Pop Up And Possibly A Virus...help Please

I am in the process of helping a colleague fix her computer. As it stands, this is what I have done :

1) downloaded and updated : a) spybot, b) super-anti-spyware, c) malware bytes. (free editions)
2) Spybot : I have run the Immunization on it and removed temp files using this program
3) Super Anti-spyware : run a QUICK scan and removed any problems
4) Malware Byte : run a complete scan and removed any problems

Here is the issue when running a FULL SCAN :
1) Running individually, Spybot and Super-Anti-Spyware - FULL SCAN causes the computer to crash each and every time.
2) Running individually Spybot and Super-Anti-Spyware in Windows SAFE MODE causes the computer to crash each and every time as well.

Any suggestions how I should proceed?

 

Ok thank you. Sorry, I thought you said to post in this forum first before I did anything else.

 

# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-28-2020
# Duration: 00:02:58
# OS: Windows 7 Home Premium
# Cleaned: 117
# Failed: 1
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Conduit
Deleted C:\Users\Kevin\AppData\Roaming\Performersoft
***** [ Files ] *****
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\AppDataLow\Lizardlink
Deleted HKCU\Software\AppDataLow\Software\BackgroundContainer
Deleted HKCU\Software\AppDataLow\Software\BackgroundContainerV2
Deleted HKCU\Software\AppDataLow\Software\Smartbar
Deleted HKCU\Software\AppDataLow\Toolbar
Deleted HKCU\Software\Conduit
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\conduit.com
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKCU\Software\performersoft llc
Deleted HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION|BackgroundHost64.exe
Deleted HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD|BackgroundHost64.exe
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\AvastBrowserAutoLaunch_DF2C9D8CB48FB4381092E43B828A4DB1
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\BackgroundContainerV2
Deleted HKLM\Software\Wow6432Node\Conduit
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\PE_C_TEMP\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\PE_C_TEMP\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-21-228597572-3474054191-2107834463-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\S-1-5-21-228597572-3474054191-2107834463-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-21-228597572-3474054191-2107834463-500\Software\AppDataLow\Lizardlink
Deleted HKU\S-1-5-21-228597572-3474054191-2107834463-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\S-1-5-21-228597572-3474054191-2107834463-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-21-228597572-3474054191-2107834463-501\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\S-1-5-21-228597572-3474054191-2107834463-501\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
***** [ Chromium (and derivatives) ] *****
Deleted Extutil - booedmolknjekdopkepjjeckmjkdpfgl
Deleted Lizardlink - jainjonnknhmbbkibcbmhihbopigapdm
Deleted Managera - flpcjncodpafbgdpnkljologafpionhb
Deleted appbario13 - iolllphbfidpiigenecjjflaefapfnef
Deleted dhhjmlmdpcpiojiffodbldlkgcnaeogp
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.CyberLinkLabelPrint Folder C:\Program Files (x86)\CYBERLINK\LABELPRINT
Deleted Preinstalled.CyberLinkLabelPrint Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Deleted Preinstalled.CyberLinkLabelPrint Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Deleted Preinstalled.HPCeement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPCeeScheduleForkevin
Deleted Preinstalled.HPHealthCheck Registry HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\NCPluginUpdater
Deleted Preinstalled.HPHealthCheck Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6F340107-F9AA-47C6-B54C-C3A19F11553F}
Deleted Preinstalled.HPMediaSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\MEDIASMART\CINEMANOW
Deleted Preinstalled.HPMediaSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\MEDIASMART\PHOTO
Deleted Preinstalled.HPMediaSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\MEDIASMART\VIDEO
Deleted Preinstalled.HPMediaSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\MEDIA\DVD
Deleted Preinstalled.HPMediaSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\MEDIA\WEBCAM
Deleted Preinstalled.HPMediaSmart Folder C:\Program Files\HEWLETT-PACKARD\HP MEDIASMART
Deleted Preinstalled.HPMediaSmart Folder C:\ProgramData\HEWLETT-PACKARD\MEDIA\DVD
Deleted Preinstalled.HPMediaSmart Folder C:\Users\Kevin\AppData\Local\HEWLETT-PACKARD\MEDIASMART\PHOTO
Deleted Preinstalled.HPMediaSmart Folder C:\Users\Kevin\AppData\Local\HEWLETT-PACKARD\MEDIASMART\VIDEO
Deleted Preinstalled.HPMediaSmart Folder C:\Users\Kevin\AppData\Local\HEWLETT-PACKARD\MEDIA\DVD
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SmartMenu
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4B4E2FA2-3B1E-4147-99DB-5033981D8C2F}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{731A1D36-BF17-4C76-B7E7-CC055AF8C54E}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{01FB4998-33C4-4431-85ED-079E3EEFE75D}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{120262A6-7A4B-4889-AE85-F5E5688D3683}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{D12E3E7F-1B13-4933-A915-16C7DD37A095}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DCCAD079-F92C-44DA-B258-624FC6517A5A}
Deleted Preinstalled.HPSupportAssistant Folder C:\HP\SUPPORT
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Administrator.\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Ian\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Ian\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Kevin\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Kevin\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Windows\System32\config\systemprofile\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Windows\System32\config\systemprofile\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{C0ABBA07-B636-47B8-B9E1-BB96D7CD4831}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{55065080-504F-43BB-BE00-36B80D7D39A5}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{FC17E0A7-EAA9-4902-92F8-C83B9FD02246}
Deleted Preinstalled.HPSupportAssistant Registry HKU\S-1-5-21-228597572-3474054191-2107834463-500\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKU\S-1-5-21-228597572-3474054191-2107834463-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPTouchSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\TOUCHSMART\DVD MENU PACK
Deleted Preinstalled.HPTouchSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\TOUCHSMART\MEDIA MOVIE THEME PACK
Deleted Preinstalled.HPTouchSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\TOUCHSMART\MUSIC
Deleted Preinstalled.HPTouchSmart Folder C:\Program Files (x86)\HEWLETT-PACKARD\TOUCHSMART\NETFLIX
Deleted Preinstalled.HPTouchSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}
Deleted Preinstalled.HPTouchSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}
Deleted Preinstalled.HPTouchSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
Deleted Preinstalled.HPTouchSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{3023EBDA-BF1B-4831-B347-E5018555F26E}
Deleted Preinstalled.HPTouchSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}
Deleted Preinstalled.HPTouchSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
Deleted Preinstalled.HPTouchpointAnalyticsClient Folder C:\Program Files\HP\HP TOUCHPOINT ANALYTICS CLIENT
Deleted Preinstalled.HPTouchpointAnalyticsClient Folder C:\ProgramData\HP\HP TOUCHPOINT ANALYTICS CLIENT
Deleted Preinstalled.HPTouchpointAnalyticsClient Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{40BF1E83-20EB-11D8-97C5-0009C5020658}
Deleted Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGDF-hp-darkorbit
Deleted Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGDF-hp-seafight
Deleted Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGDF-hp-worldofwarcraft
Deleted Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGameProvider-hp-genres
Deleted Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGameProvider-hp-main
Not Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [16074 octets] - [28/10/2020 11:02:57]
AdwCleaner[S01].txt - [16136 octets] - [28/10/2020 11:08:58]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

