Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with adware.Bho?


  • Please log in to reply
20 replies to this topic

#1 Allen

Allen

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 09:25 AM

I decided to scan with Mbam because internet explorer low mic was coming on randomly and I was not using it so I ran a scan and here is the log



Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 7916

Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421

10/10/2011 11:20:22 AM
mbam-log-2011-10-10 (11-20-22).txt

Scan type: Quick scan
Objects scanned: 161528
Time elapsed: 6 minute(s), 38 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Users\bigal\AppData\Local\Temp\somoto_chrome.exe (Adware.BHO) -> Quarantined and deleted successfully.
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

BC AdBot (Login to Remove)

 


#2 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 09:27 AM

Right now I'm running a full scan and once its done Ill post the log
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#3 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 09:59 AM

and something just changed my clock time
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#4 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 10:17 AM

full scan log

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 7916

Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421

10/10/2011 12:16:21 PM
mbam-log-2011-10-10 (12-16-21).txt

Scan type: Full scan (C:\|)
Objects scanned: 294683
Time elapsed: 54 minute(s), 45 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#5 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 10:32 AM

running superantispyware
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#6 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 10:36 AM

log:


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 10/10/2011 at 12:32 PM

Application Version : 5.0.1128

Core Rules Database Version : 7773
Trace Rules Database Version: 5585

Scan type : Quick Scan
Total Scan Time : 00:06:02

Operating System Information
Windows Vista Business 32-bit, Service Pack 2 (Build 6.00.6002)
UAC On - Limited User (Administrator User)

Memory items scanned : 677
Memory threats detected : 0
Registry items scanned : 29681
Registry threats detected : 0
File items scanned : 9943
File threats detected : 159

Adware.Tracking Cookie
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\bigal@adcentriconline[1].txt [ /adcentriconline ]
.collective-media.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\bigal@doubleclick[1].txt [ /doubleclick ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\8CVOIMAW.txt [ /apmebf.com ]
.microsoftwindows.112.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.microsoftwlsearchcrm.112.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\8VU7MBGN.txt [ /content.yieldmanager.com ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\L9JVP5JR.txt [ /mediaplex.com ]
.paypal.112.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\ZVMMZ7D9.txt [ /ad.yieldmanager.com ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\HCSW65KS.txt [ /realmedia.com ]
.liveperson.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.liveperson.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.msnportal.112.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\NSYKS75S.txt [ /serving-sys.com ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\5YI8G8AF.txt [ /invitemedia.com ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\F7ZEGJLX.txt [ /atdmt.com ]
.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\CBPMROEZ.txt [ /lucidmedia.com ]
.imrworldwide.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\IJF3YPC6.txt [ /content.yieldmanager.com ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\A4HOMD7O.txt [ /casalemedia.com ]
.imrworldwide.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\W801JTE0.txt [ /fastclick.net ]
vlc-media-player.en.softonic.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
vlc-media-player.en.softonic.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\Users\bigal\AppData\Roaming\Microsoft\Windows\Cookies\PYZ02XAI.txt [ /tribalfusion.com ]
vlc-media-player.en.softonic.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
vlc-media-player.en.softonic.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
vlc-media-player.en.softonic.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\USERS\BIGAL\AppData\Roaming\Microsoft\Windows\Cookies\Low\bigal@collective-media[2].txt [ Cookie:bigal@collective-media.net/ ]
C:\USERS\BIGAL\AppData\Roaming\Microsoft\Windows\Cookies\Low\bigal@atdmt[2].txt [ Cookie:bigal@atdmt.com/ ]
C:\USERS\BIGAL\AppData\Roaming\Microsoft\Windows\Cookies\Low\RJS0CCCN.txt [ Cookie:bigal@doubleclick.net/ ]
.xiti.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.solvemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.solvemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\USERS\BIGAL\Cookies\8CVOIMAW.txt [ Cookie:bigal@apmebf.com/ ]
C:\USERS\BIGAL\Cookies\8VU7MBGN.txt [ Cookie:bigal@content.yieldmanager.com/ ]
C:\USERS\BIGAL\Cookies\L9JVP5JR.txt [ Cookie:bigal@mediaplex.com/ ]
.dmtracker.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\USERS\BIGAL\Cookies\ZVMMZ7D9.txt [ Cookie:bigal@ad.yieldmanager.com/ ]
C:\USERS\BIGAL\Cookies\bigal@adcentriconline[1].txt [ Cookie:bigal@adcentriconline.com/ ]
C:\USERS\BIGAL\Cookies\HCSW65KS.txt [ Cookie:bigal@realmedia.com/ ]
C:\USERS\BIGAL\Cookies\F7ZEGJLX.txt [ Cookie:bigal@atdmt.com/ ]
C:\USERS\BIGAL\Cookies\bigal@doubleclick[1].txt [ Cookie:bigal@doubleclick.net/ ]
media.gameboy.ign.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
C:\USERS\BIGAL\Cookies\CBPMROEZ.txt [ Cookie:bigal@lucidmedia.com/ ]
C:\USERS\BIGAL\Cookies\IJF3YPC6.txt [ Cookie:bigal@content.yieldmanager.com/ak/ ]
C:\USERS\BIGAL\Cookies\W801JTE0.txt [ Cookie:bigal@fastclick.net/ ]
C:\USERS\BIGAL\Cookies\PYZ02XAI.txt [ Cookie:bigal@tribalfusion.com/ ]
.microsoftxbox.112.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.www.burstnet.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.burstnet.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
www.burstnet.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
www.burstnet.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.burstnet.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
server.iad.liveperson.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.r1-ads.ace.advertising.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.adcentriconline.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.adtechus.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.getclicky.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.static.getclicky.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
in.getclicky.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.microsoftsto.112.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.account.live.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.account.live.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
www.mediafire.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.partypoker.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.internet-security-serial.blogspot.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.internet-security-serial.blogspot.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.internet-security-serial.blogspot.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.youserials.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.youserials.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.youserials.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.js.pixelrevenue.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.tripod.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.tripod.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.wegotmedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.wegotmedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.wegotmedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
.avgtechnologies.112.2o7.net [ C:\USERS\BIGAL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1II99Q3P.DEFAULT\COOKIES.SQLITE ]
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:55 PM

Posted 10 October 2011 - 10:52 AM

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.



Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning
.

Edited by boopme, 10 October 2011 - 10:54 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 11:11 AM

do I really need to run gmer?
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#9 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 11:17 AM

crap found a virus
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:55 PM

Posted 10 October 2011 - 11:51 AM

only if you wany to guess you have no rootkits.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 11:51 AM

all i got is 2 win32/installcore.c applications and win32/softonicdownload.a appliction
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:55 PM

Posted 10 October 2011 - 11:53 AM

what does that mean?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 11:54 AM

ill post log when its done
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#14 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 12:14 PM

C:\Users\bigal\AppData\Local\Temp\ICReinstall\cnet_uiso9_pe_exe.exe a variant of Win32/InstallCore.C application cleaned by deleting - quarantined
C:\Users\bigal\Downloads\cnet_uiso9_pe_exe.exe a variant of Win32/InstallCore.C application cleaned by deleting - quarantined
C:\Users\bigal\Downloads\SoftonicDownloader_for_photoscape.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.

#15 Allen

Allen
  • Topic Starter

  • Members
  • 337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:06:55 PM

Posted 10 October 2011 - 12:18 PM

I'm now running a full scan with superantispyware
Hey everyone I'm Allen I am a young web developer/designer/programmer I also help people with computer issues including hardware problems, malware/viruses infections and software conflicts. I am a kind and easy to get along with person so if you need help feel free to ask.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users