Toshiba Satellite. Adware and some worm/java infections:
Thank you for any help on this.
Toshiba Satellite. Adware and some worm/java infections:
Thank you for any help on this.
Let me know how it is after this
CAUTION : This fix is only valid for this specific machine, using it on another may break your computer
Open notepad and copy/paste the text in the quotebox below into it:
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION SearchScopes: HKLM - {1EAF07AB-C7B0-4795-BA89-E76753837C07} URL = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=iron2&chnl=iron2&cd=2XzutAtN2Y1L1QzutDtDtByC0ByC0AyDyEyD0D0AtAyB0DyDtN0D0TzutBtDtCtBtDyCtBzz&cr=513251633 SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {1EAF07AB-C7B0-4795-BA89-E76753837C07} SearchScopes: HKLM-x32 - {1EAF07AB-C7B0-4795-BA89-E76753837C07} URL = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=iron2&chnl=iron2&cd=2XzutAtN2Y1L1QzutDtDtByC0ByC0AyDyEyD0D0AtAyB0DyDtN0D0TzutBtDtCtBtDyCtBzz&cr=513251633 SearchScopes: HKCU - Backup.Old.DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} SearchScopes: HKCU - {7CA75C32-EA00-4C70-87C2-165F7E2A0D79} URL = BHO-x32: ActiveMail -> {EF7AED5F-0C26-4820-A570-7DA8B6D93F4A} -> C:\ProgramData\ActivePath\ActiveMail\ActiveMailBHO.dll No File S4 vToolbarUpdater15.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe [X] EmptyTemp: CMD: bitsadmin /reset /allusers
Save this as fixlist.txt, in the same location as FRST.exe
Run FRST and press Fix
On completion a log will be generated please post that
THEN
Please download AdwCleaner by Xplode onto your desktop.
[*]Close all open programs and internet browsers.
[*]Double click on AdwCleaner.exe to run the tool.
[*]Click on Scan.
[*]After the scan is complete click on “Clean”
[*]Confirm each time with Ok.
[*]Your computer will be rebooted automatically. A text file will open after the restart.
[*]Please post the content of that logfile with your next answer.
[*]You can find the logfile at C:\AdwCleaner[S1].txt as well.
Thank you essexboy.
Holy c**p. Mucho better. System is completely quiet @ 5:00 minutes in after restart, all 76 processes loaded, and cpu @ 0-2% active. Prior system slowdowns appear to be gone. Much snappier, normal operation with a SATA drive.
Fixlog attached. Most recent run of AdwCleaner attached second. Do you need to see prior cleansing run of AdwCleaner and Malwarebytes Free?
I’d like to run it a day before we go to the next step if that’s ok with you, or, is there something else needs doing? ;D
Nope just test it out now. Funmoods was probably the main culprit
Thanks, will get back to you. 8)