Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Adobe flash player, redirect virus?

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » September 29th, 2014, 5:37 pm

Cypher,
I unistalled the AFP ok but the adobe packages wouldnot uninstall: you have uninstalled this package and its offers or it is still uninstalling.
that's the message window I got when I selected uninstall.

Sig.
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm
Advertisement
Register to Remove

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » September 29th, 2014, 9:20 pm

Cypher, One question for you: could my computer not be reconizing that it has AFP on it for some reason?
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm

Re: Adobe flash player, redirect virus?

Unread postby Cypher » September 30th, 2014, 7:32 am

Hi,
One question for you: could my computer not be reconizing that it has AFP on it for some reason?

Possibly.
Lets try this.

Please download Add Remove Program Cleaner to your desktop.

  • Double-click on addremovecleaner.
  • Locate Adobe Flash Packages and Adobe Flash Player 15 in the menu and click once on each to highlight.
  • Now click on Remove from add/remove programs list.
  • At the prompt click on Yes then Exit.
  • Now delete addremovecleaner from the desktop, empty the Recycle Bin and reboot the computer.

Next.

Download and reinstall Adobe Flash Player from Here
Note: Uncheck install McAfee Security Scan Plus

Still having problems?
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » September 30th, 2014, 10:40 am

Hi
I downloaded the installer as you instructed, deleted adobe package, player,emptied recycle bin
rebooted machine. Also went to local news channel site this is the error message: You need to download the latest version of flash player to use this player

Need Help?

Also then tried flash player test website, nothing.
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm

Re: Adobe flash player, redirect virus?

Unread postby Cypher » September 30th, 2014, 11:10 am

Hi,
As far as i can tell this problem is not malware related.
I might have to direct you to a forum that deals with non-malware related issues.
Lets check to make sure AFP is installed correctly.
Go to the link below, you should see your flash version listed.
Your Flash Version 15.0.0.152 <----

http://www.adobe.com/go/tn_14157

Lets me know if this is what you see.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » September 30th, 2014, 11:56 am

this is what it says: Flash Player installation was not successful
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm

Re: Adobe flash player, redirect virus?

Unread postby Cypher » September 30th, 2014, 12:07 pm

Ok go to the same link and follow the instructions for running the uninstaller.
Make sure you complete all four steps. Let me know when you have done that.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » September 30th, 2014, 12:21 pm

just finished the uninstall and did a re-check this is the message I got:Sorry, Flash Player is either not installed or not enabled.
Please go to step 2.
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » September 30th, 2014, 12:36 pm

Cypher I did this: C:\Windows\system32\Macromed\Flash

and it came up with a flash folder, tried to delete this file and it tells me I need administrator permission to make this action, I am the administrator, I thought.

or should I just leave this folder alone?
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm

Re: Adobe flash player, redirect virus?

Unread postby Cypher » September 30th, 2014, 12:54 pm

Hi,
C:\Windows\system32\Macromed\Flash

Don't worry about that for now.
Now we need to check for any remnants of AFP on your computer.

Please download SystemLook from the link below and save it to your Desktop.

For 32 bit Systems

For 64 bit Systems

  • Right-click SystemLook.exe and select " Run as administrator " to run it.
  • Copy and paste the content of the following codebox into the main textfield: Do not include the words Code: select all
  • (Click the select all button next to code to select the entire script).
    Code: Select all
    :filefind
    *Flash Player*
    
    :folderfind
    *Flash Player*
    
    :Regfind
    Flash Player

  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found on your Desktop entitled SystemLook.txt
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » September 30th, 2014, 1:12 pm

SystemLook 04.09.10 by jpshortstuff
Log created at 12:06 on 30/09/2014 by Sigman
Administrator - Elevation successful

========== filefind ==========

Searching for "*Flash Player*"
No files found.

========== folderfind ==========

Searching for "*Flash Player*"
C:\Program Files\Adobe\Flash Player d------ [04:49 17/11/2013]
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player d------ [04:49 17/11/2013]
C:\Users\Guest\AppData\Roaming\Adobe\Flash Player d------ [15:08 24/01/2014]
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player d------ [15:07 24/01/2014]
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player d------ [00:17 29/01/2012]
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player d------ [00:17 29/01/2012]
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player d------ [17:05 30/09/2014]
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player d------ [05:45 13/04/2013]
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\Flash Player d------ [03:19 08/02/2013]

