etavares Posted February 6, 2013 Posted February 6, 2013 Hello, debi239. Looking better. Did you run Shortcut Cleaner? How is your computer running now? I'd like us to scan your machine with ESET OnlineScan Hold down Control and click on the following link to open ESET OnlineScan in a new window. ESET OnlineScan Click the http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetOnline.png button. For alternate browsers only: (Microsoft Internet Explorer users can skip these steps) Click on http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetSmartInstall.png to download the ESET Smart Installer. Save it to your desktop. Double click on the http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetSmartInstallDesktopIcon.png icon on your desktop. [*]Check http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetAcceptTerms.png [*]Click the http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetStart.png button. [*]Accept any security warnings from your browser. [*]Check http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetScanArchives.png [*]Push the Start button. [*]ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time. [*]When the scan completes, push http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetListThreats.png [*]Push http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetExport.png, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply. [*]Push the http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetBack.png button. [*]Push http://billy-oneal.com/Canned%20Speeches/speechimages/eset/esetFinish.png etavares Quote etavares is a member of:Alliance of Security Analysis ProfessionalsUnified Network of Instructors and Trained Eliminators
debi239 Posted February 6, 2013 Author Posted February 6, 2013 Shortcut Cleaner 1.2.0 by Lawrence Abrams (Grinler) http://www.bleepingcomputer.com/ Copyright 2008-2013 BleepingComputer.com More Information about Shortcut Cleaner can be found at this link: http://www.bleepingcomputer.com/download/shortcut-cleaner/ Program started at: 02/06/2013 07:19:41 AM. Searching C:\Users\Deb\AppData\Roaming\Microsoft\Windows\Start Menu\ * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk => C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer\Web_Publishing_Wizard.lnk => C:\Program Files (x86)\Web Publish\WPWIZ.EXE http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk => C:\Program Files\Internet Explorer\iexplore.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => C:\Program Files (x86)\Internet Explorer\iexplore.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 Searching C:\ProgramData\Microsoft\Windows\Start Menu\ Searching C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\4Media Photo Slideshow Maker.lnk => C:\Program Files (x86)\4Media\Photo Slideshow Maker\SplashScreen.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\4Media Ringtone Maker.lnk => C:\Program Files (x86)\4Media\Ringtone Maker\ringtonemaker.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Adobe Digital Editions.lnk => C:\Program Files (x86)\Adobe\Adobe Digital Editions\digitaleditions.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Aiseesoft Total Media Converter.lnk => C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft Total Media Converter\Aiseesoft Total Media Converter.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AnyPic Image Resizer Pro.lnk => C:\Program Files (x86)\AnyPic Image Resizer Pro\AnyPicImageResizerPro.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Ashampoo Burning Studio 2010 Advanced.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Batch Photo Watermarker.lnk => C:\Program Files (x86)\EasySector\Batch Photo Watermarker\Batch Photo Watermarker.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BatchInpaint.lnk => C:\Program Files (x86)\BatchInpaint\BatchInpaint.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\CollageIt.lnk => C:\Program Files (x86)\CollageIt\CollageIt.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ConvertXtoDVD 4.lnk => C:\Program Files (x86)\VSO\ConvertX\4\ConvertXtoDvd.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Corel Paint Shop Pro X.lnk => C:\Program Files (x86)\Corel\Corel Paint Shop Pro X\Paint Shop Pro X.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DVD Shrink 3.2.lnk => C:\Program Files (x86)\DVD Shrink\DVD Shrink 3.2.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\easyQuizzy.lnk => C:\Users\Deb\AppData\Local\easyQuizzy\easyQuizzy.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FinalTorrent.lnk => C:\Program Files (x86)\FinalTorrent\FinalTorrent.EXE http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FoxTab AVI Converter.lnk => C:\Program Files (x86)\FoxTabAVIConverter\AviConverter.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Easy Burner.lnk => C:\Program Files (x86)\Free Easy Burner\FreeEasyBurner.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free GMT AVI to DVD.lnk => C:\Program Files (x86)\Free GMT AVI to DVD\XFree_Video_Converter.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Game Booster.lnk => C:\Program Files (x86)\IObit\Game Booster\GameBooster.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Intrusion Detection System - Sax2.