I don't know when that stuff got quarantined. There are several logs in the history so I copies the scan log from earlier and the protection log (to follow). I reset IE and cleared the personal settings and the third party cookie pop ups are going to drive us nuts for a while but I think it fixed whatever was blocking Delfix, cause now I can access it (I sent the link from my laptop to my e-mail so I could access it from the desktop computer to check it). As soon as I tried to access the net I started getting an ad pop up. I think it was ad.aol.com but not sure because I lost it trying to get rid of the third party cookie pop ups.
Anyway here are the logs you requested and hopefully we're getting to the bottom of this.
MBam log:
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 10/2/2014
Scan Time: 1:37:05 AM
Logfile: mbamnewest.txt
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.10.02.02
Rootkit Database: v2014.09.19.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: waldo
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 325869
Time Elapsed: 9 min, 49 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
MBam protection log:
Malwarebytes Anti-Malware
www.malwarebytes.org
Protection, 10/2/2014 12:42:57 AM, SYSTEM, WALDO-PC, Protection, Malware Protection, Starting,
Protection, 10/2/2014 12:42:57 AM, SYSTEM, WALDO-PC, Protection, Malware Protection, Started,
Protection, 10/2/2014 12:42:58 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Starting,
Update, 10/2/2014 12:42:59 AM, SYSTEM, WALDO-PC, Manual, Rootkit Database, 2014.2.20.1, 2014.9.19.1,
Update, 10/2/2014 12:43:02 AM, SYSTEM, WALDO-PC, Manual, Malware Database, 2014.3.4.9, 2014.10.2.2,
Protection, 10/2/2014 12:43:02 AM, SYSTEM, WALDO-PC, Protection, Refresh, Starting,
Protection, 10/2/2014 12:43:26 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Started,
Protection, 10/2/2014 12:43:27 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Stopping,
Protection, 10/2/2014 12:43:27 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Stopped,
Protection, 10/2/2014 12:43:31 AM, SYSTEM, WALDO-PC, Protection, Refresh, Success,
Protection, 10/2/2014 12:43:31 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Starting,
Protection, 10/2/2014 12:43:32 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Started,
Detection, 10/2/2014 11:33:40 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, IP, 31.170.179.179, alnera.eu, 63445, Outbound, C:\Program Files (x86)\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe,
Detection, 10/2/2014 11:33:40 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, IP, 31.170.179.179, alnera.eu, 63445, Outbound, C:\Program Files (x86)\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe,
Detection, 10/2/2014 11:33:46 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, IP, 31.170.179.179, alnera.eu, 63512, Outbound, C:\Program Files (x86)\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe,
Protection, 10/2/2014 11:45:10 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Stopping,
Protection, 10/2/2014 11:45:10 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Stopped,
Protection, 10/2/2014 11:45:10 AM, SYSTEM, WALDO-PC, Protection, Malware Protection, Stopping,
Protection, 10/2/2014 11:45:10 AM, SYSTEM, WALDO-PC, Protection, Malware Protection, Stopped,
Protection, 10/2/2014 11:56:43 AM, SYSTEM, WALDO-PC, Protection, Malware Protection, Starting,
Protection, 10/2/2014 11:56:43 AM, SYSTEM, WALDO-PC, Protection, Malware Protection, Started,
Protection, 10/2/2014 11:56:43 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Starting,
Protection, 10/2/2014 11:56:43 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Started,
Update, 10/2/2014 11:57:35 AM, SYSTEM, WALDO-PC, Manual, Malware Database, 2014.10.2.2, 2014.10.2.7,
Protection, 10/2/2014 11:57:37 AM, SYSTEM, WALDO-PC, Protection, Refresh, Starting,
Protection, 10/2/2014 11:57:37 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Stopping,
Protection, 10/2/2014 11:57:37 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Stopped,
Protection, 10/2/2014 11:57:42 AM, SYSTEM, WALDO-PC, Protection, Refresh, Success,
Protection, 10/2/2014 11:57:42 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Starting,
Protection, 10/2/2014 11:57:42 AM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Started,
Protection, 10/2/2014 2:10:43 PM, SYSTEM, WALDO-PC, Protection, Malware Protection, Starting,
Protection, 10/2/2014 2:10:43 PM, SYSTEM, WALDO-PC, Protection, Malware Protection, Started,
Protection, 10/2/2014 2:10:43 PM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Starting,
Protection, 10/2/2014 2:11:40 PM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Started,
Protection, 10/2/2014 2:14:16 PM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Stopping,
Protection, 10/2/2014 2:14:16 PM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Stopped,
Protection, 10/2/2014 2:14:16 PM, SYSTEM, WALDO-PC, Protection, Malware Protection, Stopping,
Protection, 10/2/2014 2:14:17 PM, SYSTEM, WALDO-PC, Protection, Malware Protection, Stopped,
Protection, 10/2/2014 2:15:46 PM, SYSTEM, WALDO-PC, Protection, Malware Protection, Starting,
Protection, 10/2/2014 2:15:46 PM, SYSTEM, WALDO-PC, Protection, Malware Protection, Started,
Protection, 10/2/2014 2:15:46 PM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Starting,
Protection, 10/2/2014 2:16:22 PM, SYSTEM, WALDO-PC, Protection, Malicious Website Protection, Started,
(end)
fixlistlog:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 28-09-2014 02
Ran by waldo at 2014-10-02 14:14:33 Run:3
Running from C:\Users\waldo\Desktop
Loaded Profile: waldo (Available profiles: waldo)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
start
CloseProcesses:
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKLM-x32 - AOL Toolbar - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll No File
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key Deleted successfully.
"HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{ba00b7b1-0351-477a-b948-23e3ee5a73d4} => value deleted successfully.
"HKCR\Wow6432Node\CLSID\{ba00b7b1-0351-477a-b948-23e3ee5a73d4}" => Key deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 18 MB temporary data.
The system needed a reboot.
==== End of Fixlog ====
Let me know what else we need to do. Thanks much!!!