Your computer might be at risk pop up

October 31, 2016 at 19:52:15
Specs: Windows 7, 3.40 GHz
Hi,

I randomly get this pop up from the bottom right corner of my screen.
It crashes the whatever I'm using at that moment, I'm using Microsoft Security Essentials

I don't have the screenshot for exact same error that popped up on my screen, but I found one that looks close to it.
What do I need to do fix this pop up and completely delete it from computer?

http://tinypic.com/r/10r4ccg/9

message edited by resources397


See More: Your computer might be at risk pop up

Reply ↓  Report •


#1
October 31, 2016 at 20:21:44
Looks like Halloween activated a lot of malware!

Take a pick from the RESCUE CD (or USB) images to run an offline virus/malware scan:
https://www.google.com.ph/search?q=...


Reply ↓  Report •

#2
October 31, 2016 at 21:06:11
I would run Malwarebytes first and post back the log here for review.

You have to be a little bit crazy to keep you from going insane.


Reply ↓  Report •

#3
October 31, 2016 at 21:48:02
I download any of the programs on this site and post the logs here?
https://www.lifewire.com/free-boota...

Which one do you think I should use?

Not quite getting this part

Note: In general, getting a bootable antivirus program up and running requires that you take the ISO image provided and then, from a working computer, burn it to a disc or burn it to a USB drive. Next you'll need to boot from the disc or boot from the flash drive on the infected PC. More details are available in my reviews and on the bootable AV program websites.

message edited by resources397


Reply ↓  Report •

Related Solutions

#4
November 1, 2016 at 03:29:05
Check this post, response #1 where there's a list of cleaner/pest remover apps which to download and run. All free and safe to use.

http://www.computing.net/answers/ma...


Reply ↓  Report •

#5
November 1, 2016 at 04:49:24
Yes, use the cleaners suggested in #4 first as they often find what antivirus programs miss. ADWCleaner in particular is focussed on browser malware. If you need to review your AV we can help with that later.

Always pop back and let us know the outcome - thanks


Reply ↓  Report •

#6
November 3, 2016 at 17:19:38
# AdwCleaner v6.030 - Logfile created 03/11/2016 at 17:14:36
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-03.2 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : User - HP-PC
# Running from : D:\Users\User\Downloads\adwcleaner_6.030.exe
# Mode: Scan
# Support : https://www.malwarebytes.com/support

***** [ Services ] *****

Service Found: Update Jump Flip
Service Found: backlh
Service Found: Amazon 1Button App Service


***** [ Folders ] *****

Folder Found: C:\Program Files (x86)\Jump Flip
Folder Found: C:\Users\User\AppData\Local\genienext
Folder Found: C:\Users\User\AppData\Local\Mobogenie
Folder Found: C:\Users\User\AppData\Local\SearchProtect
Folder Found: C:\Users\User\AppData\Local\YSearchUtil
Folder Found: C:\Users\User\AppData\Local\jawego
Folder Found: C:\Users\User\AppData\LocalLow\Check Point Software Technologies LTD
Folder Found: C:\Users\User\AppData\Roaming\newnext.me
Folder Found: C:\Users\User\AppData\Roaming\OpenCandy
Folder Found: C:\Users\User\AppData\Roaming\Systweak
Folder Found: C:\Users\User\AppData\Roaming\UpdaterEX
Folder Found: C:\Users\User\AppData\Roaming\Event Monitor
Folder Found: C:\Users\User\AppData\Roaming\Systweak\Advanced System Protector
Folder Found: D:\Users\User\Documents\Mobogenie
Folder Found: C:\ProgramData\apn
Folder Found: C:\ProgramData\Systweak
Folder Found: C:\ProgramData\Logic Handler
Folder Found: C:\ProgramData\jawego
Folder Found: C:\ProgramData\Systweak\Advanced System Protector
Folder Found: C:\ProgramData\Application Data\apn
Folder Found: C:\ProgramData\Application Data\Systweak
Folder Found: C:\ProgramData\Application Data\Logic Handler
Folder Found: C:\ProgramData\Application Data\jawego
Folder Found: C:\ProgramData\Application Data\Systweak\Advanced System Protector
Folder Found: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
Folder Found: C:\Program Files (x86)\Advanced System Protector
Folder Found: C:\Program Files (x86)\Jump Flip
Folder Found: C:\Program Files (x86)\Mobogenie
Folder Found: C:\Program Files (x86)\SearchProtect
Folder Found: C:\Program Files (x86)\Amazon\Amazon1ButtonApp
Folder Found: C:\Users\User\AppData\Local\Temp\apn
Folder Found: C:\Users\User\AppData\Local\Temp\DriverUpdaterPlus
Folder Found: C:\Windows\SysWOW64\config\systemprofile\AppData\Local\YSearchUtil


