptied: 0 bytes</p><p> </p><p>User: All Users</p><p> </p><p>User: Dawn</p><p>->Temp folder emptied: 15094 bytes</p><p>->Temporary Internet Files folder emptied: 1607327 bytes</p><p>->Java cache emptied: 45224166 bytes</p><p>->FireFox cache emptied: 71096759 bytes</p><p>->Google Chrome cache emptied: 6304961 bytes</p><p>->Flash cache emptied: 42148 bytes</p><p> </p><p>User: Default User</p><p>->Temp folder emptied: 0 bytes</p><p>->Temporary Internet Files folder emptied: 32902 bytes</p><p>->Flash cache emptied: 41661 bytes</p><p> </p><p>User: Guest</p><p>->Temp folder emptied: 0 bytes</p><p>->Temporary Internet Files folder emptied: 33237 bytes</p><p>->Java cache emptied: 89722339 bytes</p><p>->FireFox cache emptied: 45228813 bytes</p><p>->Flash cache emptied: 268049 bytes</p><p> </p><p>User: LocalService</p><p>->Temp folder emptied: 0 bytes</p><p>->Temporary Internet Files folder emptied: 189433 bytes</p><p> </p><p>User: NetworkService</p><p>->Temp folder emptied: 16172 bytes</p><p>->Temporary Internet Files folder emptied: 49554 bytes</p><p> </p><p>%systemdrive% .tmp files removed: 0 bytes</p><p>%systemroot% .tmp files removed: 0 bytes</p><p>%systemroot%\System32 .tmp files removed: 2577 bytes</p><p>%systemroot%\System32\dllcache .tmp files removed: 0 bytes</p><p>%systemroot%\System32\drivers .tmp files removed: 0 bytes</p><p>Windows Temp folder emptied: 19652 bytes</p><p>%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 37382 bytes</p><p>%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 117839 bytes</p><p>RecycleBin emptied: 2909 bytes</p><p> </p><p>Total Files Cleaned = 323.00 mb</p><p> </p><p>C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.</p><p>HOSTS file reset successfully</p><p> </p><p>OTL by OldTimer - Version 3.2.69.0 log created on 03192013_142950</p><p></p><p>Files\Folders moved on Reboot...</p><p></p><p>PendingFileRenameOperations files...</p><p></p><p>Registry entries deleted on Reboot...</p></blockquote><p></p>
[QUOTE="winddancer, post: 111972, member: 6783"] All processes killed ========== OTL ========== HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully! Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found. Registry key HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found. Registry key HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found. HKU\S-1-5-21-3615664846-1967934640-507609581-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully! HKU\S-1-5-21-3615664846-1967934640-507609581-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! Registry key HKEY_USERS\S-1-5-21-3615664846-1967934640-507609581-1005\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found. Registry key HKEY_USERS\S-1-5-21-3615664846-1967934640-507609581-1005\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}\ not found. Prefs.js: "22find" removed from browser.search.defaultenginename Prefs.js: "22find" removed from browser.search.order.1 Prefs.js: "22find" removed from browser.search.selectedEngine C:\Program Files\Mozilla Firefox\searchplugins\searchresultstb.xml moved successfully. C:\Program Files\Mozilla Firefox\searchplugins\Search_Results.xml moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\qeshel deleted successfully. C:\Documents and Settings\Dawn\Application Data\qeshel.dll moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\CheckRun22find_uninstaller deleted successfully. C:\Documents and Settings\Dawn\Application Data\CheckRun22find.exe moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\dpneip deleted successfully. C:\Documents and Settings\Dawn\Application Data\dpneip.dll moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\wuvtcp deleted successfully. C:\Documents and Settings\Dawn\Application Data\wuvtcp.dll moved successfully. Registry value HKEY_USERS\S-1-5-21-3615664846-1967934640-507609581-1005\Software\Microsoft\Windows\CurrentVersion\Run\\cvpkmbqm deleted successfully. C:\Documents and Settings\Dawn\Local Settings\Application Data\xmnsvqif.exe moved successfully. Registry value HKEY_USERS\S-1-5-21-3615664846-1967934640-507609581-1005\Software\Microsoft\Windows\CurrentVersion\RunOnce\\3C946E6B620E104D00003C9431DC1532 deleted successfully. C:\Documents and Settings\All Users\Application Data\3C946E6B620E104D00003C9431DC1532\3C946E6B620E104D00003C9431DC1532.exe moved successfully. C:\Documents and Settings\Dawn\Local Settings\Application Data\1f1d6ba3-23b2-4e15-82a7-a14baac0b137.crx moved successfully. C:\Documents and Settings\Dawn\Local Settings\Application Data\viwxipdd moved successfully. C:\Documents and Settings\Dawn\Local Settings\Application Data\bxnxubqv.exe moved successfully. File C:\Documents and Settings\Dawn\Application Data\qeshel.dll not found. File C:\Documents and Settings\Dawn\Application Data\wuvtcp.dll not found. C:\WINDOWS\tasks\Driver Robot.job moved successfully. ========== FILES ========== [color=#A23BEC]< ipconfig /flushdns /c >[/color] Windows IP Configuration Could not flush the DNS Resolver Cache: Function failed during execution. C:\Documents and Settings\Dawn\Desktop\cmd.bat deleted successfully. C:\Documents and Settings\Dawn\Desktop\cmd.txt deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: A & T ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 1201529 bytes ->Java cache emptied: 11666990 bytes ->FireFox cache emptied: 65862513 bytes ->Flash cache emptied: 107021 bytes User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: All Users User: Dawn ->Temp folder emptied: 15094 bytes ->Temporary Internet Files folder emptied: 1607327 bytes ->Java cache emptied: 45224166 bytes ->FireFox cache emptied: 71096759 bytes ->Google Chrome cache emptied: 6304961 bytes ->Flash cache emptied: 42148 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32902 bytes ->Flash cache emptied: 41661 bytes User: Guest ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33237 bytes ->Java cache emptied: 89722339 bytes ->FireFox cache emptied: 45228813 bytes ->Flash cache emptied: 268049 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 189433 bytes User: NetworkService ->Temp folder emptied: 16172 bytes ->Temporary Internet Files folder emptied: 49554 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 2577 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 19652 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 37382 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 117839 bytes RecycleBin emptied: 2909 bytes Total Files Cleaned = 323.00 mb C:\WINDOWS\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully OTL by OldTimer - Version 3.2.69.0 log created on 03192013_142950 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot... [/QUOTE]
Insert quotes…
Verification
Post reply
Top