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Jasc Paint Shop Pro 9 (1).lnk => C:\Windows\Installer\{F843C6A3-224D-4615-94F8-3C461BD9AEA0}\PaintShopProExeIcon.ico http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Jasc Paint Shop Pro 9.lnk => C:\Windows\Installer\{F843C6A3-224D-4615-94F8-3C461BD9AEA0}\PaintShopProExeIcon.ico http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => C:\Program Files (x86)\Internet Explorer\iexplore.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Log Analysis - Sax2.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\mediAvatar Photo to Flash.lnk => C:\Program Files (x86)\mediAvatar\Photo to Flash\SplashScreen.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\MiPony.lnk => C:\Program Files (x86)\MiPony\MiPony.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\NeoPaint.lnk => C:\Program Files (x86)\NeoPaint\NeoPaint.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero Express.lnk => C:\Program Files (x86)\Nero\Nero Burning ROM\nero.exe /w http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Opera.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picture Collage Maker.lnk => C:\Program Files (x86)\Picture Collage Maker\PictureCollageMaker.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Pixpedia Publisher.lnk => C:\Program Files (x86)\Pixpedia Publisher\CCPublisher.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\RegistryBooster.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Snagit 10.lnk => C:\Program Files (x86)\TechSmith\Snagit 10\Snagit32.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spyware Terminator.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\TOSHIBA DVD PLAYER.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk => C:\Windows\System32\control.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Corel Paint Shop Pro X.lnk => C:\Windows\Installer\{1A15507A-8551-4626-915D-3D5FA095CC1B}\Icon_Exe.ico http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Jasc Paint Shop Pro 9.lnk => C:\Windows\Installer\{F843C6A3-224D-4615-94F8-3C461BD9AEA0}\PaintShopProExeIcon.ico http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Office Word 2007.lnk => C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (64-bit).lnk => C:\Program Files\Internet Explorer\iexplore.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk => C:\Windows\explorer.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WinX DVD Copy Pro.lnk => C:\Program Files\Digiarty\WinX_DVD_Copy_Pro\WinX_DVD_Copy_Pro.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Wondershare DVD Slideshow Builder Standard.lnk => C:\Program Files (x86)\Wondershare\DVD Slideshow Builder Standard\DSB.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Wondershare Photo Collage Studio.lnk => C:\Program Files (x86)\Wondershare\Photo Collage Studio\pcls.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Xara3D6.lnk => C:\Program Files (x86) http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\XnView.lnk => C:\Program Files (x86)\XnView\xnview.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 * Shortcut Cleaned: C:\Users\Deb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe http://search.certified-toolbar.com?si=41460&shortcut=true&tid=3204 Searching C:\Users\Public\Desktop\ Searching C:\Users\Deb\Desktop\ 53 bad shortcuts found. Program finished at: 02/06/2013 07:20:06 AM Execution time: 0 hours(s), 0 minute(s), and 24 seconds(s) Quote
debi239 Posted February 6, 2013 Author Posted February 6, 2013 Eset Scan C:\Users\All Users\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application C:\Users\All Users\Tarma Installer\{DA00D550-BB91-4A26-AAE5-9172D626CAAE}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined C:\ProgramData\Tarma Installer\{DA00D550-BB91-4A26-AAE5-9172D626CAAE}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined C:\Users\Deb\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpcpcabjajdjmbkfinphfdflfipmalnj\1.0_0\bg.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined Quote
debi239 Posted February 7, 2013 Author Posted February 7, 2013 I'm so sorry the Eset Scan does not include the archive scan in it, however I'm running one that does and will post it as soon as it's finished. Quote
debi239 Posted February 7, 2013 Author Posted February 7, 2013 EsetScan including the archive scan. C:\Users\Deb\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\3a699515-170e74a8 Java/Exploit.CVE-2013-0422.AW trojan deleted - quarantined C:\Users\Deb\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\72cb0e60-42752b3f Java/Exploit.CVE-2013-0422.AW trojan deleted - quarantined D:\PsP P Plug-ins\PSP Plugins Disc 2\Plugins Disc 2.iso multiple threats deleted - quarantined D:\PsP P Plug-ins\PSP_Plugins_Disc_2.part1.rar multiple threats deleted - quarantined D:\PsP P Plug-ins\PSP_Plugins_Disc_4.part1.rar probably a variant of Win32/Agent.BIEJVEB trojan deleted - quarantined Quote
debi239 Posted February 7, 2013 Author Posted February 7, 2013 The toolbar is gone and all is working well.....Thank you so very much!!! Debbie Quote
etavares Posted February 7, 2013 Posted February 7, 2013 Thanks to Grinler for making the shortcut cleaner program. You can see how annoying this toolbar is. Now, please post one final OTL log for me to review. Just launch OTL, press Quick Scan and copy/paste the contents of the logfile that will pop up in your reply. If that's clean, I'll give you instructions to clean up. -etavares Quote etavares is a member of:Alliance of Security Analysis ProfessionalsUnified Network of Instructors and Trained Eliminators
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.