PC taken over google chrome

Before we continue I would like for you to use MSConfig to put this machine back into normal start up mode. Any other mode is primarily used for troubleshooting and diagnostic purposes. You should look into some third party software to control start up's.

Open up Hitman Pro and activate the free trial. Allow it to remove all that it finds, please.



What is this?

C:\Users\Ajay\AppData\Roaming\sm-558c83ea76dc5635cd68992d94c374b1.exe


http://img805.imageshack.us/img805/9659/rktigzy.gif Fix items using RogueKiller.

Double-click RogueKiller.exe to run. (Vista/7/8 right-click and select Run as Administrator)
When it opens, press the Scan button
Now click the Registry tab and locate these detections:

• [PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30c85a3d-1d96-4589-b63f-91fb7ef45a41} (C:\Program Files\Positive Finds\Extensions\30c85a3d-1d96-4589-b63f-91fb7ef45a41.dll) -> Found
• [PUP|Suspicious.Path|VT.PUP.Optional.PositiveFinds.SID.A] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Service Mgr PositiveFinds ("C:\ProgramData\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602\plugincontainer.exe") -> Found
• [PUP|Suspicious.Path|VT.PUP.Optional.PositiveFinds.SID.A] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Service Mgr PositiveFinds ("C:\ProgramData\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602\plugincontainer.exe") -> Found
• [PUP|Suspicious.Path|VT.PUP.Optional.PositiveFinds.SID.A] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Service Mgr PositiveFinds ("C:\ProgramData\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602\plugincontainer.exe") -> Found

Place a checkmark next to each of these items, leave the others unchecked.
Now press the Delete button.

...and the same for this entry on the tasks tab please....

• [Suspicious.Path] \SomotoUpdateCheckerAutoStart -- C:\Users\Ajay\AppData\Local\FilesFrog Update Checker\update_checker.exe (/auto) -> Found

When it is finished, there will be a log on your desktop called: RKreport[2].txt
Attach RKreport[2].txt to your next message. (How to attach)
Reboot the machine.

• Re run Hitman (just a scan) and attach new log.
• Re run Malware Bytes and let it remove anything else it may find. Attach a new log.
• Run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista, Windows7 or Win8) Then attach the new C:\MGlogs.zip file that will be created by running this.
• Let me know of any problems you may have encountered with the above instructions and also let me know how things are running!

 

You can delete it then.

Why is Hitman Pro still showing all that junk? Can you again try having it remove everything and once done, rescan yet again and attach a hopefully clean log please.