From what I can find it seems to be a "regulation" Browser Hijacker.
Take each step 1 at a time, and do not rush beyond what you can do (ask if you have any problems)
Do not download Spy-Hunter or other Registry Cleaners as some sites ask you to do.............
Always look in Programs and Features for any mention of this or a Similar installed program ..
VPlay has been mentioned as a likely suspect for including this Hijacker.
Right click on your F/fox shortcut and select Properties,. Please remove the extension after Mozilla Firefox
Any other browsers will show the similar extensions (Internet Explorer or Google Chrome)
Please download avast! Browser Cleanup
This tool serves to delete pesky and unwanted toolbars and plug-ins from your browser(s).
Simply download and run the Browser Cleanup utility. Once you run the utility, you will see a list of bad and good toolbars and plug-ins and be able to disable or to remove them.
More general info here: http://www.avast.com/faq.php?article=AVKB115
Now - Please download RKill by Grinler to your desktop
- If you have an old version, please delete it first
- Right click on the new Red icon and select Run as Administrator
- A black DOS box will appear for a short time and then disappear.
- This is normal and indicates the tool ran successfully.
- At most the tool will usually run for about 2 minutes
- Please Copy and Paste the small log back here.
Do not reboot your computer until you complete the next step.
Next :If you have this program installed, open it and hit Uninstall first.
- Download AdwCleaner by Xplode from Here or Here and save to your Desktop.
- Double-click on AdwCleaner.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
- Click on the Scan button (only once)
- AdwCleaner will begin...be patient as the scan may take some time to complete.
- After the scan has finished, click on the Report button only once for accuracy.
- A report (AdwCleaner[R0].txt) will open in Notepad for your review.
- Check the listed removals and see if you are OK with them.
- If you have questions, post the Report log back here.
- Click on the Clean button only once for accuracy
- Press OK when asked to close all programs and follow the onscreen prompts.
- Press OK finally to allow AdwCleaner to Restart the computer and complete the removal process.
- After rebooting, a log report (AdwCleaner[S0].txt) will open automatically.
- **Copy and Paste the contents of that log in your next reply.**
- To restore an item that has been deleted by accident : Open the program again,
- Go to Tools (top left) > Quarantine Manager > check what you want restored > now click on Restore.
Note: With most Adware / Junkware / PUPs it is strongly recommended to deal with it like a legitimate program and uninstall from Programs and Features or Add/Remove Programs in the Control Panel. In many cases, using the uninstaller of the adware not only removes the adware more effectively, but it also restores any changed configuration. After uninstallation, then you can run specialized tools like AdwCleaner and JRT to fix any remaining entries they may find.
After the reboot and posting the logs please continue .....
Please download Malwarebytes Anti-Malware
If you’re having problems with Firefox, resetting it can help. The reset feature fixes many issues by restoring Firefox to its factory default state while saving your essential information like bookmarks, passwords, web form auto-fill information, browsing history and open tabs.
In the upper-right corner of the Firefox window, click the Firefox menu button (), then click on the Help ( ? ) button.
From the Help menu, choose "Troubleshooting Information".
If you’re unable to access the Help menu, type "about:support" in your address bar to bring up the Troubleshooting information page.
Click the “Reset Firefox” button in the upper-right corner of the “Troubleshooting Information” page.
To continue, click on the “Reset Firefox” button in the new confirmation window that opens.
Firefox will close itself and will revert to its default settings. When it’s done, a window will list the information that was imported. "Click on the Finish“.
Note: Your old Firefox profile will be placed on your desktop in a folder named “Old Firefox Data“. If the reset didn’t fix your problem you can restore some of the information not saved by copying files to the new profile that was created. If you don’t need this folder any longer, you should delete it as it contains sensitive information.
If you have problems with Internet Explorer, or Chrome, these should be reset to original settings.
This should be done with Internet Explorer open, not Firefox
Click Tools or the Gear icon at the top of the browser > Go down the list to click on Internet Options > Go across to the last tab that should be Advanced > Click on Advanced and then Reset (near the bottom) > You should get a Confirm box pop up > Tick Delete Personal Settings and now Reset.
This last part may be where the infection changed things -
Once the settings have all been reset, Close that box. Close any other open boxes. Now close I.E. and Reboot your computer.
Run ESET Online Scanner.
- For Internet Explorer users only, hold down Control (Ctrl) and click on This Link to open ESET OnlineScan in a new window.
- Click the ESET Online button.
- For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
- Click on esetsmartinstaller_enu. to download the ESET Smart Installer. Save it to your desktop.
- Double click on the esetsmartinstaller_enu icon on your desktop.
- Click the Start button.
- Accept any security warnings from your browser.
- Under scan settings, check "Scan Archives and Remove Threats"
- Click Advanced settings and select the following:
Scan potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth technology
- ESET will then download updates for itself, install itself, and begin scanning your computer.
- Please be patient as this will take some time (2 hours is not unusual for a first scan).
- When the scan completes, click List Threats
- Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
- Click the Back button.
- Click the Finish button.
NOTE:Sometimes if ESET finds no infections it will not create a log.
Now, please report back with the Logs (they can be in individual posts) and if the computer is any better.
Thank You -