browser hijack then bsod

This is my uncles laptop, he says he got a notice to update java or adobe he cant remember but that's when he got the mysearchdial browser hijack redirect problem. So I ran malwarebytes antiwalware and it found a suspicious file called mobogenie, so I went to its location and tried deleting it and it would not let me saying I did not have permission to access the file in this user account even though I was using the administrator user account. I followed the instructions in the browser hijack thread but could not do some steps like clearing firefox cache and internet explorer cache because the sections and clear data buttons were missing from the area they are supposed to be in.

I was able to flush the dns cache and then I was able to finally delete the mysearchdial option in the search engine options part of manage add-ons. The thread said if the problem was fixed to stop there, I then started the read and run me thread instructions, it says if you cant save mgtools to c:/ then save it to the desktop if the desktop is on the same drive as the operating system which mine is so I saved it to the desktop, then when running the tools it would not run from desktop and it says disable or uninstall antivirus software while saving or running mgtools and I thought it just meant to disable while saving to c:/ and I had to uninstall avira to save to c:/ and after saving mgtools I reinstalled avira but kept it disabled. I do not know how i screwed this up I reread the instructions numerous times and I thought I was doing everything right and did not realize I misread the instructions until I was done running every program I'm very sorry.

Then when it came time to run tdsskiller it ran fine but at the end when you're supposed to press continue if threats are found I did but a popup came up saying that a program tried changing 2 entry's in the registry and was blocked from doing so. Every other step worked fine and after I was finished I went to the location where the mobogenie file was and I was able to delete it so I waited a few days to see how the laptop was going to act per the instructions before creating a new thread. After 3 days I called my Uncle to see how his laptop was acting and he said every time he opens internet explorer the manage add-ons window pops up to the manage search engines section and he has to close it to use internet explorer.

I googled the problem and found a very easy solution by adding a secondary search engine, but then I was just surfing the web and got a blue screen that said "the laptop needs to be shut down to prevent serious damage, if this is the first time this blue screen has appeared than restart the laptop if it is not the first time you have seen the blue screen" then it had instructions, I restarted the laptop since it was the first time the blue screen has appeared. When it was restarted I came to this forum and started this thread.

I recently (about a month before this problem) ran the instructions for cleaning a slow computer and it helped a lot. I know the computer is running very slowly now and I believe that the problems were not fixed completely after following the read and run me first thread, whether or not that is because I screwed up one of the steps I do not know. I am very sorry that I misread the instructions and I know that you are all very busy and I do appreciate any and all help you are able to give me. Thank you very much for your time.

 

I ran hitmanpro but it did not find any unwanted entrys so I ran roguekiller and placed a check next to the 3 items specified and unchecked all
others and hit delete. A window poped up saying that my antivirus blocked a program from accessing 2 registry items and roguekiller showed that the
3 items were deleted, however 2 items were still in red at the top of the list and one item was a different color now and highlighted and at the
bottom of the list. I took a screen shot of it.

then I hit the file tab to delete the item you requested but there were 9 items with that same
path name but all had different numbers and letters after them except 1, and it looks like you either want me to delete the one that had no numbers
and letters at the end of the path of the item you specified or you just shortened the path by removing the numbers and letters at the end.
Either way they all showed that they were all already deleted so I was unable to highlight any to delete since the delete button did not even appear. I took a screen shot of that too. I then closed the program and checked to see if the log was there before i rebooted and there were 3 logs all named rkreport(0) but with different numbers after the name so i looked at the time stamps and 2 of them were from today with 5 minutes difference in the time so I uploaded the most recent. Then I ran OTM.exe and pasted the code you provided under the "paste instructions for items to be moved"
area and hit moveit, it asked me to reboot so I did. after it was restarted I disabled my protection software then ran junkware removal tool.

After
that I reran roguekiller and then reran hitman pro. Lastly I ran the C:\MGtools\GetLogs.bat file. One thing I noticed after running hitman pro
the first time was after it finished scanning it said it found no malicious entry's but there was one entry and in small print at the top of the
program it said in order to clean malicious entry's you must activate your copy of hitman pro by entering a code to register my product purchase or
it had a button to click to start a free 30 day trial and so I clicked the free trial and it asked me for my email and then it tried to verify
online and could not get online and that's when I noticed that I can not connect to a wireless network. So I troubleshooted it after I was done with
all your instructions and it could not fix itself saying there is a problem with my wireless network adapter.

 

Here is the last log and the 2 screen shots. Also thank you very much for your fast reply and all your help it is very much appreciated.

 

Thank you for the speedy reply. I ran RogueKiller and deleted the entry you specified and reran RogueKiller and here is the new log. Thanks again. Oh and for some reason there were 3 new logs on my desktop after running the program twice I'm assuming that the first one is from the first scan and the second one is from deleting the entry and the third one is from the third scan. so I uploaded the third one and I am numbering them by the time they were created, the third one was created last.

 

OK so I started out by disabling Avira because I knew it would prevent Roguekiler from accessing the registry because it has been doing that to
nearly any program I've run. Then I ran Roguekiller and deleted the specified entry and I got a popup from Avira saying that it blocked a suspicious
program from modifying a registry entry. I took a screen shot of it. The entry in Roguekiller showed deleted in the status but it was still red and
not actually deleted. I reran Roguekiller and it was still there. Then I ran OTM pasting the code you gave me in the "paste instructions" area and
hit "moveit" and then it asked me to reboot so I did and saved the log. I did not remember to disable Avira after the reboot this time. I then reran
Roguekiller and it said that my version is out of date and asked me to update it so I did, then I hit scan and saved a log. Here is the Roguekiller
log from after I deleted the entry and ran it the second time, a screen shot of the Avira popup, the OTM log and the final Roguekiller log. I'm
sorry it took me so long to get back to you the weather has been horrendous and makes it tough to get to my Uncles. Thank you again for all your
help.

 

Ok, sorry again for the delay, I uninstalled avira without any problems and then I ran the RK fix, I deselected all entries except the 2 you specified and hit delete, one of them showed it was deleted and the other showed that it was unable to find it, I then reran it and neither of the entries showed up and I've attached the log here. I really am sorry about the delay and again I am very grateful for your patience and your help. please let me know if there is anything else I need to do or if the pc is clean now.

 

I'm sorry I was going to ask this with the above post but then decided against it and now I feel I'm ready to ask, I have been reading all the threads I can find about antivirus, firewall, and anti-spyware programs and I have and love avira free edition and was going to install private firewall and then I was reading about anti-spyware choices and Ive tried super anti-spyware and malwarebytes antiwalware and both require payment for real-time protection and superantispyware doesn't play well with avira and I just couldn't figure out or get the hang of malwarebytes antimalware, then I saw that avira is in both antivirus and anti-spyware categories so my question is 1) is it OK to use avira as my antivirus and anti-spyware? and 2) and if so will that work well with private firewall?

 

everything is working great, and I completed the final steps. Thank you very much for all your help and patience, it is much appreciated.