Re: smartnewtab.com

Hi :)

I do a cleanup of the installed software frequently, there should be not to much unknown.

Most of the programs you listed are installed since a while and known to me (some are quite famous like Corel or Paragon), only DocMgr is quite questionable - it isn't listed in the installed programs, and I can find it listed in the start menu.

I ran cCleaner to see if there are invalid registry...

Re: smartnewtab.com

Hi !

What a quick reply and perfect support :-)

I do a cleanup of the installed software frequently, there should be not to much unknown.

Most of the programs you listed are installed since a while and known to me (some are quite famous like Corel or Paragon), only DocMgr is quite questionable - it isn't listed in the installed programs, and I can find it listed in the start menu.

I ran cCl...

Re: smartnewtab.com

Hi !

Here is the last Adw-Log:


# AdwCleaner v5.109 - Bericht erstellt am 09/04/2016 um 02:21:55 # Aktualisiert am 04/04/2016 von Xplode # Datenbank : 2016-04-07.1 [Server] # Betriebssystem : Windows 7 Professional Service Pack 1 (x64) # Benutzername : MainAdmin - KR-WS # Gestartet von : C:\Users\Public\Documents\adwcleaner_5.109.exe # Option : Suchlauf # Unterstützung : http://toolslib.net/fo...

Re: smartnewtab.com

Hi,

Ok, there is just some minor infections and a lot of softwares that I don't know, then I will have to make some research to find if some can be dangerous.

 

But before we do a script with ZHPFix, we are going to clean a little that computer :

  • Removing unuse or unknow softwares :
    • Please go to the Windows Tool to uninstall software (by configuration pannel > uninstall softwares)
    • Then ...

Re: smartnewtab.com

Hi !

Here is the last Adw-Log:

# AdwCleaner v5.109 - Bericht erstellt am 09/04/2016 um 02:21:55
# Aktualisiert am 04/04/2016 von Xplode
# Datenbank : 2016-04-07.1 [Server]
# Betriebssystem : Windows 7 Professional Service Pack 1 (x64)
# Benutzername : MainAdmin - KR-WS
# Gestartet von : C:\Users\Public\Documents\adwcleaner_5.109.exe
# Option : Suchlauf
# Unterstützung : http://toolslib.net/f...

Re: smartnewtab.com

Hello knatterton_nick,

Can you please post the log file of AdwCleaner ? You can find it in C\AdwCleaner\AdwCleaner[SX].txt, where X is a number.

To understand what's happening on your conputer, can you use ZHPDiag :

  • Download ZHPDiag from Nicolas on his website.
  • Then run it with administrator's rights (with right click).
  • Then upload the log file on up2share.
  • Then post the link in your repl...

Re: Possibly False Positive - AdwCleaner

Hello Xplode, sorry for the insistance, i understand that some PUPs use this driver to capture information. However wouldn't it be possible that a legitimate program, as a Banking module might rely on this driver? Researching in the web, it seems that the signer " GAS INFORMATICA LTDA" makes some banking modules for security protection.

Furthermore, i have just scanned with OTL and found the f...

Possibly False Positive - AdwCleaner

Hello, it seems to be a WinDivert driver and developed by Basil Projects. Although i'm not sure which program it belongs.

In Virus total, nothing was detected.

https://virustotal.com/pt/file/2320e9c2e05e021512b4a9c6328caa9761187b10551859d591b6fcc16842fd0e/analysis/  

# AdwCleaner v5.109 - Relatório criado 08/04/2016 às 03:15:27
# Atualizado 04/04/2016 por Xplode
# Banco de dados : 2016-04-0...

Re: impossible d'éradiquer MPC cleaner

on Disinfection by ****

Bonsoir,

je viens de faire la manip. Voilà le résultat :

Rapport de ZHPFix 2015.10.19.9 par Nicolas Coolman, Update du 19/10/2015 Fichier d'export Registre : Run by JF at 07/04/2016 20:29:20 High Elevated Privileges : OK Windows 8 Home Premium Edition, 64-bit Service Pack 1 (10586)

Corbeille vidée (00mn 03s) Dossier Prefetcher vidé

========== Clés du Registre ========== SUPPRIMÉ: Service: I...

Re: impossible d'éradiquer MPC cleaner

Bonsoir,

 

Parfait, adwcleaner à bien fait son boulot. On va utiliser ZHPFix, un logiciel de Nicolas Coolman, afin de supprimer quelques éléments restants :

  • Rends toi sur la page de téléchargement de ZHPFix, puis clique sur le bouton bleu "Nicolas Coolman - Télécharger".
  • Enregistre le fichier où tu veux et lance le (fais le par un clic-droit -> Exécuter en temps qu'administrateur).
  • Laisse ...