***** [ Files ] *****

File Found: C:\Windows\SysNative\roboot64.exe
File Found: C:\Windows\SysNative\sasnative64.exe
File Found: C:\Windows\SysNative\LavasoftTcpService64.dll
File Found: C:\Windows\SysNative\LavasoftTcpServiceOff.ini
File Found: C:\Windows\SysWOW64\findit.xml
File Found: C:\Windows\SysWOW64\lavasofttcpservice.dll
File Found: C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini
File Found: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\extensions\jid1-16aeif9OQIRKxA@jetpack.xpi
File Found: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\searchplugins\ask-web-search.xml
File Found: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\searchplugins\bing-lavasoft.xml
File Found: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\searchplugins\yahoo! powered.xml


***** [ DLL ] *****

No malicious DLLs found.


***** [ WMI ] *****

No malicious keys found.


***** [ Shortcuts ] *****

No infected shortcut found.


***** [ Scheduled Tasks ] *****

Task Found: RunAtStartup
Task Found: UpdaterEX
Task Found: RunAtStartup


***** [ Registry ] *****

Key Found: HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
Key Found: HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
Key Found: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
Key Found: [x64] HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
Key Found: [x64] HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
Key Found: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
Key Found: HKLM\SOFTWARE\Classes\AppID\{7F46C358-270D-4791-A579-AD1DDA1A3F7B}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
Key Found: HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Found: HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Key Found: HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Key Found: HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Key Found: HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Key Found: HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}
Key Found: HKLM\SOFTWARE\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
Key Found: HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
Key Found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
Key Found: HKU\.DEFAULT\Software\AskPartnerNetwork
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\distromatic
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\DriverTuner
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\DriverTuner_Init
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\InstallCore
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Jawego
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\PRODUCTSETUP
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Softonic
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\UpdaterEX
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\PC
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\systweak
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\csastats
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Event Monitor
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\ICSW1.22
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\wondershare
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found: HKU\S-1-5-18\Software\AskPartnerNetwork
Key Found: HKCU\Software\distromatic
Key Found: HKCU\Software\DriverTuner
Key Found: HKCU\Software\DriverTuner_Init
Key Found: HKCU\Software\InstallCore
Key Found: HKCU\Software\Jawego
Key Found: HKCU\Software\PRODUCTSETUP
Key Found: HKCU\Software\Softonic
Key Found: HKCU\Software\UpdaterEX
Key Found: HKCU\Software\PC
Key Found: HKCU\Software\systweak
Key Found: HKCU\Software\csastats
Key Found: HKCU\Software\Event Monitor
Key Found: HKCU\Software\ICSW1.22
Key Found: HKCU\Software\wondershare
Key Found: HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found: HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found: HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found: HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Found: HKLM\SOFTWARE\Jawego
Key Found: HKLM\SOFTWARE\PC
Key Found: HKLM\SOFTWARE\systweak
Key Found: HKLM\SOFTWARE\Event Monitor
Key Found: HKLM\SOFTWARE\mtQuotenamron
Key Found: HKLM\SOFTWARE\wondershare
Key Found: [x64] HKCU\Software\distromatic
Key Found: [x64] HKCU\Software\DriverTuner
Key Found: [x64] HKCU\Software\DriverTuner_Init
Key Found: [x64] HKCU\Software\InstallCore
Key Found: [x64] HKCU\Software\Jawego
Key Found: [x64] HKCU\Software\PRODUCTSETUP
Key Found: [x64] HKCU\Software\Softonic
Key Found: [x64] HKCU\Software\UpdaterEX
Key Found: [x64] HKCU\Software\PC
Key Found: [x64] HKCU\Software\systweak
Key Found: [x64] HKCU\Software\csastats
Key Found: [x64] HKCU\Software\Event Monitor
Key Found: [x64] HKCU\Software\ICSW1.22
Key Found: [x64] HKCU\Software\wondershare
Key Found: [x64] HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DCCCD6BD02558446B24CF1C63EC213C
Key Found: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DCCCD6BD02558446B24CF1C63EC213C
Data Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://ca.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_32&
Data Found: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://ca.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_32¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dca%26pa
Data Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxps://ca.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_32¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dca%26pa
Data Found: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://ca.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_32¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dca%26
Data Found: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxps://ca.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_32¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dca%26
Value Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
Data Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] -
Value Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1016\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
Value Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
Key Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
Data Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] -
Value Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
Key Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146}
Value Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
Data Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] -
Key Found: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Data Found: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] -
Key Found: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\gom-player.en.softonic.com
Key Found: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\softonic.com
Key Found: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\amazonbrowserapp.com
Key Found: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\analytics.app.amazonbrowserapp.com
Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\gom-player.en.softonic.com
Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\softonic.com
Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\amazonbrowserapp.com
Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\analytics.app.amazonbrowserapp.com
Value Found: HKU\S-1-5-21-701823140-1181138365-1562559200-1000\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Value Found: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Value Found: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Key Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\SEARCHSCOPES\IELNKSRCH
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found: HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
Key Found: HKLM\SOFTWARE\Classes\f
Key Found: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Key Found: HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\IELNKSRCH
Key Found: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SilentProcessExit\Quotenamron.exe