========== Regfind ==========

Searching for "Flash Player"
[HKEY_CURRENT_USER\Software\Macromedia\FlashPlayerUpdate]
"description"="<XML><update version="14,0,0,125"><description>mshtml:<font face="sans-serif"><p><font color="#666666" style="{font-size: 18px}">An update to your Adobe Flash Player is available</font></p><font style="{font-size: 10px}"><p>This update includes improvements in usability, online security and stability, as well as new features which help content developers deliver rich and engaging experiences.</p><br />Do you enjoy gaming? Adobe® Playpanel allows you to:
<ul><li>Quickly access your favorite games and discover new ones</li><li>Find out which games your friends like</li><li>Rate and review the games you&apos;ve played</li></ul><br />Playpanel can be downloaded separately at http://adobe.com/go/playpanel</font></font></description></update><meta>message &quot;This update includes improvements in usability, online security and stability, as well as new features which help content developers deliver rich and engaging experiences.<br /><br />
[HKEY_CURRENT_USER\Software\RealNetworks\RealConverter\16.0\Preferences\MountPoints\DT_Plugins\PluginHandlerData\PluginInfo4]
@="orks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Brush Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmlrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/vnd.rn-brushstream}{IndexNumber~N0~LoadMultiple~N1~Renderer_Granularity~N100~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for this program is available under the RealNetworks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Synchronized Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmmrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/x-pn-realevent|syncMM/x-pn-realvideo|application/x-pn-realad}{IndexNumber~N0~LoadMultiple~N1~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for
[HKEY_CURRENT_USER\Software\RealNetworks\RealPlayer\16.0\Preferences\MountPoints\DT_Plugins\PluginHandlerData\PluginInfo4]
@="orks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Brush Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmlrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/vnd.rn-brushstream}{IndexNumber~N0~LoadMultiple~N1~Renderer_Granularity~N100~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for this program is available under the RealNetworks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Synchronized Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmmrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/x-pn-realevent|syncMM/x-pn-realvideo|application/x-pn-realad}{IndexNumber~N0~LoadMultiple~N1~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for th
[HKEY_CURRENT_USER\Software\RealNetworks\RealPlayer\16.0\Preferences\MountPoints\RealMediaSDK\PluginHandlerData\PluginInfo4]
@="orks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Brush Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmlrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/vnd.rn-brushstream}{IndexNumber~N0~LoadMultiple~N1~Renderer_Granularity~N100~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for this program is available under the RealNetworks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Synchronized Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmmrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/x-pn-realevent|syncMM/x-pn-realvideo|application/x-pn-realad}{IndexNumber~N0~LoadMultiple~N1~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for
[HKEY_CURRENT_USER\Software\RealNetworks\RealShare\16.0\Preferences\MountPoints\DT_Plugins\PluginHandlerData\PluginInfo4]
@="orks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Brush Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmlrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/vnd.rn-brushstream}{IndexNumber~N0~LoadMultiple~N1~Renderer_Granularity~N100~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for this program is available under the RealNetworks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Synchronized Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmmrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/x-pn-realevent|syncMM/x-pn-realvideo|application/x-pn-realad}{IndexNumber~N0~LoadMultiple~N1~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for thi
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"c:\Program Files\Adobe\Flash Player\AddIns\airappinstaller\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"c:\Program Files\Adobe\Flash Player\AddIns\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"c:\Program Files\Adobe\Flash Player\"=""
[HKEY_USERS\S-1-5-21-2125914593-2673472216-1242065460-1000\Software\Macromedia\FlashPlayerUpdate]
"description"="<XML><update version="14,0,0,125"><description>mshtml:<font face="sans-serif"><p><font color="#666666" style="{font-size: 18px}">An update to your Adobe Flash Player is available</font></p><font style="{font-size: 10px}"><p>This update includes improvements in usability, online security and stability, as well as new features which help content developers deliver rich and engaging experiences.</p><br />Do you enjoy gaming? Adobe® Playpanel allows you to:
<ul><li>Quickly access your favorite games and discover new ones</li><li>Find out which games your friends like</li><li>Rate and review the games you&apos;ve played</li></ul><br />Playpanel can be downloaded separately at http://adobe.com/go/playpanel</font></font></description></update><meta>message &quot;This update includes improvements in usability, online security and stability, as well as new features which help content developers deliver ri
[HKEY_USERS\S-1-5-21-2125914593-2673472216-1242065460-1000\Software\RealNetworks\RealConverter\16.0\Preferences\MountPoints\DT_Plugins\PluginHandlerData\PluginInfo4]
@="orks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Brush Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmlrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/vnd.rn-brushstream}{IndexNumber~N0~LoadMultiple~N1~Renderer_Granularity~N100~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for this program is available under the RealNetworks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Synchronized Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmmrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/x-pn-realevent|syncMM/x-pn-realvideo|application/x-pn-realad}{IndexNumber~N0~LoadMultiple~N1~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-20
[HKEY_USERS\S-1-5-21-2125914593-2673472216-1242065460-1000\Software\RealNetworks\RealPlayer\16.0\Preferences\MountPoints\DT_Plugins\PluginHandlerData\PluginInfo4]
@="orks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Brush Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmlrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/vnd.rn-brushstream}{IndexNumber~N0~LoadMultiple~N1~Renderer_Granularity~N100~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for this program is available under the RealNetworks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Synchronized Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmmrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/x-pn-realevent|syncMM/x-pn-realvideo|application/x-pn-realad}{IndexNumber~N0~LoadMultiple~N1~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009.
[HKEY_USERS\S-1-5-21-2125914593-2673472216-1242065460-1000\Software\RealNetworks\RealPlayer\16.0\Preferences\MountPoints\RealMediaSDK\PluginHandlerData\PluginInfo4]
@="orks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Brush Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmlrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/vnd.rn-brushstream}{IndexNumber~N0~LoadMultiple~N1~Renderer_Granularity~N100~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for this program is available under the RealNetworks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Synchronized Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmmrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/x-pn-realevent|syncMM/x-pn-realvideo|application/x-pn-realad}{IndexNumber~N0~LoadMultiple~N1~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-200
[HKEY_USERS\S-1-5-21-2125914593-2673472216-1242065460-1000\Software\RealNetworks\RealShare\16.0\Preferences\MountPoints\DT_Plugins\PluginHandlerData\PluginInfo4]
@="orks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Brush Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmlrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/vnd.rn-brushstream}{IndexNumber~N0~LoadMultiple~N1~Renderer_Granularity~N100~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009. All rights reserved. Source code for this program is available under the RealNetworks Public Source License. (http://www.helixcommunity.org)~Description~SRealNetworks Synchronized Renderer Plugin~PlgCopy~Shttp://www.helixcommunity.org~PluginFilename~Ssmmrender.dll~PluginType~SPLUGIN_RENDERER~RendererMime~Sapplication/x-pn-realevent|syncMM/x-pn-realvideo|application/x-pn-realad}{IndexNumber~N0~LoadMultiple~N1~Version~N12339~Copyright~SCopyright(c) RealNetworks, Inc. 1995-2009.

