Virus? pp.development.info

[Nephs]

Seen a couple posts about this stupid thing. Hoping for some help to remove it, I think I attached all needed files.

 

[TwinHeadedEagle]

Download attached fixlist.txt on the same location as FRST (otherwise the fix won't work)

Open FRST, and click Fix. Attach me that report after it is finished.

 

[Nephs]

Fix completed, here's the log(sorry for such a long response time, I've been at work today).

 

[TwinHeadedEagle]

Ok, we shall run just another check. By the way, tell me how is the situation now?


Please download zoek.zip or zoek.rar by smeenk (

) from here or here and save it to your Desktop.
Unpack the archive...

• Close any open browsers
• Temporarily disable your AntiVirus program. (If necessary)
  If you are unsure how to do this please read this or this Instruction.
  
• Double click on zoek.exe to run the tool .
  Please wait while the tool does not start...
  
• Copy the text present inside the code box below and paste it into the large window in the zoek tool:
  
  

  createsrpoint; 
  StandardSearch; 
  emptyfolderscheck; 
  installer-list; 
  installedprogs; 
  uninstall-list;

• Click on
  
  button.
  Please wait until a logreport will open (this can be after reboot)
  
• Save notepad to your Desktop and attach here zoek-results.log
  Note: It will also create a log in the C:\ directory named "zoek-results.log"

 

[Nephs]

Here's the Zoek-Results. I haven't noticed any trouble since you had me do the previous stuff. I just had my brother link me a couple links on gchat(youtube links) to test again and they were okay.

 

[TwinHeadedEagle]

> Re-run zoek with this script and attach here fresh zoek log results.

C:\ProgramData\InstallMate;fs
C:\ProgramData\Goreatsaver;fs
C:\ProgramData\929c3456ba2d3a32;fs
acoogmhlnbiddkffhgmphgahaekelcgd;chr
bceobkolgomdbkappbpcbfbgoaomhgmh;chr
copciehbkikbfnppdndaegnlgkelahfe;chr
doccdgjioeojehbeimcnehckplbhiblj;chr
fbolojblcllhhebnmgljfpojbfocnjen;chr
gpt.ini;z
C:\Windows\System32\GroupPolicy;v
C:\Windows\SysWOW64\GroupPolicy;v
autoclean;
emptyalltemp;

 

[Nephs]

Here it is!

 

[TwinHeadedEagle]

Good, we have just one more fix to do

Run Zoek with this script

C:\Windows\SysWOW64\GroupPolicy\gpt.ini;f
C:\Windows\System32\GroupPolicy\User;fs

 

[Nephs]

Thank you SO much for the help. I really appreciate it. Here's the log, not sure if I needed to upload or not lol.

 

[TwinHeadedEagle]

Ok, we're done

How is the situation now?

 

[Nephs]

So far so good! I think I love you. lol.

 

[TwinHeadedEagle]

• The following will implement some post-cleanup procedures:

=> Please download DelFix by Xplode to your Desktop.

Run the tool and check the following boxes below;

Remove disinfection tools

Create registry backup

Purge System Restore
Click Run button and wait a few seconds for the programme completes his work.
At this point all the tools we used here should be gone. Tool will create an report for you (C:\DelFix.txt)

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.