Note: I will upload all logs after my computer restarts (again).
DNS Unlocker
- Thread starter BellaNove88
- Start date
Ok, so upon attempting to upload the .txt files for malwarebytes, I received the error stating that the upload file is empty. When I open the file, it has information in it.
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 1/26/2016
Scan Time: 11:04 PM
Logfile: Malwarebytes.1.26.16.run.1.txt
Administrator: Yes
Version: 2.2.0.1024
Malware Database: v2016.01.27.01
Rootkit Database: v2016.01.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: Samantha
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 343606
Time Elapsed: 19 min, 40 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 2
PUP.Optional.CloudScout, HKLM\SOFTWARE\5da059a482fd494db3f252126fbc3d5b, Quarantined, [316cc87660398fa7f47a54ab2cd7847c],
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [900df6486237f83e5017efd1dc27d927],
Registry Values: 3
PUP.Optional.OneSystemCare, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|SystemCash.exe, 11000, Quarantined, [6538033bf9a05cda49146cce897b639d]
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, {searchTerms} - Bing, Quarantined, [900df6486237f83e5017efd1dc27d927]
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURL, {searchTerms} - Bing, Quarantined, [e1bca39bb0e944f2d493794737cccd33]
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 12
PUP.Optional.DownloadAssist, C:\$Recycle.Bin\S-1-5-21-1183068579-2748756526-997132385-1001\$RQ3SK42.exe, Quarantined, [f5a83b03396055e1ee9bc5249e66dc24],
PUP.Optional.PricePeep, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, Quarantined, [683556e826736dc94184dd047d8649b7],
PUP.Optional.ReMarkable, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Quarantined, [9a03c5795e3b6bcbfed6885b8b78aa56],
PUP.Optional.ReMarkable, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Quarantined, [9c01013db7e29c9aad275e85956eed13],
PUP.Optional.PastaLeads, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage, Quarantined, [9508b6886831063032cb55abab59bd43],
PUP.Optional.PastaLeads, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage-journal, Quarantined, [f5a8221c72272b0bec11a55b798b12ee],
PUP.Optional.BestPriceNinja, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage, Quarantined, [89144bf35643c6708c312e0ade26d729],
PUP.Optional.eShopComp, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage, Quarantined, [3b62310d2d6c73c35b56e25b5aaad32d],
PUP.Optional.eShopComp, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage-journal, Quarantined, [2b727dc1871260d6426fbf7e2bd9619f],
PUP.Optional.CrossRider, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, Quarantined, [4c513fffa6f377bf52c74ff2df25f10f],
PUP.Optional.CrossRider, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, Quarantined, [6d3052ecf0a9cd6976a3a79a01037090],
PUP.Optional.Conduit, C:\Prefs.js, Quarantined, [e3ba9ca24554c274792bc42e4cb8bb45],
Physical Sectors: 0
(No malicious items detected)
(end)
___________________________________________________________________________________________________________________
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 1/27/2016
Scan Time: 10:14 AM
Logfile: Malwarebytes.1.27.16.run.2.txt
Administrator: Yes
Version: 2.2.0.1024
Malware Database: v2016.01.27.04
Rootkit Database: v2016.01.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: Samantha
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 343396
Time Elapsed: 18 min, 31 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 1
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, , [e4bc53ebcdcc989e1e67437e03007f81],
Registry Values: 2
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, {searchTerms} - Bing, , [e4bc53ebcdcc989e1e67437e03007f81]
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURL, {searchTerms} - Bing, , [a1ffc07e0c8d85b1097c814060a3fc04]
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 12
PUP.Optional.PricePeep, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, , [8917ff3f0e8b69cd627ec51d9b686799],
PUP.Optional.PricePeep, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal, , [7b25a49ae3b67bbb8d53e5fd36cd2ad6],
PUP.Optional.ReMarkable, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, , [168a2816bcdd49ed0fe0aa3a7d8654ac],
PUP.Optional.ReMarkable, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, , [6b3565d9603956e0717e558f32d17b85],
PUP.Optional.PastaLeads, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage, , [e8b8300e4554bc7a72a6867c15effb05],
PUP.Optional.PastaLeads, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage-journal, , [633dfb433267bc7a58c08c76b94b8080],
PUP.Optional.BestPriceNinja, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage, , [e0c0300ec8d116205b7da693af55d62a],
PUP.Optional.BestPriceNinja, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal, , [019f3fffbedb67cfd008a7924db76799],
PUP.Optional.eShopComp, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage, , [a6fa0638dbbec86e8547dc622cd8a45c],
PUP.Optional.eShopComp, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage-journal, , [b8e8db63524758dedaf2b98552b258a8],
PUP.Optional.CrossRider, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, , [e6ba0a34207942f487ada1a18183639d],
PUP.Optional.CrossRider, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, , [772948f6ddbcf6405bd91b27e71dac54],
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 1/26/2016
Scan Time: 11:04 PM
Logfile: Malwarebytes.1.26.16.run.1.txt
Administrator: Yes
Version: 2.2.0.1024
Malware Database: v2016.01.27.01
Rootkit Database: v2016.01.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: Samantha
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 343606