 

The link is not working for how to work the malware byte to get a log, but I think I figured it out :

Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 10/28/20
Scan Time: 11:57 AM
Log File: 42e95b96-1936-11eb-a9b9-000000000000.json
-Software Information-
Version: 4.2.1.89
Components Version: 1.0.1070
Update Package Version: 1.0.32160
License: Trial
-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: SANDIECOPPINGER\Kevin
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 382566
Threats Detected: 13
Threats Quarantined: 0
Time Elapsed: 14 min, 20 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 2
Adware.Yontoo.Generic, HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME, No Action By User, 3779, -1, 0.0.0, , action, , ,
Adware.Yontoo.Generic, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\CHROME, No Action By User, 3779, -1, 0.0.0, , action, , ,
Registry Value: 4
Adware.Yontoo.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{9F431758-86DD-4F02-8567-234E179EC0CC}, No Action By User, 3779, 528672, 1.0.32160, , ame, , ,
Adware.Yontoo.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{6D6A420B-03C2-4A3C-BE83-DB152DF41D82}, No Action By User, 3779, 528672, 1.0.32160, , ame, , ,
Adware.Yontoo.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{0EA847A5-09D2-43FC-8608-05E7A471FB16}, No Action By User, 3779, 528672, 1.0.32160, , ame, , ,
Adware.Yontoo.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{A0E87F12-356C-4045-B58E-455FDD624942}, No Action By User, 3779, 528672, 1.0.32160, , ame, , ,
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 7
Adware.Yontoo.Generic, C:\DOCUMENTS AND SETTINGS\ALL USERS\NTUSER.POL, No Action By User, 3779, -1, 0.0.0, , action, , 075B0DA82E23780FA2DD7F2EA0464FD4, 26332AF7F0DCF06A13ABB741E5EAA39F0FF9E7E823512701500B4E52340357AB
Adware.Yontoo.Generic, C:\PROGRAMDATA\NTUSER.POL, No Action By User, 3779, -1, 0.0.0, , action, , 075B0DA82E23780FA2DD7F2EA0464FD4, 26332AF7F0DCF06A13ABB741E5EAA39F0FF9E7E823512701500B4E52340357AB
Adware.Yontoo.Generic, C:\USERS\ADMINISTRATOR.\NTUSER.POL, No Action By User, 3779, -1, 0.0.0, , action, , 7B9D4F33E329C1D41B234B069698B057, 13F2EFBA07196C1DD3F3007CA26186237BBF9445152CD4EBA90C060B8ED43658
Adware.Yontoo.Generic, C:\USERS\IAN\NTUSER.POL, No Action By User, 3779, -1, 0.0.0, , action, , 7B9D4F33E329C1D41B234B069698B057, 13F2EFBA07196C1DD3F3007CA26186237BBF9445152CD4EBA90C060B8ED43658
Adware.Yontoo.Generic, C:\USERS\KEVIN\NTUSER.POL, No Action By User, 3779, -1, 0.0.0, , action, , 191F0ED8357E474E0CB20B316DE2D0E5, F8005E240A93F41EFC5C42D8350AD05856DEDCAA91C3F89C32EBCA5FB83A1A86
Adware.Yontoo.Generic, C:\WINDOWS\SYSTEM32\GROUPPOLICY\USER\REGISTRY.POL, No Action By User, 3779, -1, 0.0.0, , action, , E8E4FDD763DECA069B8F7830B4AF9780, 249FD63D75C9A486607815D0F6748B3B3E96534F8421526A3D26312D9277DFBB
Adware.Yontoo.Generic, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, No Action By User, 3779, -1, 0.0.0, , action, , 18130AF32F63160082F252A34E9A8C7E, 7106E5EB5966D43C6581C30309EE8E97168DCC21E0625E5EC2DBDBF35677573C
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)

 

If it is possible, could the moderators or admin remove my posts for this topic completely. I do not know how to edit my own posts.