Jump to content

Change Mode

littlemike1313

Members
  • Content Count

    180
  • Joined

  • Last visited

Everything posted by littlemike1313

  1. Jacee, Everything is still good and i wanted to thank you again for the help it was very nice of you and happy thanksgiving
  2. Spyware zero jacee one. No more pop ups or redirects. I left the firefox open overnight and checked this morning and everything is good And computer seems to running faster as well. You are the greatest jacee and thanks for everything
  3. Jacee, Sorry I some how posted the log twice I'm just screwing up all kinds tonight
  4. RogueKiller V10.11.6.0 [Nov 16 2015] (Free) by Adlice Software mail : http://www.adlice.com/contact/ Feedback : http://forum.adlice.com Website : http://www.adlice.com/software/roguekiller/ Blog : http://www.adlice.com Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : mike [Administrator] Started from : C:\Users\mike\Desktop\RogueKiller(1).exe Mode : Scan -- Date : 11/21/2015 17:48:35 ¤¤¤ Processes : 1 ¤¤¤ [suspicious.Path] wermgr.exe(4504) -- C:\ProgramData\Microsoft\Windows\WER\wermgr.exe[-] -> Killed [TermPr
  5. Jacee, I might of messed up. I may have hit delete. I'm not sure If so I'm so very sorry
  6. RogueKiller V10.11.6.0 [Nov 16 2015] (Free) by Adlice Software mail : http://www.adlice.com/contact/ Feedback : http://forum.adlice.com Website : http://www.adlice.com/software/roguekiller/ Blog : http://www.adlice.com Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : mike [Administrator] Started from : C:\Users\mike\Desktop\RogueKiller(1).exe Mode : Scan -- Date : 11/21/2015 17:48:35 ¤¤¤ Processes : 1 ¤¤¤ [suspicious.Path] wermgr.exe(4504) -- C:\ProgramData\Microsoft\Windows\WER\wermgr.exe[-] -> Killed [TermPr
  7. No jacee it did not work ?? This virus is one tough ?
  8. I did not save any bookmarks or homepages I had to delete the Firefox profile to delete the bookmarks. As of now everything is running good.ill update you in the morning
  9. Ok I did all the above and uninstalled Firefox and installed it again
  10. And I'm in the process of running a scan of the link you posted at this time
  11. Jacee, you talked about uninstalling Firefox and I dont know if matters are not but i told my son to try using internet explorer and he said the pop ups and redirects are there with it to
  12. Junkware Removal Tool (JRT) by Malwarebytes Version: 8.0.0 (11.12.2015) Operating System: Windows 7 Ultimate x64 Ran by mike (Administrator) on Fri 11/20/2015 at 18:01:22.46 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 3 Successfully deleted: C:\Users\mike\AppData\Local\plutotv (Folder) Successfully deleted: C:\Users\mike\Start Menu\Programs\search.lnk (Shortcut) Successfully deleted: C:\Windows\wininit.ini (File) Registry: 4 Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{88C7F2AA
  13. Complete scanning result of "SUPERDelete.exe", processed in VirusTotal at 11/20/2015 04:58:06 (CET) [ file data ] * name..: SUPERDelete.exe * size..: 59160 * md5...: 35da92670c06c15cf6f5c10708788554 * sha1..: 1fb77420811528d76794b9ca5410f4d7c7583d5d [ scan result ] ALYac 1.0.1.5/20151120 found nothing AVG 16.0.0.4460/20151120 found nothing AVware 1.5.0.21/20151120 found nothing Ad-Aware 12.0.163.0/20151120 found nothing AegisLab 1.5/20151119 found nothing Agnitum 5.5.1.3/20151118 found nothing AhnLab-V3 2015.11.20.00/20151119 found nothing Alibaba 1.0/20151120
  14. ComboFix 15-11-17.01 - mike 11/18/2015 16:06:32.3.2 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.4095.2641 [GMT -6:00] Running from: c:\users\mike\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Disabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A} SP: Microsoft Security Essentials *Disabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((( Files Created from 2015-10-18 to 2015-11-18 ))))))))))))))))))))))))))))))) . . 2015-11-18 22:17 . 2
  15. I did Try to. the strange thing is firefox browser does not have any extensions on it and as for add on remove programs i did not notice any programs that it would be.That is why i came here im at a loss
  16. Jacee, He is running firefox and the above did not help any.Its not a notifcation Its some type of malware computer is running slow.Here check out this link this is what it is http://easyviruskilling.com/how-to-remove-oziris-zerohorizon-net-redirect-virus-guide/
  17. Jacee, Sorry I'm not sure I understand your question. But I'll give it my best. About every 30 seconds a new tab opens that says upgrade to Windows 10 for free. After a couple of mintues it takes you to a new page with a bunch of ads. If I didn't answer your question right I'm so sorry Thanks, Mike
  18. CKScanner 2.5 - Additional Security Risks - These are not necessarily bad c:\program files\comicrack\changes.txt c:\program files\comicrack\comicrack.engine.display.forms.dll c:\program files\comicrack\comicrack.engine.dll c:\program files\comicrack\comicrack.exe c:\program files\comicrack\comicrack.exe.config c:\program files\comicrack\comicrack.ini c:\program files\comicrack\comicrack.plugins.dll c:\program files\comicrack\comicrack.url c:\program files\comicrack\cyo.common.dll c:\program files\comicrack\cyo.common.presentation.dll c:\program files\comicrack\cyo.common.
  19. Jacee, I could not find any of the above in the registry or in the program files I used the search function for both computer and registry also to double check
  20. DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16717 BrowserJavaVersion: 11.60.2 Run by mike at 17:51:40 on 2015-11-13 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.4095.2300 [GMT -6:00] . AV: Microsoft Security Essentials *Disabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A} SP: Microsoft Security Essentials *Disabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\syst
  21. Jacee, He still has the redirect virus on his computer He told me when got home from school there were 22 windows opened on the browser One thing for sure he has learned his lesson He told me from now on only safe browsing for him and no more torrents lol
  22. C:\Windows\SysWOW64\Adobe\Shockwave 12\gt.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application cleaned by deleting - quarantined I didnt delete the infection because your post did not instruct to.Not sure if i should of
×
×
  • Create New...