You're okay on malware but you need to do some housekeeping: Please print out the directions:
Did you do this in my Post #4?
Flash player is known for leaving behind old insecure files. It is better to clean out the entire entry, uninstall, then reinstall:
The following entry is in the HJT log:
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150600.exe -Update -1150600 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; GTB6.3; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; OfficeLiveConnector.1.3; OfficeLivePatch.0.0)" -"http://www.adobe.com/shockwave/welcome/"
Please follow my directions for removal.
----------------------------------------------------
You need to get the Tracking Cookies under control. Most of them are "the usual", but there are quite a few from a game related site or ad. That particular one is Ad4Game: The Internet's game Ad Network - game advertising online ..I doubt this is something you have by choice!
Reset Cookies
For Internet Explorer: Internet Options (through Tools or Control Panel) Privacy tab> Advanced button> CHECK 'override automatic Cookie handling'>
CHECK 'accept first party Cookies'>
CHECK 'Block third party Cookies'>
CHECK 'allow per session Cookies'> Apply> OK.
-------------------------------------------------
About Discover: You have the following entries running: It's a play on words:
C:\Program Files\DISC\DISCover.exe
C:\Program Files\DISC\DiscUpdMgr.exe> update manager
C:\Program Files\DISC\DiscStreamHub.exe
- (DISCover Drop Play System): DISCover.exe - Part of the DISCover PC Game Console operating system.
- It is a screen console enabling a user to play online games that are remotely hosted. It is sometimes preloaded by PC makers.
- It is a user invoked program> this means that it does not need to start on boot and run in the background. User can open the program as needed.
Here's the site for it- you can get an idea of what it is:
http://www.videogameconsolelibrary.com/pg00-discover.htm
If you do not use this, it should be uninstalled: Follow my directions in #4 to reopen HJT and check each of the 3 entries. Then click on "Fix checked."
When you boot into Safe Mode for the Shockwave Updater, include this:
- Go to Add/Remove Programs in the Control Panel> Uninstall DISC or Discover- however it's listed.
- Right click on Start> Explore> My Computer< Local Drive (C)> Programs> do a right click? Delete on folder for DISC or Discover.
FYI: Fun Web Products = To name a few: Smiley Central, Cursor Mania, FunBuddyIcons, My Mail Stationery, Popular Screensavers, MyWebSearch
Their promo is "Get thousands of smileys, screensavers, cursors and more cool stuff - all 100% free!". What they don't tell you is that the products are full of adware, spyware and other pests> all easy to get and hard to get rid of.
Please do this online scan:
Run Eset NOD32 Online AntiVirus Scanner HERE
Note: You will need to use Internet Explorer for this scan.
- Tick the box next to YES, I accept the Terms of Use.
- Click Start
- When asked, allow the Active X control to install
- Disable your current Antivirus software. You can usually do this with its Notification Tray icon near the clock.
- Click Start
- Make sure that the option "Remove found threats" is Unchecked, and the option "Scan unwanted applications" is checked
- Click Scan
- Wait for the scan to finish
- Re-enable your Antivirus software.
- A logfile is created and located at C:\Program Files\EsetOnlineScanner\log.txt. Please include this on your post.
Follow with rescan of HJT.
Include both logs in next reply.