***** [ Web browsers ] *****

Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "browser.search.defaultenginename" - "Yahoo! Powered"
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "browser.search.selectedEngine" - "Yahoo! Powered"
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.toolbar.mindspark._4zMembers_.lastActivePing" - "1447815115362"
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.toolbar.mindspark.hp.enabled" - false
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.toolbar.mindspark.hp.enabled.guid" - ""
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.toolbar.mindspark.lastInstalled" - "videodownloadconverter@mindspark.com"
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.zonealarm.hmpgUrl" - "hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=en&gu=d2707283dcba414383f7b32c1
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.zonealarm.kw_url" - "hxxp://search.zonealarm.com/search?src=sp&tbid=HFA5&Lan=en&gu=d2707283dcba414383f7
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.zonealarm.newTabUrl" - "hxxp://search.zonealarm.com/?src=nt&tbid=HFA5&Lan=en&gu=d2707283dcba414383f7b32
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.zonealarm.srchPrvdr" - "Search By ZoneAlarm"
Firefox pref Found: [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\8s40d232.default\prefs.js] - "extensions.zonealarm.tlbrSrchUrl" - "hxxp://search.zonealarm.com/search?src=tb&tbid=HFA5&Lan={dfltLng}&gu=d2707283
No malicious Chromium based browser items found.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [18622 Bytes] - [03/11/2016 17:14:36]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [18696 Bytes] ##########


Reply ↓  Report •

#7
November 3, 2016 at 18:03:55
Plenty there. Run the "Clean" (Scan again first) if you haven't already.

We'll await the other logs - thanks.

Always pop back and let us know the outcome - thanks

message edited by Derek


Reply ↓  Report •

#8
November 3, 2016 at 19:23:23
Okay I've cleaned it scanned it again and cleaned it again rebooted computer.

Also downloaded rescue disk and have usb.

Path to the Anti Rescue disk image ( Rescue.iso):
D:\Users\User\Downloads\rescuedisk11\Rescue.iso

Is the above the correct path?

What does USB medium below mean?
Which one do I select from the list?

Do I stick usb into desktop and start burning??


Thanks for your help again



Reply ↓  Report •

#9
November 3, 2016 at 20:00:06
One solution to create a bootable USB pen drive:
https://rufus.akeo.ie/

if you do not want to download any software try this: (be careful with selecting the right drive!!)
http://www.instructables.com/id/How...


Reply ↓  Report •

#10
November 4, 2016 at 01:18:58
This explains how to boot with Kaspersky from a usb device.

https://support.kaspersky.com/8092

And this may be useful too

http://www.howtogeek.com/howto/3640...

message edited by trvlr


Reply ↓  Report •


Ask Question