Chrome and system issues

Yes Hitman Pro found some issues. Uninstall the below but before uninstalling it, make sure that ALL browsers
are terminated.


Browser Manager

The run Hitman Pro again and if it finds any of the same items, remove them. And then REBOOT.

After reboot, run the below.



Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
• The tool will open and start scanning your system.
• Note: That JRT may reset your home page to a google default so you will need to restore your home page setting if this happens.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Attach JRT.txt to your next message.

Now run another scan with HitmanPro and then attach the latest hitmanpro.zip log

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).


Then attach the below logs:

• the new Hitman log
• the JRT.txt log
• C:\MGlogs.zip

 

I'm betting that you had in the past used the free removal and it now will not do it for free. Run JRT and the rest of my instructions.

It's a false detection. It also picks up MGtools. MGtools and JRT could just as easily declare Hitman to be malware but we are smarter than security companies and know what is good and what is bad.

 

Okay now run a "scan only" with Hitman and attach the new log. Anything remaining we will manually clean.

 

Still more to do as JRT was not able to remove a few items.

Shutdown all protection software and then do the below.
Please download OTM by Old Timer and save it to your Desktop.

• Right-click OTM.exe and select Run as administrator to run it.
• Copy the lines from the below codebox to the clipboard by highlighting ALL of them and pressing CTRL + C
  (or, after highlighting, right-click and choose Copy): Do not include the word Code: which is just a title line of
  the code box

Code:

:Processes
explorer.exe
:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DataMngr]
[-HKEY_USERS\.DEFAULT\Software\DataMngr]
[-HKEY_USERS\.DEFAULT\Software\DataMngr_Toolbar]
[-HKEY_USERS\S-1-5-18\Software\DataMngr]
[-HKEY_USERS\S-1-5-18\Software\DataMngr_Toolbar]
:Commands
[purity]
[EmptyTemp]
[start explorer]
[Reboot]

• Return to OTM, right click in the Paste List of Files/Folders to Move window (under the yellow bar
  ) and choose Paste.
• Now click the large http://forums.majorgeeks.com/chaslang/images/MoveIt!.png button.
• If OTM asks to reboot your computer, allow it to do so. The report should appear in Notepad after the reboot.
• Close OTM.

Now navigate to the C:\_OTM\MovedFiles folder ( assuming your Windows drive is C). This is where your log will be
saved in the form of Date and Time mmddyyyy_hhmmss.log. Just look for the most recent .log file. Attach
this log file to your next message.


Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

• the C:\_OTM\MovedFiles log
• C:\MGlogs.zip

Make sure you tell me how things are working now!

 

You're welcome.

It is best to close browsers and all other programs to avoid potential problems with the fixes due to the other programs having file, folders, registry keys opened and locked and thus blocking fixes. You can leave the browser open up to the point where you are actually ready to run the fix. Before running, shutdown the browser.

Your logs are clean. Are you having any more problems?

 

Are you using CCleaner or similar to control startup processes?? I see the below all stuck in MSconfig registry keys but the do not seem to be due to using MSconfig itself

Also I still see Browser Manager installed. Did you not uninstall it when I requested in message #2 ?

 

Did you uninstall it now? Was it successful?

No! See the below which used to be part of the READ & RUN ME.

Dealing with Startup Process

 

It was always in it until recent changes to shorten up the process a little and to use new tools. You can see it in one of the old versions here: http://forums.majorgeeks.com/showthread.php?t=208809

Are you talking about for managing startups? If yes, try Autoruns instead. It was mentioned in that link too.


If you are not having any other malware problems, it is time to do our final steps:

1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
3. Go back to step 4 oof the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
6. If running Vista or Win 7, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
7. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
   related to MGtools and some other items from our cleaning procedures.
9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
   • Refer to the cleaning procedures pointed to by step 6 of the READ ME
     for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
   • Then reboot and Enable System Restore to create a new clean Restore Point.
10. After doing the above, you should work thru the below link:
    • How to Protect yourself from malware!

 

You need to move on. Your logs are clean. Just finish the final instructions and read them carefully. They do not say to run the cleaning steps again in step 8. It was explaining how to find the system restore instructions for your version of Windows.

 

You're welcome. Surf safely!