mattyang

No worries Juliet, did run TFC prior to running Malwarebyte. Everything looks good again. Once thanks ladies for the tireless effort in assisting in this matter.

Hi Julie, did as requested and ran another scan by Malwarebytes. So far results returned looks good as nothing malicious detected.

Hi Juliet, did the scan as advised and posting the following log result: Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 11/4/2015 Scan Time: 10:11:07 AM Logfile: Malwarebytes Scan Log.txt Administrator: Yes Version: 2.01.4.1018 Malware Database: v2015.04.10.08 Rootkit Database: v2015.03.31.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 7 CPU: x64 File System: NTFS User: Mattheus Scan Type: Threat Scan Result: Completed Objects Scanned: 354534 Time Elapsed: 44 min, 53 sec Memory: Enabled Startup

Think my kid notebook pick up something nasty as he keeps getting redirected to ads website. And lots of UNIDEAL Popups appearing. Some information on his notebook: HP ENVY 14 NOTEBOOK WINDOWS 7 HOME PREMIUM Intel ® Core i7 CPU Q720 @1.60Ghz 4 GB Ram 64 Bit operating System. AVG Free EDITION 2015 Appreciate some guidance to clear this mess up. Thanks.

Thank you very much Juliet for your patience in guarding me through the process of cleaning up my notebook. Indeed you are a beacon of light to guide lost souls like me in this rapid changing tech world....

Hi Juliet, please find the result of both scans: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-09-2014 Ran by Matt at 2014-09-30 18:56:53 Run:2 Running from C:\Users\Matt\Desktop Loaded Profile: Matt (Available profiles: Matt) Boot Mode: Normal ============================================== Content of fixlist: ***************** start CloseProcesses: C:\$Recycle.Bin\S-1-5-21-2988392325-1286642985-2377832700-1005\$RZCNRZM\4s4eywhw.default\extensions\[email protected]\uninstall.exe C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.29.17

Hi Juliet, result of ESET Online scan as follows: C:\$Recycle.Bin\S-1-5-21-2988392325-1286642985-2377832700-1005\$RZCNRZM\4s4eywhw.default\extensions\[email protected]\uninstall.exe Win32/Toolbar.Montiera.B potentially unwanted application C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.29.17\zonealarmEng.dll a variant of Win32/Toolbar.Montiera.A potentially unwanted application C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.29.17\zonealarmsrv.exe a variant of Win32/Toolbar.Montiera.A potentially unwanted application C:\Program Files\

Ok I can see how this is going to be a long drawn out process of cleaning up my notebook. So far I did uninstalled Trend from my notebook from the list of programs installed. Have gone through the list again but its not found there, am I missing a step somewhere? Also did a search for the mentioned programs to be uninstalled but did not find any. Browsers issued solved after running Adwcleaner. Result as follows: # AdwCleaner v3.310 - Report created 28/09/2014 at 12:26:14 # Updated 12/09/2014 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (32 bits) # Us

Btw Juliet, I tried opening all three browsers, Firefox, IE and Chrome, noticed all three start homepage opens to the istartsurf page...

Hi Juliet, in replying to the AV software, used to had Trend but have since stopped using as license expired. Currently having AVG Free Edition installed. Following is FARBAR Fixlog result: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-09-2014 Ran by Matt at 2014-09-28 09:33:47 Run:1 Running from C:\Users\Matt\Desktop Loaded Profile: Matt (Available profiles: Matt) Boot Mode: Normal ============================================== Content of fixlist: ***************** start CloseProcesses: Folder:C:\ProgramData\WindowsMangerProtect HKLM\...\Run: [] =>

Firstly resetted Firefox to default setting didn't work. On opening the browser, home page shown is www.istartsurf.com, different from what I had set. However, when I press on homepage it does bring me back to my original homepage. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-09-2014 Ran by Matt (administrator) on MATT-PC on 27-09-2014 22:01:06 Running from C:\Users\Matt\Downloads Loaded Profile: Matt (Available profiles: Matt) Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: English (United States) Internet Explorer Version 11 Boot Mod

Hi Tomk_ seems like everything looks good after ESET scan. No threats were found. Do appreciate your assistance and guidance on this.

Hi Tomk_ did a scan with Malware and got the following scan result. Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Database version: v2013.01.22.02 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 9.0.8112.16421 Matt :: MATT-PC [administrator] 22/1/2013 6:02:38 PM mbam-log-2013-01-22 (18-02-38).txt Scan type: Full scan (C:|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 346211 Time elapsed: 2 hour(s), 16 minute(s), 31 second(s) Memory Processes Detected: 0

Hi Tomk_ herein are the scan result from DDS for my Toshiba Notebook. I had done so as SuperAntiSpyware has detected some trojans in my system. Hence, just want to be thoroughly sure that all remnants of anything that might pose a threat to the notebook are thoroughly eradicated. DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 1.6.0_29 Run by Matt at 20:29:42 on 2013-01-21 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.65.1033.18.3060.2237 [GMT 8:00] . AV: Trend Micro Titanium Maximum Security 2012 *Disabled/Updated* {B7599298-8445-728A-A5C7-A2

Thanks Tomk_ couldn't have done it without your guidance. Btw, how do I remove JRT as I can't locate the uninstall software in Programs?