Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop-ups, Ads and new tabs infection


  • Please log in to reply
14 replies to this topic

#1 Bluelighter

Bluelighter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 04 May 2015 - 01:43 PM

On Easter my sister downloaded and installed an Easter screenssaver on this laptop for my daughter to see.  The computer was infected at that time. This is a Windows 7 machine.  I see several programs installed on that date, not just a screensaver.

 

I now find this laptop to be unter constant barrage from pop-up ads, ads coving the screen, new tabs and browser windows popping up. The all have ads are to buy random stuff but also many are ads or instructions to get anti-virus/malware programs.

 

Installed at that time were: 7-Zip 9.20, Digital More, Buzzdock, Easter Egg Island Packages and 3D desktop Bunny Screensaver.

 

Obviously some are malicious programs.

 

I haven't taken any steps yet to eradicate the problems. I wanted to make sure I did it right as I know little about these matters.

 

I only have Norton Internet Security installed on this computer. No other programs.

 

Thank you for your help.



BC AdBot (Login to Remove)

 


#2 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:34 PM

Posted 04 May 2015 - 01:49 PM

Hello, and welcome :)

Please follow the instructions below. If you do not understand anything, feel free to stop and ask.

MiniToolbox by Farbar

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore Points
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

===

AdwCleaner by Xplode

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator
  • The tool will start to update the database, please wait a bit.
  • Click on I agree button.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • DO NOT CLEAN ANYTHING! Removal will be done after analysis of the log.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R#].txt) will open in Notepad for review (where the largest value of # represents the most recent report).
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
Regards,
Alex

Edited by Alexstrasza, 04 May 2015 - 01:49 PM.


#3 Bluelighter

Bluelighter
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 04 May 2015 - 06:31 PM

Here are minitoolbox and adwcleaner.

 

MiniToolBox by Farbar  Version: 14-04-2015
Ran by Mark (administrator) on 04-05-2015 at 16:11:07
Running from "C:\Users\Mark\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: Satellite C655 Manufacturer: TOSHIBA
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Mark-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 00-26-6C-53-6B-1B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
   Physical Address. . . . . . . . . : 00-16-44-63-50-1E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::c9af:dc12:f48d:fe0b%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.4(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, May 04, 2015 4:00:56 PM
   Lease Expires . . . . . . . . . . : Monday, May 04, 2015 5:00:56 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 234886724
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-A3-8F-68-00-16-44-63-50-1E
   DNS Servers . . . . . . . . . . . : 71.10.216.1
                                       71.10.216.2
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{E40AE174-9330-4910-A3D5-4F94A7B2947A}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 40:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:380f:255f:3f57:fffb(Preferred)
   Link-local IPv6 Address . . . . . : fe80::380f:255f:3f57:fffb%44(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  71.10.216.1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Address:  2607:f8b0:4002:c03::71


Pinging google.com [74.125.137.101] with 32 bytes of data:
Reply from 74.125.137.101: bytes=32 time=85ms TTL=44
Reply from 74.125.137.101: bytes=32 time=73ms TTL=44

Ping statistics for 74.125.137.101:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 73ms, Maximum = 85ms, Average = 79ms
Server:  rns01.charter.com
Address:  71.10.216.1

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=47ms TTL=51
Reply from 206.190.36.45: bytes=32 time=44ms TTL=51

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 44ms, Maximum = 47ms, Average = 45ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...00 26 6c 53 6b 1b ......Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
 10...00 16 44 63 50 1e ......Atheros AR9285 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 46...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 44...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.4     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.4    281
      192.168.0.4  255.255.255.255         On-link       192.168.0.4    281
    192.168.0.255  255.255.255.255         On-link       192.168.0.4    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.4    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.4    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 44     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 44     58 2001::/32                On-link
 44    306 2001:0:9d38:6ab8:380f:255f:3f57:fffb/128
                                    On-link
 10    281 fe80::/64                On-link
 44    306 fe80::/64                On-link
 44    306 fe80::380f:255f:3f57:fffb/128
                                    On-link
 10    281 fe80::c9af:dc12:f48d:fe0b/128
                                    On-link
  1    306 ff00::/8                 On-link
 44    306 ff00::/8                 On-link
 10    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/03/2015 00:12:46 PM) (Source: TOSHIBA Service Station) (User: )
Description: TSS Load: could not communicate with TMachInfo service

Error: (05/03/2015 00:12:46 PM) (Source: TOSHIBA Service Station) (User: )
Description: Could not find file 'C:\Users\Mark\AppData\Local\Temp\y2bpfitg.dll'.

Error: (04/16/2015 08:15:21 PM) (Source: Windows Search Service) (User: )
Description: Performance monitoring cannot be initialized for the gatherer object, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer.

