Did you just launch your web browser and noticed your start page had been changed to websearch.flyandsearch.info? No problem, I’ll show how to remove the websearch.flyandsearch.info start page and search provider from Internet Explorer and Mozilla Firefox in this blog post. Here’s how flyandsearch.info appears in Firefox:

The removal is easy with FreeFixer, just select the websearch.flyandsearch.info items listed in the FreeFixer scan result, as shown in the screenshots below, and then click the Fix button. Problem solved.

How did you get websearch.flyandsearch.info on your computer? I found it in a download that claimed to be an episode of a famous TV-series.

Getting ads saying “Ad by PriceChop” or “Click to continue > by PriceChop“? Then you got the PriceChop adware running on your machine. I’ll show how to remove the PriceChop ads in this blog post.

PriceChop is installed as an add-on in your browser. Here’s how it appears in Firefox:

Removal is pretty straightforward with FreeFixer. Just select the PriceChop, Adblocker, Assist.dll and SW-Booster files as shown in the screenshots below.

By the way, here’s the scan results from VirusTotal for the PriceChop file loaded into Internet Explorer:

How did you get PriceChop on your computer?

Are you looking in the Add/Remove Programs dialog and see something called Search App by Ask and wonder what is it and how you got it on your machine?

Search App by Ask is a Web browser toolbar. Below is an example how Search App appears in Firefox. Search App also installs a custom search engine that appears in the search field in the upper right corner of Firefox.

I found Search App while installing a program called FreeTorrentViewer. FreeTorrentViewer bundled Search App. Here’s how Search App was disclosed in the FreeTorrentViewer installer:

How did you get Search App on your machine? Was it also bundled with another download?

Stumbled on something called Bubble Dock today. You might notice it since it opens up pop-ups in the lower right corner on the Windows desktop. Here are two examples:

I found Bubble Dock bundled with a free download. Here’s how it was disclosed in the installer:

Some of the anti-virus programs over at VirusTotal detects the Bubble Dock files:

If you’d like to uninstall Bubble Dock, you can do so from the Add/Remove programs dialog or with FreeFixer. Check the Firefox extension, LBubble Dock.exe, Bubble Dock.exe  and axSurfMatch.dll for removal as shown in the screenshots:

Do you also have Bubble Dock on your machine? Any idea how it got there?

PC Faster is a program from Baidu with various scanning and cleaning features:

If PC Faster appeared unexpectedly on your machine, it may have been bundled with another download. Here’s how it was disclosed when I found it, while bundled with a download manager.

During my testing, the Terms and Condition link opened up a 404 Page Not Found browser tab.

Are you using PC Faster? Do you like it and does it speed up your computer as much as it claims?

Found another adware variant called Bellaphant today. It was bundled with a download called MediaFinder. Here’s how Bellaphant is disclosed in the MediaFinder installer:

According to the disclosure, Bellaphant

provides special offers and coupons, website ratings and reviews, multi-site searching, comparison shopping and related search results. Additional features may be auto-enabled after installing.

13 of the 51 anti-virus programs are clearly aware of  the Bellaphant adware, as you can see in the scan result from VirusTotal:

If you have Bellaphant on your machine you can see it in Mozilla Firefox’ and Internet Explorer’s Add-Ons menu:

If you’d like to remove Bellaphant with FreeFixer, you can just check the Mozilla Firefox Extension and the Internet Exlorer browser helper object called bellaphantbho.dll:

I found Bellaphant bundled with MediaFinder. How did you get Bellaphant on your machine?

Did you find something called Adobe Flash Player Packages in the programs list and wonder what it is? Chances are that this was added when downloading and installing an unofficial Adobe Flash Player. Here’s how Adobe Flash Player Packages appears in the programs list:

To avoid this in the future, please keep in mind to always download software from its official site. For example, get the Adobe Flash Player from http://get.adobe.com/se/flashplayer/

How did you get Adobe Flash Player Packages on your machine?

Another adware find this morning. This one is called Greener Web. You might have noticed Greener Web when starting up Firefox and being asked to install Greener Web, or in Mozilla’s and Internet Explorer’s add-on dialog:

Many of the  anti-virus programs over at VirusTotal  detects the Greener Web adware as you can see in the scan result for GreenerWebbho.dll:

I found GreenerWeb bundled in an unofficial Adobe Flash Player download. The installer file, AdobeFlashPlayer.exe was digitally signed by SuperCool Applications. Here’s how GreenerWeb was disclosed in the installer:

How did you get Greener Web on your computer? Please let me and the readers know by posting a comment.

You can remove Greener Web with FreeFixer. Just select the Greener Web files for removal and click the Fix button and Greener Web will not bother you any more:

Hope this helped you figure out what Greener Web  is and how it is distributed.

Found a few new variants of SaveNet this morning. The new variant appear as Save On, SO.Booster and SO.Sustainer 1.80 in the Add/Remove programs dialog. These where found in a camera related software, and the setup file was digitally signed by Daneil Jemoch. Save On inserts ad links while you browse. The links are underlined with a green small arrow and are labeled “Click to Continue > by save on” as shown in the screenshot below:

These are the detection results from VirusTotal for SO.Booster.exe:

If you have Save On, SO.Booster and SO.Sustainer 1.80 on your machine, you may have noticed a file called SO.Booster.exe or SO;Booster.exe running on your computer at startup or that new add-ons have appeared in your browser. Here’s a screenshot from Firefox that shows the SaveOn add-on:

The removal is pretty straightforward with the FreeFixer removal tool. Simply check the SaveOn, SO.Booster and SO.Sustainer files, as shown in the screenshots:

How did you get SaveOn on your machine?