Time Elapsed: 19 min, 40 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 2
PUP.Optional.CloudScout, HKLM\SOFTWARE\5da059a482fd494db3f252126fbc3d5b, Quarantined, [316cc87660398fa7f47a54ab2cd7847c],
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [900df6486237f83e5017efd1dc27d927],
Registry Values: 3
PUP.Optional.OneSystemCare, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|SystemCash.exe, 11000, Quarantined, [6538033bf9a05cda49146cce897b639d]
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, {searchTerms} - Bing, Quarantined, [900df6486237f83e5017efd1dc27d927]
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURL, {searchTerms} - Bing, Quarantined, [e1bca39bb0e944f2d493794737cccd33]
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 12
PUP.Optional.DownloadAssist, C:\$Recycle.Bin\S-1-5-21-1183068579-2748756526-997132385-1001\$RQ3SK42.exe, Quarantined, [f5a83b03396055e1ee9bc5249e66dc24],
PUP.Optional.PricePeep, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, Quarantined, [683556e826736dc94184dd047d8649b7],
PUP.Optional.ReMarkable, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Quarantined, [9a03c5795e3b6bcbfed6885b8b78aa56],
PUP.Optional.ReMarkable, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Quarantined, [9c01013db7e29c9aad275e85956eed13],
PUP.Optional.PastaLeads, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage, Quarantined, [9508b6886831063032cb55abab59bd43],
PUP.Optional.PastaLeads, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage-journal, Quarantined, [f5a8221c72272b0bec11a55b798b12ee],
PUP.Optional.BestPriceNinja, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage, Quarantined, [89144bf35643c6708c312e0ade26d729],
PUP.Optional.eShopComp, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage, Quarantined, [3b62310d2d6c73c35b56e25b5aaad32d],
PUP.Optional.eShopComp, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage-journal, Quarantined, [2b727dc1871260d6426fbf7e2bd9619f],
PUP.Optional.CrossRider, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, Quarantined, [4c513fffa6f377bf52c74ff2df25f10f],
PUP.Optional.CrossRider, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, Quarantined, [6d3052ecf0a9cd6976a3a79a01037090],
PUP.Optional.Conduit, C:\Prefs.js, Quarantined, [e3ba9ca24554c274792bc42e4cb8bb45],
Physical Sectors: 0
(No malicious items detected)
(end)
___________________________________________________________________________________________________________________
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 1/27/2016
Scan Time: 10:14 AM
Logfile: Malwarebytes.1.27.16.run.2.txt
Administrator: Yes
Version: 2.2.0.1024
Malware Database: v2016.01.27.04
Rootkit Database: v2016.01.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: Samantha
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 343396
Time Elapsed: 18 min, 31 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 1
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, , [e4bc53ebcdcc989e1e67437e03007f81],
Registry Values: 2
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, {searchTerms} - Bing, , [e4bc53ebcdcc989e1e67437e03007f81]
PUP.Optional.Conduit, HKU\S-1-5-21-1183068579-2748756526-997132385-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURL, {searchTerms} - Bing, , [a1ffc07e0c8d85b1097c814060a3fc04]
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 12
PUP.Optional.PricePeep, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, , [8917ff3f0e8b69cd627ec51d9b686799],
PUP.Optional.PricePeep, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal, , [7b25a49ae3b67bbb8d53e5fd36cd2ad6],
PUP.Optional.ReMarkable, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, , [168a2816bcdd49ed0fe0aa3a7d8654ac],
PUP.Optional.ReMarkable, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, , [6b3565d9603956e0717e558f32d17b85],
PUP.Optional.PastaLeads, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage, , [e8b8300e4554bc7a72a6867c15effb05],
PUP.Optional.PastaLeads, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage-journal, , [633dfb433267bc7a58c08c76b94b8080],
PUP.Optional.BestPriceNinja, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage, , [e0c0300ec8d116205b7da693af55d62a],
PUP.Optional.BestPriceNinja, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal, , [019f3fffbedb67cfd008a7924db76799],
PUP.Optional.eShopComp, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage, , [a6fa0638dbbec86e8547dc622cd8a45c],
PUP.Optional.eShopComp, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage-journal, , [b8e8db63524758dedaf2b98552b258a8],
PUP.Optional.CrossRider, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, , [e6ba0a34207942f487ada1a18183639d],
PUP.Optional.CrossRider, C:\Users\Samantha\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, , [772948f6ddbcf6405bd91b27e71dac54],
Physical Sectors: 0
(No malicious items detected)
(end)
UPDATE: I no longer have the pop-ups showing up on my browsers, but would like to have my system thoroughly checked before I consider my issue resolved. I disconnected my laptop from the Wi-Fi connection and proceeded to run malwarebytes a third time, but this time I included "rootkits" and conducted a custom system search that included Drive C and Recovery drive D. It found several more PUPs and I had them all deleted from my computer. I then reconnected to the internet using Chrome and cleared out all extensions (including all google default extensions). Next, I went into settings under "People" and disabled guest browsing and cleared the people and all of the data associated with the profiles. I also unmarked the box for "let anyone add a person to Chrome". Lastly, I did a reset to default settings that is located at the bottom of the settings page.
Since then, I have not had any pop-ups or sudden page changes in Chrome or Microsoft Edge.
Since then, I have not had any pop-ups or sudden page changes in Chrome or Microsoft Edge.
- Mar 8, 2013
- 22,627
Hello,
They call me TwinHeadedEagle around here, and I'll be working with you.
Before we start please read and note the following:
Rules and policies
We won't support any piracy.
That being told, if any evidence of illegal OS, software, cracks/keygens or any other will be revealed, any further assistance will be suspended. If you are aware that there is this kind of stuff on your machine, remove it before proceeding!
The same applies to any use of P2P software: uTorrent, BitTorrent, Vuze, Kazaa, Ares... We don't provide any help for P2P, except for their removal. All P2P software has to be uninstalled or at least fully disabled before proceeding!
Failure to follow these guidelines will result with closing your topic and withdrawning any assistance.
Scan with Farbar Recovery Scan Tool
Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.
They call me TwinHeadedEagle around here, and I'll be working with you.
Before we start please read and note the following:
- At the top of your post, please click on the "Watch thread" button and make sure to check Watch this thread...and receive email notifications. This will send an email to you as soon as I reply to your topic, allowing me to solve your problem faster.
- Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process. Please do not perform System Restore or any other restore.
- Instructions I give to you are very simple and made for complete beginner to follow. That's why you need to read through my instructions carefully and completely before executing them.
- Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.
- All tools we use here are completely clean and do not contain any malware. If your antivirus detects them as malicious, please disable your antivirus and then continue.
- If during the process you run across anything that is not in my instructions, please stop and ask. If any tool is running too much time (few hours), please stop and inform me.
- I visit forum several times at day, making sure to respond to everyone's topic as fast as possible. But bear in mind that I have private life like everyone and I cannot be here 24/7. So please be patient with me. Also, some infections require less, and some more time to be removed completely, so bear this in mind and be patient.
- Please stay with me until the end of all steps and procedures and I declare your system clean. Just because there is a lack of symptoms does not indicate a clean machine. If you solved your problem yourself, set aside two minutes to let me know.
- Please attach all report using
button below. Doing this, you make it easier for me to analyze and fix your problem.
- Do not ask for help for your business PC. Companies are making revenue via computers, so it is good thing to pay for the repair.
- If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
We won't support any piracy.
That being told, if any evidence of illegal OS, software, cracks/keygens or any other will be revealed, any further assistance will be suspended. If you are aware that there is this kind of stuff on your machine, remove it before proceeding!
The same applies to any use of P2P software: uTorrent, BitTorrent, Vuze, Kazaa, Ares... We don't provide any help for P2P, except for their removal. All P2P software has to be uninstalled or at least fully disabled before proceeding!
Failure to follow these guidelines will result with closing your topic and withdrawning any assistance.
Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.
- Right-click on
icon and select
Run as Administrator to start the tool.
(XP users click run after receipt of Windows Security Warning - Open File). - Make sure that Addition option is checked.
- Press Scan button and wait.
- The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.
Hello TwinHeaded Eagle,
My apologies for not getting to you sooner, my email account sent the notification email to the junk folder. I have resolved that hiccup. Here are the files requested.
I have not had any further issue with the unwanted pop-ups since my last post; however, I have been avoiding any sign-ins or personal information just in case.
Thank you for your time and patience.
My apologies for not getting to you sooner, my email account sent the notification email to the junk folder. I have resolved that hiccup. Here are the files requested.
I have not had any further issue with the unwanted pop-ups since my last post; however, I have been avoiding any sign-ins or personal information just in case.
Thank you for your time and patience.
- Mar 8, 2013
- 22,627
Download attached fixlist.txt file and save it to the Desktop:
Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!
- Right-click on
icon and select
Run as Administrator to start the tool.
(XP users click run after receipt of Windows Security Warning - Open File). - Press the Fix button just once and wait.
- If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
- When finished FRST will generate a log on the Desktop, called Fixlog.txt.
Please attach it to your reply.
- Mar 8, 2013
- 22,627
I am still free from any pop-ups or unwanted ads. I think I had already eradicated the issue, but want to make sure since I was using online suggestions and hail mary's ha ha
Also, I am looking for reliable anti-viral software; preferably free. Does anyone have any suggestions?
Also, I am looking for reliable anti-viral software; preferably free. Does anyone have any suggestions?
- Mar 8, 2013
- 22,627
Similar threads