Context:  Application, SystemIndex Catalog

Error: (04/05/2015 03:29:01 AM) (Source: Application Hang) (User: )
Description: The program Skype.exe version 6.3.73.105 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 968

Start Time: 01d06f8ae7bd79fb

Termination Time: 16

Application Path: C:\Program Files (x86)\Skype\Phone\Skype.exe

Report Id:

Error: (02/14/2015 00:21:21 AM) (Source: Windows Search Service) (User: )
Description: Performance monitoring cannot be initialized for the gatherer object, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer.

Context:  Application, SystemIndex Catalog

Error: (01/16/2015 10:52:44 PM) (Source: Application Error) (User: )
Description: Faulting application name: rhapsody.exe, version: 4.0.6.14, time stamp: 0x4ec8881e
Faulting module name: httpfsys.dll, version: 10.0.0.16207, time stamp: 0x4e7cf92c
Exception code: 0xc0000005
Fault offset: 0x000050b0
Faulting process id: 0xd90
Faulting application start time: 0xrhapsody.exe0
Faulting application path: rhapsody.exe1
Faulting module path: rhapsody.exe2
Report Id: rhapsody.exe3

Error: (12/25/2014 07:09:00 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmpnetwk.exe, version: 12.0.7601.17514, time stamp: 0x4ce7ae7f
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x5315a05a
Exception code: 0x0000046b
Fault offset: 0x000000000000940d
Faulting process id: 0xc9c
Faulting application start time: 0xwmpnetwk.exe0
Faulting application path: wmpnetwk.exe1
Faulting module path: wmpnetwk.exe2
Report Id: wmpnetwk.exe3

Error: (11/11/2014 11:13:45 PM) (Source: Application Error) (User: )
Description: Faulting application name: FlashPlayerPlugin_15_0_0_189.exe, version: 15.0.0.189, time stamp: 0x54233581
Faulting module name: FlashPlayerPlugin_15_0_0_189.exe, version: 15.0.0.189, time stamp: 0x54233581
Exception code: 0xc0000005
Fault offset: 0x00041d78
Faulting process id: 0xa6c
Faulting application start time: 0xFlashPlayerPlugin_15_0_0_189.exe0
Faulting application path: FlashPlayerPlugin_15_0_0_189.exe1
Faulting module path: FlashPlayerPlugin_15_0_0_189.exe2
Report Id: FlashPlayerPlugin_15_0_0_189.exe3

Error: (11/07/2014 07:00:37 AM) (Source: Application Hang) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.17344 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 7f8

Start Time: 01cffa9309ba0399

Termination Time: 31

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id:

Error: (10/18/2014 07:33:34 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Deployment, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.


System errors:
=============
Error: (05/04/2015 04:00:54 PM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (05/04/2015 10:04:32 AM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (05/04/2015 02:21:05 AM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (05/03/2015 10:15:41 PM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (05/03/2015 09:48:11 PM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (05/03/2015 01:19:37 PM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (05/03/2015 00:10:52 PM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (05/02/2015 06:12:49 PM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (04/29/2015 07:41:04 PM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (04/28/2015 09:56:28 PM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2


Microsoft Office Sessions:
=========================


=========================== Installed Programs ============================
3D Desktop Bunny Rabbits Screensaver v1.0 Trial Version (HKLM-x32\...\DesktopRabbits) (Version:  - )
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.27 - Atheros Communications Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.2 - Atheros)
Best Buy pc app (HKCU\...\48e4cff94f039634) (Version: 3.1.2.0 - Best Buy)
Best Buy pc app (Version: 3.1.2.0 - Best Buy) Hidden
Best Buy pc app (x32 Version: 3.1.2.0 - Best Buy) Hidden
Buzzdock (HKLM-x32\...\{cfd32d46-7d3f-483f-bace-7172aec5592d}) (Version:  - Alactro LLC)
Cartoon Network (HKLM-x32\...\{4AE43B07-C452-4EE9-B5D8-0FD1F3396D31}) (Version: 1.04 - Brighter Minds Media)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.111.0.64 - Conexant)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Digital More (HKLM-x32\...\Digital More) (Version: 2.0.5572.37110 - Digital More)
Easter Egg Island Packages (HKCU\...\Easter Egg Island Packages) (Version:  - )
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Intel® Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2086 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java Auto Updater (x32 Version: 2.8.31.13 - Oracle Corporation) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Label@Once 1.0 (HKLM-x32\...\{0D795777-9D60-4692-8386-F2B3F2B5E5BF}) (Version: 1.0 - Corel)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Version: 4.5.51209 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 37.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 37.0.2 (x86 en-US)) (Version: 37.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.7.0.11 - Symantec Corporation)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)
Rhapsody (HKLM-x32\...\Rhapsody) (Version:  - )
santaski Screen Saver (HKLM-x32\...\santaski) (Version:  - Made with Individual Software's Screen Creator)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SpongeBob SquarePants - Nighty Nightmare (HKLM-x32\...\{ECAAC00F-74C7-4F1C-A110-F526ED630044}) (Version: 1.0 - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.8.1 - Synaptics Incorporated)
TOSHIBA Application Installer (HKLM-x32\...\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}) (Version: 9.0.1.0 - TOSHIBA)
TOSHIBA Assist (HKLM-x32\...\{1B87C40B-A60B-4EF3-9A68-706CF4B69978}) (Version: 3.00.10 - TOSHIBA)
TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{C14518AF-1A0F-4D39-8011-69BAA01CD380}) (Version: 1.6.07.64 - TOSHIBA Corporation)
TOSHIBA Bulletin Board (Version: 1.6.07.64 - TOSHIBA Corporation) Hidden
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.2 for x64 - TOSHIBA Corporation)
TOSHIBA Hardware Setup (HKLM-x32\...\{8E9CEA3B-EBD1-439C-A01D-830CB39613C6}) (Version: 2.00.04 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.6 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.6 - TOSHIBA Corporation) Hidden
TOSHIBA HDD/SSD Alert (x32 Version: 3.1.64.6 - TOSHIBA Corporation) Hidden
TOSHIBA Media Controller (HKLM-x32\...\{983CD6FE-8320-4B80-A8F6-0D0366E0AA22}) (Version: 1.0.80.3.64 - TOSHIBA CORPORATION)
TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.8.0 - TOSHIBA CORPORATION)
TOSHIBA Quality Application (HKLM-x32\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.0.3 - TOSHIBA)
TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.4 for x64 - TOSHIBA Corporation)
TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{A0E99122-25C1-4CA4-9063-499A2A814EB6}) (Version: 1.6.06.64 - TOSHIBA Corporation)
TOSHIBA ReelTime (Version: 1.6.06.64 - TOSHIBA Corporation) Hidden
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.1.40 - TOSHIBA)
TOSHIBA Supervisor Password (HKLM-x32\...\{073B89C3-BA88-41B5-965F-B35A88EAE838}) (Version: 2.00.03 - TOSHIBA Corporation)
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.3.3.64 - TOSHIBA Corporation)
TOSHIBA Value Added Package (Version: 1.3.3.64 - TOSHIBA Corporation) Hidden
TOSHIBA Value Added Package (x32 Version: 1.3.3.64 - TOSHIBA Corporation) Hidden
ToshibaRegistration (HKLM-x32\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.0.4 - Toshiba)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{02206DCC-0CAF-46BB-8EDC-6C281AA21EFA}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{02206DCC-0CAF-46BB-8EDC-6C281AA21EFA}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2920794) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BB006B39-9FD7-4DD5-942E-CDF1BBD718DB}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 3963.98 MB
Available physical RAM: 2308.27 MB
Total Pagefile: 7926.14 MB
Available Pagefile: 6168.67 MB
Total Virtual: 4095.88 MB
Available Virtual: 3985.5 MB

========================= Partitions: =====================================

1 Drive c: (TI105847W0F) (Fixed) (Total:222.47 GB) (Free:146.81 GB) NTFS

========================= Users: ========================================

User accounts for \\MARK-PC

Administrator            Guest                    Mark                     

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

25-02-2015 06:10:27 Windows Update
26-02-2015 06:14:50 Windows Update
11-03-2015 04:31:17 Windows Update
12-03-2015 04:30:36 Windows Update
25-03-2015 05:44:58 Windows Update
05-04-2015 02:49:51 Windows Update
15-04-2015 05:00:20 Windows Update
17-04-2015 01:12:11 Windows Update
17-04-2015 03:11:21 Windows Update

**** End of log ****
 

 

 

 

# AdwCleaner v4.203 - Logfile created 04/05/2015 at 16:21:59
# Updated 30/04/2015 by Xplode
# Database : 2015-05-02.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Mark - MARK-PC
# Running from : C:\Users\Mark\Desktop\adwcleaner_4.203.exe
# Option : Scan

***** [ Services ] *****

Service Found : Service Mgr DigitalMore

***** [ Files / Folders ] *****

File Found : C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\qn843nbn.default\searchplugins\Askcom.xml
File Found : C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\qn843nbn.default\user.js
Folder Found : C:\Program Files (x86)\Digital More
Folder Found : C:\ProgramData\Ask
Folder Found : C:\ProgramData\Partner
Folder Found : C:\Users\Mark\AppData\Local\PackageAware

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\3d-desktop-bunny-rabbits.en.softonic.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\nortonsafe.search.ask.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0E962AF0-B632-4345-AA5D-F4785FC99EDB}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C0B1016F-B7E5-46F0-B415-6BF9E55AB00D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C0B1016F-B7E5-46F0-B415-6BF9E55AB00D}
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0E962AF0-B632-4345-AA5D-F4785FC99EDB}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Found : [x64] HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C0B1016F-B7E5-46F0-B415-6BF9E55AB00D}
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\DigitalMore
Key Found : HKLM\SOFTWARE\InstallIQ
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C0B1016F-B7E5-46F0-B415-6BF9E55AB00D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{cfd32d46-7d3f-483f-bace-7172aec5592d}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Digital More
Key Found : HKU\.DEFAULT\Software\AskToolbar
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17728


-\\ Mozilla Firefox v37.0.2 (x86 en-US)

[qn843nbn.default] - Line Found : user_pref("browser.search.order.1", "Ask.com");

*************************

AdwCleaner[R0].txt - [3158 bytes] - [04/05/2015 16:21:59]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3217 bytes] ##########
 



#4 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:34 PM

Posted 05 May 2015 - 02:26 AM

Hi there,

Please uninstall the following software using Programs and Features:

Best Buy pc app (HKCU\...\48e4cff94f039634) (Version: 3.1.2.0 - Best Buy)
Buzzdock (HKLM-x32\...\{cfd32d46-7d3f-483f-bace-7172aec5592d}) (Version: - Alactro LLC)
Digital More (HKLM-x32\...\Digital More) (Version: 2.0.5572.37110 - Digital More)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)

If you need detailed instructions on how to do this, let me know.

===

Re-run AdwCleaner, but this time choose Cleaning for all detected objects.

===

Junkware Removal Tool

thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
===

In your next replies I will need:
  • Confirmation that you have uninstalled the programs above;
  • Logs from AdwCleaner and Junkware Removal Tool.
Regards,
Alex

#5 Bluelighter

Bluelighter
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 05 May 2015 - 10:51 AM

Hello,

I have unintalled the porgams above.

Here are my logs:

 

# AdwCleaner v4.203 - Logfile created 05/05/2015 at 08:13:49
# Updated 30/04/2015 by Xplode
# Database : 2015-05-02.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Mark - MARK-PC
# Running from : C:\Users\Mark\Desktop\adwcleaner_4.203.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Users\Mark\AppData\Local\PackageAware
File Deleted : C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\qn843nbn.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\qn843nbn.default\user.js

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C0B1016F-B7E5-46F0-B415-6BF9E55AB00D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C0B1016F-B7E5-46F0-B415-6BF9E55AB00D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C0B1016F-B7E5-46F0-B415-6BF9E55AB00D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C0B1016F-B7E5-46F0-B415-6BF9E55AB00D}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0E962AF0-B632-4345-AA5D-F4785FC99EDB}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\InstallIQ
Key Deleted : HKU\.DEFAULT\Software\AskToolbar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\3d-desktop-bunny-rabbits.en.softonic.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\nortonsafe.search.ask.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17728


-\\ Mozilla Firefox v37.0.2 (x86 en-US)

[qn843nbn.default\prefs.js] - Line Deleted : user_pref("browser.search.order.1", "Ask.com");

*************************

AdwCleaner[R0].txt - [3312 bytes] - [04/05/2015 16:21:59]
AdwCleaner[R1].txt - [2921 bytes] - [05/05/2015 08:12:37]
AdwCleaner[S0].txt - [2505 bytes] - [05/05/2015 08:13:49]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2564  bytes] ##########
 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.6.7 (04.30.2015:1)
OS: Windows 7 Home Premium x64
Ran by Mark on Tue 05/05/2015 at  8:26:37.06
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{002D0BD7-8181-4712-A2B4-5981F0B20B25}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{016F784B-A19B-4CE9-B319-633E53552D26}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{01DAA33C-C285-4B2E-A21A-A863F0423029}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{0255223D-1CCC-4063-A6B6-748A4351AA72}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{06270C9D-A459-4FB4-836C-950D85EE9330}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{07B0683E-0278-4AA4-8634-7937A1B0E042}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{0818F17B-4842-4ED2-AF0F-777FE99E5987}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{08CF10FA-6487-4A2D-A631-89DEB33DBECB}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{08EF1F61-A2C5-4313-A122-467275A0FFBE}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{09B4BAE6-F567-4D2F-B41D-6F255B37910A}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{0B183806-2531-4407-B4BC-C4682544695D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1135CB53-4BD7-4E5B-8546-2BF01CF309F5}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{11D57631-89E8-4685-BA2F-8575FE7D9171}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1439F01A-E95D-43DF-9459-F1EF7A22B5AF}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1639954F-6C72-4A8C-B6B2-5E48AB2F6882}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{16F9BA72-5281-45EA-AC70-0034FE360520}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{17DB9E83-1E72-4720-BB77-37E30085F1B1}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{17F68BC4-74E3-4D86-A39D-87AF282C0A6A}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{181AA873-D390-4F76-ACEC-5CCE5BA5F765}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1840D5CB-6890-43EF-87D7-3297221BE264}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1885E455-E551-41BC-B217-3FB71C336A80}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1C5C7345-B03D-4E91-AE6B-1F44E28A16D6}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1CD63AA8-7376-477F-99BD-6743EA64406D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1EABBF04-D883-4CBC-B1A2-EC5430D86731}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{1FE818B0-119A-425E-8269-0C043701CB13}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{222755EF-12AE-4DDA-B3FE-03BF7BA0327E}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{2453581B-2F43-41A4-B567-6777DAB95018}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{260483EC-F175-46E3-89A2-211815A9D28F}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{265C8919-A684-470D-968C-57AA44FE5C3B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{265CEB0E-AC9C-4097-B169-8D84694584BA}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{2979FB47-24FD-4282-B5EA-61722FEB411B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{2C9BAA48-2DF0-4EFF-BEE8-A6414C34A685}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{2D579453-7ECB-42A9-8C8D-2BD170ECB00B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{2EDB9186-6E6F-4ECC-9647-4AAACB54A6AD}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{3113FB95-37E2-4548-9789-EDB400D7808B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{3221307A-3F46-4CD7-9ACF-1CBD366FDD8A}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{37DF16F2-1271-4CC4-A26E-ACE910DA340F}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{38348A6D-B402-490C-9FD5-A153EB770B22}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{38AFF98B-146A-4079-81D4-9332C7057F34}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{39854E16-C6EA-4957-AB11-E59A241B441B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{3B803083-27BC-4CA1-908C-B2A44E6D6608}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{3C0A35B2-D70E-4E51-9874-649C39EABC14}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{3D08BB08-23ED-4239-8149-1261430C93AE}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{3D333EB9-A77A-4344-A01E-317AF1133BFA}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{3FCC9B60-DAE5-461D-BE05-564BAD539FBD}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{4020FF25-9EA6-48A7-875C-A6781C7CC435}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{41F66EB1-1982-43A9-9F7B-214BCF91E14C}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{44760077-9BF2-41C7-8DD6-C25E971D20E0}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{44C3FC62-8FCF-424C-8253-3AFB94A45079}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{452305E1-4B0B-49D7-AE7A-B33AD38233B3}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{469C8BB3-6AA6-4B37-A82B-74BF51BE0439}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{47089AC6-CF97-4FA0-A375-D77B9D2FBCA6}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{481AC566-5310-4117-93DC-2506E0032B28}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{48F43B05-368E-466B-B169-C208A470E9E5}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{4B6395A1-AD3B-4C2A-94E1-94FDA3CB2303}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{4CB0EB5E-B537-4AEE-836B-7CC6C094C83A}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{4D1C7EAA-558E-458B-816F-6CA596C203D2}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{4D35770A-AE64-4B46-8303-421D1A0CDB2B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{4E6DE409-0C8B-401F-A6A2-F314D56A288A}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{4FE9637A-088E-4050-B570-AF1A6D92DFD1}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{509348ED-0EB2-4C05-89F6-5E869FFBE59C}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{5296BACD-D327-46BD-8A4A-FCB18EE28A72}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{533C9A6E-0D4C-429C-BEFE-189CF3095435}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{534D7616-D8F6-439F-8663-1F9124D6BC59}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{56890F9C-712A-4833-B7CD-56AD06EF5916}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{5835804C-7302-44D0-A2FC-253E4592E8CC}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{590C26DA-5F4E-4D1A-97D7-406B5BB40A7B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{592087CC-C170-4C72-9C6E-C0F8CAEF3381}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{5D30F3C7-8D88-41CC-A347-A218CC93C89F}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{5DE33C90-1372-4CD6-A5FE-F920478316F4}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{6499A14D-16EA-4578-9FA5-FB5BA24FB11B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{65679A96-D517-4357-8E7A-C63DD27041F3}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{659D6040-7773-4CFE-B856-B52D709709A4}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{665DBC6A-6625-4B72-B306-21627C40323D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{673A9F42-50B9-4F95-8209-21DC4D76FEE7}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{68D6E486-1B08-4925-9D74-175CC8FE181D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{6AD8A22E-09EF-4F47-84DC-C57D9BC02CA3}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{6AEF5E8B-E5F4-4279-8FC5-FCADDA0D0DB0}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{6C1887E7-99B7-4133-A7CA-ED6D08850CDF}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{6CCA7B18-F27B-4970-9D91-3DFA5D562DD6}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{70DADBBB-1FEF-4B9B-BD80-82B999028A01}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{721B5D5F-5096-4C5C-9287-8EEE9DA42B01}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{74D64446-7EDB-4042-A713-BD98E158D42C}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{75A0797A-1C1A-44E3-A177-961BF8731567}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{7AFF0C91-641C-42F0-994D-8F63D9A006CE}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{7D08CCCE-2D1C-42A3-B8AF-A153A72C3BAB}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{7D40FD3F-918B-49B8-9DE9-7A7EDE51C608}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{7D52039C-F3A4-4C46-A6DA-C4F6998D03EB}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{80FCF4DF-6ADA-42DD-912B-CAF52C868420}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8129F14E-2C06-4FCA-BEA1-FC1DC012F542}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{818083CD-74F1-4B52-9EBE-03887BEE39B3}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8198F599-E14C-41DD-BC69-096C22D3FD52}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{81B88E9A-38A9-4285-ABD5-91369700A301}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{81D6A319-7269-433E-BA08-EF3ADCD63AF3}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8397BD4F-859F-4CC4-97FA-A7404D09DCB7}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{844EBD46-D14A-4C52-997A-293F3C4E81AD}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{85E4DC19-3A25-4187-818F-EB7E39AC187C}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{88B57F76-DF35-4283-B55D-291F6999D3E5}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8973C3C7-4658-4923-BFD0-AE8F67389886}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8A5EC3F7-7E85-435D-A2C4-AC95AC124F32}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8B212FC8-D632-42F4-A1BA-0984F48D8002}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8CF8423F-339B-4C41-B251-862E82A02C10}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8D6703EB-D1D0-4B1D-8A3F-C353BB527719}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8D9C2C94-0444-466E-97D9-810BC3CD3A86}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8DDB330B-E4F6-4026-9D01-FB55636CEAB4}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8EC234D0-2ED6-4167-A42F-CA4742217E13}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{8F68E24F-59BE-4E1E-A1BB-2A7351F65E14}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{90CE49FB-4F5E-4DFB-9CCD-C5EEA4A45C4F}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{9100C391-D016-47BB-91AD-84FAF5A5897F}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{92E2A391-DB02-4FB1-AE43-D4104962A888}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{9488702C-759D-4558-B303-6FF7E1850FD9}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{9494FBEE-5513-49D2-BEAE-65C49FF89D05}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{965FE420-F7BD-456F-9FE5-8E800A8C8C4E}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{97242359-569D-48C9-AF95-E35C1A89CEF6}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{97ECEA12-E5B5-4CAE-9FF7-E9B8167FC42F}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{99DD58FC-633D-40BD-90C9-9FA1E5F3F565}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{9D771335-825B-45CE-B9C2-EE35A818AEBF}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{9E531A72-B9E4-4D30-9531-E552EB55FDC8}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{9ED75176-6BF0-4A84-BC3A-C193262A69AE}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{A09F316A-64AA-43B6-8EAC-848E676993C4}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{A212E9E7-CC8C-43FE-B263-06C8A8B072CD}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{A3D1AB7A-E756-4B00-9BE9-341303A4B114}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{A407A017-944F-472C-9A9E-58B295D19F19}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{A66960CC-F0BD-40DF-AA4C-6B3E5D80D669}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{A6E8E8DE-0428-45F0-B663-7BDE7079F928}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{B226FDDB-861B-4B7F-AF1C-E65909DE333B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{B566D046-F749-49DA-A0F2-DECAFA2D199D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{B609ADB9-B6FD-4CD9-A88B-D10583D47E0D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{B68AB348-8ED7-45EB-802F-FB7069A0CA44}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{B81AD822-3A57-485C-8FC1-ECF2F4E1463B}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{B8210785-3BD0-46B9-9672-E29D0F89A6FA}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{B8A65E62-10FB-49BB-9285-A194DAFE7805}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{BA899B14-E3F6-41F3-9ACB-3FDE57F706DF}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{C2CC89FE-27F4-4DF7-97B3-64CF61741F8C}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{C30502C2-8654-4884-8574-7F468E7204CF}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{C5FE0EB9-3C48-4551-9A5E-DF1E3BF885D6}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{C641B4BA-5552-4E2A-9ED6-59DADFF1E7DB}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{C6A66029-B0BC-4F66-9AC6-E31FA1A7F297}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{C71F46B1-D22F-4F3C-95F2-0C8778E5AF19}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{C99F2C7E-ABF0-4B91-8ECB-BB36C1173363}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{CA09C1C3-EF50-47BB-9B94-1E436C74B04C}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{CA168309-1EBC-4978-A87E-053250E5B644}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{CAEE09D4-50FE-4DBD-BE9D-9EA981D8E020}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{CB0636D0-FA2E-4A5E-B8D0-91C2132318BD}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{D21AEEB8-FD34-45A7-8940-7BB43DA5827D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{D2D180B2-EE14-4F7E-85DD-81A878C08B88}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{D5DFFE09-8FEB-415D-A560-61078DA21BCA}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{D68D75EF-D98B-4E0A-BE28-7458690ED5B0}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{D6ACFB06-523F-4EEA-9DA4-CAE6078DC2CF}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{D7C5C1EA-03FC-4185-8772-0F7DD6815857}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{DA708ECC-6704-485F-AAE4-84E00817D0B9}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{DAE961EF-0152-4864-B5CE-E016B9BFC0A0}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{DB093A2F-1B83-476C-85A8-C5E85D634044}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{DD43EA7A-8D20-4AC4-A5D0-2E92317C7C6F}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{DDACEF70-0EFA-4A81-BC5B-3E7A81119E82}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{DFBDA397-0FED-4554-8EF8-E51CD79D635F}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E1229696-A41A-4DF4-A3D2-148A858A378D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E16B96EB-3F80-4278-992D-C0E696510C6C}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E319A7AC-17D7-46CF-954D-4E447F06B1AF}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E447D728-6BB5-4934-82A5-D9F38D53223C}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E55137FB-BE22-4409-AD60-9BB3AD8AC178}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E6A8EB52-9800-4FC7-9459-DD509DF7266E}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E6B18D2D-47DA-4DCB-AC28-4D4F7D094983}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E7D4D4B7-B37C-470B-935F-ED571D0B8550}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E8D7FF66-456E-4726-95DD-F95436711323}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{E931F029-322F-43BF-901E-141BF8616295}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{EA219DE0-D7EF-41D1-9F32-7A9FA5E4ABB1}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{EAD6A4C4-0CCE-4B46-8F2F-CD30CE902905}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{EC8B6F26-6AAA-4D21-B94F-E9F1774A1A58}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{EDBF0769-DCF9-4253-86A6-C1BF89B19557}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{EDF6EA04-9E45-4EC2-A01F-A3C8988B1FEB}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{EEA9E442-714E-42D5-A34B-85266D40A7D8}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{F46101FB-1279-428C-9FF8-F6B0FB7472F7}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{F72061FF-4EAA-4F26-B3D6-CD7B164CBF61}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{F8587229-8EC5-4238-A1C7-E8B023B5F499}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{F85F36B3-97CE-449E-B5EE-0A312E6F2B4D}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{F92C109E-5B2B-42B3-B7E3-5048EA1EDC67}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{F9F21753-0E7C-42C5-A68F-4A3336521141}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{FB8237BB-FADE-4481-8AA8-52B13CFBF3F8}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{FC38A7B9-7F82-400A-946D-946E50CA0F24}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{FEC68E68-4144-4E4F-B5DE-13D66A8DE4A7}
Successfully deleted: [Empty Folder] C:\Users\Mark\appdata\local\{FF9099EF-B502-4659-8216-29837B040BEB}
Successfully deleted: [Folder] C:\ProgramData\best buy pc app
Successfully deleted: [Folder] C:\Users\Mark\appdata\local\best buy pc app
Successfully deleted: [Folder] C:\windows\syswow64\ai_recyclebin



~~~ FireFox

Emptied folder: C:\Users\Mark\AppData\Roaming\mozilla\firefox\profiles\qn843nbn.default\minidumps [151 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 05/05/2015 at  8:32:41.37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#6 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:34 PM

Posted 05 May 2015 - 11:10 AM

Hi there,

Please follow the instructions below.

Malwarebytes Anti-Malware

Download Malwarebytes Anti-Malware from here.

Double click on the file mbam-setup-2.x.x.xxxx.exe to install the application. (x.x.xxxx is the version)
  • Follow the prompt. At the end place a checkmark in Launch Malwarebytes Anti-Malware, then choose Finish.
  • When MBAM opens it will says Your database is out of date. Choose Fix Now.
  • Click on the Scan tab at the top of the window, choose Threat Scan, then Scan Now.
  • If you receive a message that updates are available, choose Update Now button (the scan will start after updates are completed).
  • Please be patient as the scan will take some time.
  • If MBAM detected threats, choose Quarantine for all items, then click Apply Actions.
  • While still on the Scan tab, choose View detailed log. In the window that opens, click the Export button, choose Text file (*.txt) and save the log to your Desktop.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


===

ESET Online Scanner

You will need to use Internet Explorer for this scan.
  • Hold down Ctrl and click here to open ESET Online Scanner in a new window.
  • Click the ESET Online Scanner button.
  • Put a checkmark in "YES, I accept the Terms of Use."
  • Click Start.
  • Accept any security warnings from your browser.
  • Under Scan settings, put a checkmark in Scan Archives.
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Scan.
  • ESET Online Scanner will automatically update and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats.
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.
===

Reset your browsers to their default settings using these instructions.

===

Reset your router using instructions in here. Remember to set new credentials and a strong password for it.

How is the computer doing?

Regards,
Alex

#7 Bluelighter

Bluelighter
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 07 May 2015 - 12:30 PM

Hello,

I've done all except reset the router. Had trouble with cable company becuase of password etc, for the router. I will complete this today and post all results by tonight.

 

Thank you again.



#8 Bluelighter

Bluelighter
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 07 May 2015 - 11:06 PM

Here are the logs. All steps were completed. The ads etc, still showed after the malwarebytes/ESET scans but disappeared after I reset the browsers. I also reset the modem after that. Also the ESET scanner found a couple of things, but i didn't have them fixed as the instructions did not say to do that.  Should I do anything about those?  Here are the logs. The computer seems to be doing pretty good right now.

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 5/5/2015
Scan Time: 2:12:04 PM
Logfile: Malwarebytes threats.txt
Administrator: Yes

Version: 2.01.6.1022
Malware Database: v2015.05.05.05
Rootkit Database: v2015.04.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Mark

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 343568
Time Elapsed: 33 min, 39 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 14
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugincontainer, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\2, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\2bak, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\3, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\3bak, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\4, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\5, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\5bak, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\6, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\6bak, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e, , [4abfaee28bff0b2b10fdc406ae558e72],
PUP.Optional.DigitalMore.A, C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\updater, , [4abfaee28bff0b2b10fdc406ae558e72],

Files: 10
PUP.Optional.DigitalMore, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugincontainer.bak, , [62a72769c5c5d2643e79b698ea1cf808],
PUP.Optional.Mindspark.A, C:\Users\Mark\Downloads\SmileyCentral.exe, , [a366bcd48901092dc937123de81eb14f],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\temp, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\2\Plugin.exe, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\2bak\Plugin.exe, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\3bak\Plugin.exe, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\5\Plugin.exe, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\5bak\Plugin.exe, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\6\Plugin.exe, , [2ddc0e823e4c0234bd4f15b5bf44c33d],
PUP.Optional.DigitalMore.A, C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\6bak\Plugin.exe, , [2ddc0e823e4c0234bd4f15b5bf44c33d],

Physical Sectors: 0
(No malicious items detected)


(end)

 

ESET scanner

C:\Users\Mark\AppData\Local\Temp\APNStub.exe    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application
C:\Users\Mark\AppData\Roaming\0A1Q1J1G1F2W1I1P1Q1N1P0P2Y1S\Easter Egg Island Packages\uninstaller.exe    a variant of Win32/InstallCore.ZC potentially unwanted application
 



#9 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:34 PM

Posted 08 May 2015 - 02:23 AM

Hi there,

Please re-run ESET Online Scanner and choose to let it automatically Quarantine everything it found before the scan.

Regards,
Alex

#10 Bluelighter

Bluelighter
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 09 May 2015 - 06:53 AM

Hi,

 

I re-ran the ESET scanner and quarantined the files.



#11 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:34 PM

Posted 09 May 2015 - 07:01 AM

Hi there,

How is the computer doing?

Alex

#12 Bluelighter

Bluelighter
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 09 May 2015 - 02:49 PM

The ads and such have all disappeared. I haven't had anything popping up since after resetting the browsers.



#13 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:34 PM

Posted 09 May 2015 - 03:01 PM

That should do it.

Okay... now we just need to clean things up and you are good to go.

Download DelFix from here and save it to your Desktop.
  • Close all running programs and start DelFix.
  • Make sure all available options are checked.
  • Click Run.
  • DelFix will remove the most of the tools used during the cleaning process.
You can uninstall ESET Online Scanner from Programs and Features in Control Panel.

I suggest that you keep Malwarebytes however - it makes a great companion to Norton Internet Security in freeware mode, and even moreso in premium version.

Keep your non-Microsoft applications updated as well
Microsoft isn't the only company whose products can contain security vulnerabilities, to check for other vulnerable programs running on your PC that are in need of an update, you can use the Secunia Personal Software Inspector - I suggest that you run it at least once a month.

Malwarebytes Anti-Exploit
Malwarebytes Anti-Exploit (MBAE) is a very useful utility in keeping your computer safe on the Internet. It uses innovative technologies to block exploits - peepholes in software that cybercriminals can use to get their malware into your system, thus stopping their advance before they can drop their payload. What's more, it's a "fire and forget" solution - just install MBAE and it will automatically do its job.
Malwarebytes Anti-Exploit Free offers protection for your browsers - upgrading to Premium allows you to create customized shields for other applications.

Safe computing practices

Best Practices for Safe Computing - Prevention of Malware Infection
How Malware Spreads - How did I get infected
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs)

If you have any questions left, feel free to ask me here.

Regards,
Alex

#14 Bluelighter

Bluelighter
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 10 May 2015 - 01:44 AM

Hello,

 

I downloaded the delfix file and attempted to run it. Norton blocked it from running. It said it was SONAR.Heuristic.130. Is this corrrect? Not sure what step to take next here.



#15 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:34 PM

Posted 10 May 2015 - 01:46 AM

Hi there,

Please disable Norton for the time being - tools that we use here at BC are all safe.

Alex




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users