-= EOF =-
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm

Re: Adobe flash player, redirect virus?

Unread postby Cypher » September 30th, 2014, 1:32 pm

Hi,
Now we need to run another fix.

Download and run OTM

Download OTM.exe by Old Timer and save it to your Desktop.
  • Right-click OTM.exe and select " Run as administrator " to run it.
  • Copy the following script, Do not include the words Code: select all
  • (Click the select all button next to code to select the entire script).
    Code: Select all
    :Reg
    [-HKEY_CURRENT_USER\Software\Macromedia\FlashPlayerUpdate]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
    "c:\Program Files\Adobe\Flash Player\AddIns\airappinstaller\"=-
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
    "c:\Program Files\Adobe\Flash Player\AddIns\"=-
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
    "c:\Program Files\Adobe\Flash Player\"=-
    [-HKEY_USERS\S-1-5-21-2125914593-2673472216-1242065460-1000\Software\Macromedia\FlashPlayerUpdate]
    
    :Files
    C:\Windows\system32\Macromed\Flash
    C:\Program Files\Adobe\Flash Player 
    C:\Users\Default\AppData\Roaming\Macromedia\Flash Player 
    C:\Users\Guest\AppData\Roaming\Adobe\Flash Player 
    C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player 
    C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player 
    C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player 
    C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player 
    C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player 
    C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\Flash Player
    ipconfig /flushdns /c
    
    :Commands
    [emptytemp]
    [Reboot]
    

    • Return to OTM, right-click then paste the code into the blank box below Image
    • Next click on the large Image button.
    • OTM may ask to reboot the machine. Please do so if asked.
    • Copy everything in the Results window (under the green bar), and paste it in your next reply.

NOTE: If you are unable to copy/paste from this window (as will be the case if the machine was rebooted), open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTM\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » September 30th, 2014, 5:33 pm

All processes killed
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\Software\Macromedia\FlashPlayerUpdate\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\c:\Program Files\Adobe\Flash Player\AddIns\airappinstaller\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\c:\Program Files\Adobe\Flash Player\AddIns\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\c:\Program Files\Adobe\Flash Player\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2125914593-2673472216-1242065460-1000\Software\Macromedia\FlashPlayerUpdate\ not found.
========== FILES ==========
C:\Windows\system32\Macromed\Flash folder moved successfully.
C:\Program Files\Adobe\Flash Player\AddIns\airappinstaller folder moved successfully.
C:\Program Files\Adobe\Flash Player\AddIns folder moved successfully.
C:\Program Files\Adobe\Flash Player folder moved successfully.
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Users\Guest\AppData\Roaming\Adobe\Flash Player\NativeCache folder moved successfully.
C:\Users\Guest\AppData\Roaming\Adobe\Flash Player folder moved successfully.
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player\NativeCache folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player\AssetCache\GM5N6DGW folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player\AssetCache folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\macromedia.com folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\#SharedObjects folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\#Security\FlashPlayerTrust folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\#Security folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\Flash Player\AssetCache\JPY7WNM6 folder moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\Flash Player\AssetCache folder moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\Flash Player folder moved successfully.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Sigman\Desktop\cmd.bat deleted successfully.
C:\Users\Sigman\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Sigman
->Temp folder emptied: 734719 bytes
->Temporary Internet Files folder emptied: 11502689 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 74051451 bytes

User: TEMP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1246752 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 741 bytes
RecycleBin emptied: 104594 bytes

Total Files Cleaned = 84.00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 09302014_162042

Files moved on Reboot...
C:\Users\Sigman\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

Cyper I think this is the right file: All processes killed
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\Software\Macromedia\FlashPlayerUpdate\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\c:\Program Files\Adobe\Flash Player\AddIns\airappinstaller\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\c:\Program Files\Adobe\Flash Player\AddIns\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\c:\Program Files\Adobe\Flash Player\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2125914593-2673472216-1242065460-1000\Software\Macromedia\FlashPlayerUpdate\ not found.
========== FILES ==========
C:\Windows\system32\Macromed\Flash folder moved successfully.
C:\Program Files\Adobe\Flash Player\AddIns\airappinstaller folder moved successfully.
C:\Program Files\Adobe\Flash Player\AddIns folder moved successfully.
C:\Program Files\Adobe\Flash Player folder moved successfully.
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\Default\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Users\Guest\AppData\Roaming\Adobe\Flash Player\NativeCache folder moved successfully.
C:\Users\Guest\AppData\Roaming\Adobe\Flash Player folder moved successfully.
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\Guest\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player\NativeCache folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player\AssetCache\GM5N6DGW folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player\AssetCache folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Adobe\Flash Player folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\macromedia.com folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\#SharedObjects folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\#Security\FlashPlayerTrust folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player\#Security folder moved successfully.
C:\Users\Sigman\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\TEMP\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\Macromedia\Flash Player folder moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\Flash Player\AssetCache\JPY7WNM6 folder moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\Flash Player\AssetCache folder moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\Flash Player folder moved successfully.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Sigman\Desktop\cmd.bat deleted successfully.
C:\Users\Sigman\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Sigman
->Temp folder emptied: 734719 bytes
->Temporary Internet Files folder emptied: 11502689 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 74051451 bytes

User: TEMP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1246752 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 741 bytes
RecycleBin emptied: 104594 bytes

Total Files Cleaned = 84.00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 09302014_162042

Files moved on Reboot...
C:\Users\Sigman\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Registry entries deleted on Reboot...
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm

Re: Adobe flash player, redirect virus?

Unread postby Cypher » October 1st, 2014, 5:35 am

Hi,
Good work.
As far as i can tell AFT should be completely removed from your computer now.
Download and reinstall it again from Here
Note: Uncheck install McAfee Security Scan Plus

Then let me know if you're still having problems.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Re: Adobe flash player, redirect virus?

Unread postby bullydogg » October 1st, 2014, 9:10 am

Cypher,
It worked .....:)
I went to the site you said to check AFP and it showed the version and OS I am using.
I am satisfied and most of al I want to thank you for taking the time to help me get this squared away.

is there anything else you want me to do before you close my file?
Again thank you very much Cypher.

Sig.
bullydogg
Regular Member
 
Posts: 20
Joined: September 25th, 2014, 9:10 pm
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 55 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware