Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Remove Snap.do from my Control Panel in Windows 8.2 [Solved]


  • This topic is locked This topic is locked

#16
joetjmom

joetjmom

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Finally, this one took forever!

 

[email protected] as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=0c754f9d6d947b4589343c6c736cc2c5
# engine=20007
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-09-05 12:45:12
# local_time=2014-09-05 07:45:12 (-0600, Central Daylight Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 0 13379433 0 0
# scanned=88459
# found=3
# cleaned=0
# scan_time=44673
sh=5DD0E3C6FD708886BC0068183B5D746399548202 ft=1 fh=def75e258a2ab748 vn="a variant of Win32/AdWare.Toolbar.AmyBar.A application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Bobbie\AppData\Local\DownloadTerms\temp.dat.vir"
sh=B4FB6A8043945126B483BCBA46DAF0DD1FAA999D ft=1 fh=e66526a6a92e8407 vn="Win32/OutBrowse.M potentially unwanted application" ac=I fn="C:\Users\Bobbie\Downloads\Firefox.exe"
sh=433AA9A92C4F0905814DF4CD3B7BF50EEFB819EE ft=1 fh=c71c001121db97ef vn="Win32/InstallCore.MM potentially unwanted application" ac=I fn="C:\Users\Bobbie\Downloads\iTunes_Setup.exe"
[email protected] as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=0c754f9d6d947b4589343c6c736cc2c5
# engine=20016
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-09-05 04:10:21
# local_time=2014-09-05 11:10:21 (-0600, Central Daylight Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 0 13391742 0 0
# scanned=218659
# found=3
# cleaned=0
# scan_time=12172
sh=5DD0E3C6FD708886BC0068183B5D746399548202 ft=1 fh=def75e258a2ab748 vn="a variant of Win32/AdWare.Toolbar.AmyBar.A application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Bobbie\AppData\Local\DownloadTerms\temp.dat.vir"
sh=B4FB6A8043945126B483BCBA46DAF0DD1FAA999D ft=1 fh=e66526a6a92e8407 vn="Win32/OutBrowse.M potentially unwanted application" ac=I fn="C:\Users\Bobbie\Downloads\Firefox.exe"
sh=433AA9A92C4F0905814DF4CD3B7BF50EEFB819EE ft=1 fh=c71c001121db97ef vn="Win32/InstallCore.MM potentially unwanted application" ac=I fn="C:\Users\Bobbie\Downloads\iTunes_Setup.exe"

  • 0

Advertisements


#17
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts
Hi Bobbie :D

Eset found three files but as it took you so long I have written a batch file to remove them for you, it will only take a second. Once it has finished, you can delete the batch file you downloaded.

Step 1

Batch File Fix
  • Download the attached Attached File  bobbie.bat   95bytes   35 downloads and save it to your desktop <<< very important
  • Right click batch.png and run as administrator.

    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.
Good news, it looks like your system is now clean. A good workman cleans up after himself so let's now attend to that :D

Step 2

Tool Removal

We need to remove the tools we've used during cleaning your machine
  • Download Delfix from here
  • Ensure Remove disinfection tools is ticked
    Also tick:
    • Activate UAC
    • Create registry backup
    • Purge system restore
    delfix-select.png
  • Click Run
The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply



Keep your machine updated

Due to the ever-present tide of malware, it is important to ensure your computer is kept up-to-date to minimize the risk of future infection. An important step is to ensure that automatic updates are enabled.


To enable automatic updates:

Windows 7
To turn on Automatic Updates yourself, follow these steps:
  • Click Start, type Windows update in the search box, and then click Windows Update in the Programs list.
  • In the left pane, click Change settings.
  • Select the option that you want.
  • Under Recommended updates, select the Give me recommended updates the same way I receive important updates or Include recommended updates when downloading, installing, or notifying me about updates check box, and then click OK.
Protection Software

You already have a built in anti-virus installed (Windows Defender) so remember to keep it updated, but I would look at an alternative that offers better protection.

Here is a well respected alternative to consider, but remember to only have one installed at a time or conflicts can occur.

AVAST Antivirus


It is recommended to install an anti-malware to help prevent reinfection.
Below are some free ones that can help keep you clean.

Malwarebytes AntiMalware

As you have installed Malwarebytes, I recommend that you keep this program and use it to help you stay clean.

The free version will scan your computer and fix the problems it finds but will not provide real-time protection. You must scan regularly to find any threats.
Consider purchasing the full version for active monitoring of threats.



