Protection de recherche

Solved
ardechoiselyonaise -  
ardechoiselyonnaise Posted messages 4 Status Member -
Hello, I have Windows 8 on my computer, I'm fumbling around and now I don't know what I've done, there's search protect causing me issues, thank you for your help

Configuration: Windows / Chrome 40.0.2214.93

2 answers

  1. Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
     
    Hello,

    You have installed adware and potentially unwanted programs on your PC.
    Here is the procedure to follow to remove them:

    Start with this:

    Follow the AdwCleaner tutorial https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= AdwCleaner (by Xplode)
    Download AdwCleaner to your desktop.
    Run AdwCleaner, click on [Scan].
    The scan may take several minutes, please be patient.
    Once the scan is complete, click on [Clean]

    Once the cleaning is done, a report will open. Copy/paste the contents of the report into your next reply.
    If that doesn’t work, use the site http://pjjoint.malekal.com to host the report, provide the report link in a new message.
    Note: The report is also saved under C:\AdwCleaner[S1].txt

    Then:

    Follow this tutorial: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
    This will generate two FRST reports.
    Send these two reports as explained to the site http://pjjoint.malekal.com and provide the three pjjoint links for these reports so they can be reviewed.

    --
    Like the angel you are, you laugh creating a lightness in my chest,
    Your eyes they penetrate me,
    (Your answer's always 'maybe')
    That's when I got up and left
    0
  2. ardechoiselyonnaise Posted messages 4 Status Member
     
    # AdwCleaner v4.111 - Report created on 28/02/2015 at 19:41:47
    # Updated on 18/02/2015 by Xplode
    # Database: 2015-02-18.3 [Server]
    # Operating System: Windows 8.1 (x64)
    # Username: Nicole - PC-NICOLE
    # Executed from: C:\Users\Nicole\Downloads\AdwCleaner-4.111.exe
    # Option: Clean
            • [ Services ] *****


    Service Removed: CltMngSvc
    Service Removed: Orbiter
    Service Removed: IHProtect Service
    [#] Service Removed: Update StormVade
    [#] Service Removed: Util StormVade
    Service Removed: {f55c73c7-c2d9-4e96-9cca-424f4afb4b50}Gw64
    Service Removed: {fb3a37cb-c236-44ed-9a3e-dde48437809b}Gw64
            • [ Files / Folders ] *****


    Folder Removed: C:\ProgramData\ZombieNews
    Folder Removed: C:\ProgramData\IHProtectUpDate
    Folder Removed: C:\ProgramData\52b2213000001fc2
    Folder Removed: C:\ProgramData\b30a9b2400001fbe
    Folder Removed: C:\ProgramData\f3843e2000007865
    Folder Removed: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverWhiz
    Folder Removed: C:\Program Files (x86)\predm
    Folder Removed: C:\Program Files (x86)\SearchProtect
    [!] Folder Removed: C:\Program Files (x86)\ORBTR
    Folder Removed: C:\Program Files (x86)\XTab
    [!] Folder Removed: C:\Program Files (x86)\StormVade
    [!] Folder Removed: C:\Program Files (x86)\StormVade
    Folder Removed: C:\Users\Nicole\AppData\Local\Temp\PlumoWeb
    Folder Removed: C:\Users\Nicole\AppData\Local\Temp\StormVade
    Folder Removed: C:\Users\Nicole\AppData\Local\Boxore
    Folder Removed: C:\Users\Nicole\AppData\Local\SearchProtect
    Folder Removed: C:\Users\Nicole\AppData\Local\ZombieNews
    Folder Removed: C:\Users\Nicole\AppData\Local\StormWatch
    Folder Removed: C:\Users\Nicole\AppData\Local\BoBrowser
    Folder Removed: C:\Users\Nicole\AppData\Local\Vosteran
    Folder Removed: C:\Users\Nicole\AppData\Roaming\key-find
    Folder Removed: C:\Users\Nicole\AppData\Roaming\Nosibay
    Folder Removed: C:\Users\Nicole\AppData\Roaming\OpenCandy
    Folder Removed: C:\Users\Nicole\AppData\Roaming\mystartsearch
    Folder Removed: C:\Users\Nicole\AppData\Roaming\WTools
    Folder Removed: C:\Users\Nicole\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormWatch
    Folder Removed: C:\Users\Nicole\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
    File Removed: C:\Windows\System32\drivers\{f55c73c7-c2d9-4e96-9cca-424f4afb4b50}Gw64.sys
    File Removed: C:\Windows\System32\drivers\{fb3a37cb-c236-44ed-9a3e-dde48437809b}Gw64.sys
    File Removed: C:\Users\Nicole\AppData\Roaming\Bubble Dock.boostrap.log
    File Removed: C:\Users\Nicole\AppData\Roaming\WindApp.boostrap.log
    File Removed: C:\Users\Nicole\AppData\Roaming\Bubble Dock.installation.log
    File Removed: C:\Users\Nicole\AppData\Roaming\Selection Tools.installation.log
    File Removed: C:\Users\Nicole\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StormWatchApp.lnk
    File Removed: C:\Users\Nicole\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OptimizerProInstaller.lnk
    File Removed: C:\Users\Nicole\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
    File Removed: C:\Users\Nicole\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
    File Removed: C:\Users\Nicole\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage
    File Removed: C:\Users\Nicole\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal
            • [ Scheduled tasks ] *****


    Task Removed: Run_Bobby_Browser
    Task Removed: PostPoneInstall
            • [ Shortcuts ] *****


    Shortcut Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
    Shortcut Cleaned: C:\Users\Nicole\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
            • [ Registry ] *****


    Key Removed: HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
    Value Removed: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Selection Tools]
    Key Removed: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update StormVade
    Key Removed: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util StormVade
    Key Removed: HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}
    Key Removed: HKLM\SOFTWARE\Classes\CLSID\{3d5607cc-7814-46d1-bc4d-fc94740efdae}
    Key Removed: HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
    Key Removed: HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
    Key Removed: HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
    Key Removed: HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
    Key Removed: HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
    Key Removed: HKLM\SOFTWARE\Classes\Interface\{8C1A1DE9-F4F2-4786-A0BB-B54E71D74513}
    Key Removed: HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
    Key Removed: HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
    Key Removed: HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
    Key Removed: HKLM\SOFTWARE\Classes\TypeLib\{c8b54630-2914-4735-8753-afe1dd965fb6}
    Key Removed: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
    Key Removed: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3d5607cc-7814-46d1-bc4d-fc94740efdae}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
    Key Removed: [x64] HKLM\SOFTWARE\Classes\Interface\{8C1A1DE9-F4F2-4786-A0BB-B54E71D74513}
    Key Removed: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
    Data Restored: HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
    Key Removed: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    Key Removed: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
    Key Removed: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
    Key Removed: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
    Key Removed: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77}
    Key Removed: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
    Key Removed: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
    Key Removed: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    Key Removed: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\StormVade
    Data Removed: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\searchprotect\searchprotect\bin\vc32loader.dll
    Data Removed: [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\VC64LO~1.DLL
    Key Removed: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC
    Key Removed: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SoftwareUpdate.exe
            • [ Browsers ] *****


    -\\ Internet Explorer v11.0.9600.17416

    Parameter Restored: HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
    Parameter Restored: HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
    Parameter Restored: HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
    Parameter Restored: HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
    Parameter Restored: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
    Parameter Restored: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

    -\\ Google Chrome v40.0.2214.93

    AdwCleaner[R0].txt - [16305 bytes] - [28/02/2015 19:32:53]
    AdwCleaner[S0].txt - [13371 bytes] - [28/02/2015 19:41:47]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [13432 bytes] ##########
    0