Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Need help ensuring system safety from prior Adpeak infection

26 Feb 2014   #11
MICHAELSUMMIT

Windows 7 Home Premium 64 bit
 
 
zoek-results.log

Thank you so much for the help so far. I really appreciate it.
Zoek.exe v5.0.0.0 Updated 19-February-2014
Tool run by Ben on Wed 02/26/2014 at 10:02:16.28.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Ben\Downloads\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-02-24-144134.log 75147 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-159174033-3081401301-509180892-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2721A6C1-251A-4042-80B2-64870F33DF24} deleted successfully
HKEY_USERS\S-1-5-21-159174033-3081401301-509180892-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6BC2027A-A43A-4FF9-82E9-FBEFAF0DD78D} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

"c:\Windows\Installer\a52a44.msi" not found
"c:\Windows\Installer\339d501.msi" not found
"c:\Windows\Installer\a52a44.msi" not found
"c:\Windows\Installer\339d501.msi" not found
C:\PROGRA~2\ShopperPro deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\SummerSoft deleted
C:\Users\Ben\AppData\Local\CRE deleted
C:\Windows\Installer\{6E810AB6-F34E-49A3-A93F-9E503660F718} deleted
C:\Windows\wininit.ini deleted
"C:\Users\Ben\AppData\Roaming\Vso" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn" [02/21/2014 12:24 PM]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bhapnjfnhgjijlphlbjbhkjbinbmcmjn - C:\Users\Ben\AppData\Local\CRE\bhapnjfnhgjijlphlbjbhkjbinbmcmjn.crx[]
cflheckfmhopnialghigdlggahiomebp - C:\Users\Ben\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx[]
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\Exts\Chrome.crx[01/19/2014 12:42 PM]
ojhagnahfpegocdhlopgljpaafeogmcc - C:\Program Files (x86)\ShopperPro\ShopperPro.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bhapnjfnhgjijlphlbjbhkjbinbmcmjn - C:\Users\Ben\AppData\Local\CRE\bhapnjfnhgjijlphlbjbhkjbinbmcmjn.crx[]
cflheckfmhopnialghigdlggahiomebp - C:\Users\Ben\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx[]

Norton Identity Protection - Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Google Wallet - Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://news.google.com/"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"SearchAssistant"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{2721A6C1-251A-4042-80B2-64870F33DF24}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2721A6C1-251A-4042-80B2-64870F33DF24}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://news.google.com/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startInde x={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3A9F56B942D9A2546BFE41756DE52495 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6BA018E6E43F3A949AF3E90563067F81 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{159F050D-FAAD-FC9C-EE89-E1C7CAEFE68D} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3FEEE99F-37EF-1C52-8497-1B1EDC93AABA} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bhapnjfnhgjijlphlbjbhkjbinbmcmjn deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\bhapnjfnhgjijlphlbjbhkjbinbmcmjn deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ojhagnahfpegocdhlopgljpaafeogmcc deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\3A9F56B942D9A2546BFE41756DE52495 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ben\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ben\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=42 folders=15 6046289 bytes)

==== Empty Temp Folders ======================

C:\Users\Ben\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Ben\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on Wed 02/26/2014 at 10:11:30.97 ======================

FYI - When I opened IE after the computer rebooted, a dialog box popped up saying that a program had corrupted my search settings in IE and that it would be reverted back to Google search.


My System SpecsSystem Spec
.
26 Feb 2014   #12
cottonball

Windows 7 Home Premium
 
 

Any issues with Adpeak or Scorpion Saver?
My System SpecsSystem Spec
26 Feb 2014   #13
MICHAELSUMMIT

Windows 7 Home Premium 64 bit
 
 

well, he did some type of work to clean his computer back in January, and so I have not seen an issues at all since that time...but I just wanted to make sure there were no traces left, and I didn't personally know how to check that, so I figured I would check with you guys' here!
My System SpecsSystem Spec
.

26 Feb 2014   #14
cottonball

Windows 7 Home Premium
 
 

You're good to go!!
My System SpecsSystem Spec
27 Feb 2014   #15
MICHAELSUMMIT

Windows 7 Home Premium 64 bit
 
 

Thanks for the help!
My System SpecsSystem Spec
27 Feb 2014   #16
cottonball

Windows 7 Home Premium
 
 

Thank you for the rep!!
My System SpecsSystem Spec
Reply

 Need help ensuring system safety from prior Adpeak infection




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Microsoft Safety Scanner hangs on system file
Thanks to help on this forum (thanks, ThrashZone!), I have several powerful new freeware tools. After running several others and deleting anything questionable, ran Microsoft Safety Scanner. It finds over 300 infected files. But in repeated attempts, right near the end of 8-hour scans, it stalls on...
System Security
BSOD using WMP,system restored to 4 days prior followed by many errors
I have a Lenovo B560 with Windows 7 x64. Sequence of events: 1. Played music from a WD external HD with WMP. Music stopped playing and a terrible constant sound is coming out of the speakers (which began a year ago and happens sporadically), no other programs running besides WMP. 2. BSOD...
BSOD Help and Support
PPPoE Prior to Login
Hey all, I am running Windows 7 Ultimate and I connect directly to the internet via my providers modem. I am not using a router and would rather not. It's just a straight through connection. In order to connect to the internet the PPPoE connection has to be dialed but this doesn't work well...
Network & Sharing
best performance and safety system
Hi all, after reading so many threads in this forum i will open my first one to tell you guys my thoughts about my system. At least i just want to know if im right or wrong. I use 2x Western Digital Raptor 740 ADFD (74GB) 1x Western Digital 3200 AAKS (320GB) The first Raptor i...
Performance & Maintenance


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 19:43.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App