Update Other Programs

Alongside keeping Windows updated, other programs installed on your computer should also be kept current as they too can introduce security risks.

Filehippo Update Checker will scan your computer for out of date programs and provide download links for the updates. This is worth doing on a regular basis.

Recommended Programs

Web Of Trust is a browser add-on designed to alert the user before interactingwith a potentially malicious website. It will highlight green if a site is known to be safe.
Adblock is a firefox browser add-on that blocks annoying banners, pop-upsand video ads.

General Advice
  • When browsing the internet, look closely at the links you click on. Some aren't always what they seem
  • Avoid Peer to Peer file sharing utilities, these are a minefield of malware infections.
  • Don't open email attachments unless you are expecting them. Even an email from your best friend can be infected, they might not have sent it.
  • Pay attention when installing a program to your computer, particularly to any check boxes that may appear during installation, it is common for unwanted software to be installed in this way.

  • 0

#18
joetjmom

joetjmom

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Looking good so far  :spoton: Am I done and can I remove the software we installed for this process (adwcleaner, antiroot kit, etc)? Thanks for all of your help and timeliness of your responses! You're the best!!

 

# DelFix v10.8 - Logfile created 05/09/2014 at 13:53:41
# Updated 29/07/2014 by Xplode
# Username : Bobbie - DEFACCI
# Operating System : Windows 8.1  (64 bits)
 
~ Activating UAC ... OK
 
~ Removing disinfection tools ...
 
Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Bobbie\Desktop\Addition.txt
Deleted : C:\Users\Bobbie\Desktop\aswMBR.txt
Deleted : C:\Users\Bobbie\Desktop\Fixlog.txt
Deleted : C:\Users\Bobbie\Desktop\FRST.txt
Deleted : C:\Users\Bobbie\Desktop\FRST64.exe - Shortcut (2).lnk
Deleted : C:\Users\Bobbie\Desktop\FRST64.exe - Shortcut.lnk
Deleted : C:\Users\Bobbie\Desktop\JRT.txt
Deleted : C:\Users\Bobbie\Desktop\MBR.dat
Deleted : C:\Users\Bobbie\Downloads\Addition.txt
Deleted : C:\Users\Bobbie\Downloads\adwcleaner_3.309.exe
Deleted : C:\Users\Bobbie\Downloads\aswmbr.exe
Deleted : C:\Users\Bobbie\Downloads\esetsmartinstaller_enu (1).exe
Deleted : C:\Users\Bobbie\Downloads\esetsmartinstaller_enu.exe
Deleted : C:\Users\Bobbie\Downloads\Fixlog.txt
Deleted : C:\Users\Bobbie\Downloads\FRST.exe
Deleted : C:\Users\Bobbie\Downloads\FRST.txt
Deleted : C:\Users\Bobbie\Downloads\FRST64 (1).exe
Deleted : C:\Users\Bobbie\Downloads\FRST64.exe
Deleted : C:\Users\Bobbie\Downloads\FRST64.exe - Shortcut (2).lnk
Deleted : C:\Users\Bobbie\Downloads\FRST64.exe - Shortcut.lnk
Deleted : C:\Users\Bobbie\Downloads\JRT (1).exe
Deleted : C:\Users\Bobbie\Downloads\JRT.exe
Deleted : C:\Users\Bobbie\Downloads\TFC (1).exe
Deleted : C:\Users\Bobbie\Downloads\TFC.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
 
~ Creating registry backup ... OK
 
~ Cleaning system restore ...
 
Deleted : RP #40 [Scheduled Checkpoint | 08/22/2014 16:30:40]
Deleted : RP #41 [Windows Update | 08/27/2014 20:21:22]
Deleted : RP #42 [Scheduled Checkpoint | 09/04/2014 19:44:11]
 
New restore point created !
 
########## - EOF - ##########

  • 0

#19
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts
You are done. Thank you for staying until the end. It does make it worth it for us.

The last tool we used has deleted all the tools and logs we used according to the log it created :)

But if there are any it has missed feel free to delete them.
  • 0

#20
joetjmom

joetjmom

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Ruggie,

Thank you again for all of your hard work and expertise. Your instructions were concise and very clear and helped me to get rid of that pesky Snap.do. I really appreciate it and I will definitely use Geeks to Go for any future needs.

 

Bobbie


  • 0

#21
ruggie_uk

ruggie_uk

    Trusted Helper

  • Malware Removal
  • 2,083 posts

No problem.

 

Have a great weekend :D


  • 0

#22
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP