Jump to content

Juliet

Trusted Malware Techs
  • Content Count

    22,707
  • Joined

Everything posted by Juliet

  1. I agree, will never forget.
  2. wow I'm late, Happy Birthday!
  3. Welcome You'll get the hang of it soon.
  4. Glad we could help. Since this issue appears resolved ... this Topic is closed.
  5. Your very welcome I would keep MalwareBytes after the trial as an on demand scanner.... Answers to common security questions - Best Practicesby quietman7, MVP How Malware Spreads - How did I get infected?by quietman7, MVP Simple and easy ways to keep your computer safe and secure on the Internetby Lawrence Abrams, MVP How to Prevent Malwareby miekiemoes, MVP How to backup and restore your data using Cobian Backupby YourHighness Slow Computer/browser? It May Not Be Malwareby quietman7, MVP
  6. good deal I think this will improve I think we're at the point we can remove tools and quarantine folders Please download DelFix or from Here and save the file to your Desktop. Double-click DelFix.exe to run the programme. Place a checkmark next to the following items: Activate UAC Remove disinfection tools Click the Run button. -- This will remove the specialized tools we used to disinfect your system. Any leftover logs, files, folders or tools remaining on your Desktop which were not removed can bedeleted manually (right-click the file + delete). ************
  7. I'm going to say yes. If you're already running Malwarebytes 3 then open Malwarebytes and check for updates. If you don't have Malwarebytes 3 installed yet please download it from here and install it from this location Here Open Malwarebytes Anti-Malware (If it wants to update please allow it) click the Settings tab,at the top choose Protection and tick Scan for rootkits. Click the Dashboard tab, choose Scan, Threat Scan is checked and click Start Scan. If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes. Upon completion of the scan (or after the reboot), click the Reports tab. Double-click the Scan Log. At the bottom click Export and choose Text file. Save the file to your desktop and include its content in your next reply. You can access the logs by going in the "Reports" tab, clicking on the latest "Scan" entry (the one with detections), then clicking on the "Export" button in the bottom-left corner and select "Copy to clipboard". After that, all you have to do is paste it here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Emsisoft Emergency Kit - Fix Mode Follow the instructions below to run a scan using the Emsisoft Emergency Kit. Download the Emsisoft Emergency Kit and execute it. From there, click on the Install button to extract the program in the EEK folder; Once the extraction is complete, the EEK folder will open. Right-click on start emergency kit scanner.exe and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users); EEK will suggest that you run an online update before using the program. Click on Yes to launch it. After the update, click on Malware Scan under 2. Scan and accept to let EEK detect PUPs (click on Yes). Once the scan is complete, make sure that every item in the list is checked, and click on the Quarantine selected button; If it asks you for a reboot to delete some items, click on Ok to reboot automatically; After the restart, open EEK again (in the C:\EEK folder); This time, click on Logs; From there, go under the Quarantine Log tab, and click on the Export button; Save the log on your desktop, then open it, and copy/paste its content in your next reply; Please post these 2 logs when finished. Also, tell me how the computer is now.
  8. Sorry to be so late, I did not receive a notice you had replied. Need to uninstall Java 8 Update 144 <== very outdated. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Start Farbar Recovery Scan Tool with Administrator privileges (Right click on the FRST icon and select Run as administrator) highlight on the text below and select Copy. beginning with Start:: and finishing with End:: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Highlight the entire content of the quote box below and select Copy. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Start FRST (FRST64) with Administrator privileges Press the Fix button. FRST will process the lines copied above from the clipboard. When finished, a log file Fixlog.txt will pop up and saved in the same location the tool was ran from. Please copy and paste its contents in your next reply. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ AdwCleaner - Fix Mode Download AdwCleaner and move it to your Desktop Right-click on AdwCleaner.exe and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users) Accept the EULA (I accept), then click on Scan Let the scan complete. Once it's done, make sure that every item listed in the different tabs is checked and click on the Clean & Repair button. This will kill all the active processes Once the cleaning process is complete, AdwCleaner will ask to restart your computer, do it After the restart, a log will open when logging in. Please copy/paste the content of that log in your next reply ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ RogueKiller Download the right version of RogueKiller for your Windows version (32 or 64-bit) Once done, move the executable file to your Desktop, right-click on it and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users) Click on the Start Scan button in the right panel, which will bring you to another tab, and click on it again (this time it'll be in the bottom right corner) Wait for the scan to complete On completion, the results will be displayed Check every single entry (threat found), and click on the Remove Selected button On completion, the results will be displayed. Click on the Open Report button in the bottom left corner, followed by the Open TXT button (also in the bottom left corner) This will open the report in Notepad. Copy/paste its content in your next reply Please post these 3 logs when finished.
  9. Open HijackThis, Click Do a system scan only, checkmark these. Then close all other windows and browsers except HijackThis and press fix checked. O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file) O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [BingSvc] C:\Users\Allens\AppData\Local\Microsoft\BingSvc\BingSvc.exe O4 - Startup: OneNote 2010 Screen Clipper and Launcher.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE Reboot the computer to set the registry. ~~~~~~~~~~~~~~~~~~~~~~~~~~~` Farbar Recovery Scan Tool (FRST) Scan Please download Farbar Recovery Scan Tool (x32)or Farbar Recovery Scan Tool (x64)andsave the file to your Desktop. Note: Download and run the version compatible with your system (32 or 64-bit). Download both if you're unsure; only one will run. Right-Click FRST.exe / FRST64.exe and select Run as administrator to run the programme. Click Yes to the disclaimer. Ensure the Addition.txt box is checked. Click the Scan button and let the programme run. Upon completion, click OK, then OK on the Addition.txt pop up screen. Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Copy the contents of both logs and paste in your next reply.
  10. little late Happy Birthday!
  11. I use AdBlock (minus the plus) Couple of things you can do: Since it sounds like a browser addon, run a simple malware scan like Malwarebytes Anti-Malware or, set Google Chrome back to default backup your Favourites/Bookmarks and other data can be found below. Backup Chrome Bookmarks Proceed with the reset once done Chrome - Reset browser settings
  12. What the last scans found weren't that alarming but we don't want that on the machine. Let's give this a day of regular use and see if those times of slacking get a bit better.
  13. You did good. If any of it is left it's been rendered useless. Let's check for remnants Please download the Malwarebytes Anti-Malware setup file to your Desktop. OR from this location Here Open mbam-setup.x.x.xxxx.exe (x represents the version #) and follow the prompts to install the programme. Windows Vista, Windows 7 , 8, 8.1 and 10 : Right click and select "Run as Administrator" After the installation IS complete let it update if it asks. Under SETTINGS.....APPLICATIONS leave everything at default Under SETTINGS.....PROTECTION make sure AUTOMATIC QUARANTINE is on. Then go to the Dashboard and click on SCAN NOW If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes. Upon completion of the scan (or after the reboot), click the Reports tab. Double-click the Scan Log. At the bottom click Export and choose Text file. Save the file to your desktop and include its content in your next reply. You can access the logs by going in the "Reports" tab, clicking on the latest "Scan" entry (the one with detections), then clicking on the "Export" button in the bottom-left corner and select "Copy to clipboard". After that, all you have to do is paste it here Then click on POST Exit Malwarebytes ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~` Emsisoft Emergency Kit - Fix Mode Follow the instructions below to run a scan using the Emsisoft Emergency Kit. Download the Emsisoft Emergency Kit and execute it. From there, click on the Install button to extract the program in the EEK folder; Once the extraction is complete, the EEK folder will open. Right-click on start emergency kit scanner.exe and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users); EEK will suggest that you run an online update before using the program. Click on Yes to launch it. After the update, click on Malware Scan under 2. Scan and accept to let EEK detect PUPs (click on Yes). Once the scan is complete, make sure that every item in the list is checked, and click on the Quarantine selected button; If it asks you for a reboot to delete some items, click on Ok to reboot automatically; After the restart, open EEK again (in the C:\EEK folder); This time, click on Logs; From there, go under the Quarantine Log tab, and click on the Export button; Save the log on your desktop, then open it, and copy/paste its content in your next reply; Please post these 2 logs when finished. Also, tell me how the computer is now.
  14. gees I'm always late Happy Birthday!
  15. What might need to be done here is to temporarily disable Avast to run the tools that will be used. The below items need to be removed from your add/remove programs list. Chromium Browser ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 3.19.0.0 - Byte Technologies LLC) <==== ATTENTION Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) PremierOpinion (HKLM-x32\...\{eeb86aef-4a5d-4b75-9d74-f16d438fc286}) (Version: 1.3.338.311 - VoiceFive, Inc.) <==== ATTENTION For Windows Vista, Windows 7, Windows 8, and Windows 10 double-click on the Uninstall Program option. When the Add or Remove Programs or the Uninstall Program screen is displayed, please scroll through the list of programs and double-click on each of the entries listed in bold below to uninstall them. follow the default prompts and allow it to remove all files and all configuration information related to this program. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Start Farbar Recovery Scan Tool with Administrator privileges (Right click on the FRST icon and select Run as administrator) highlight on the text below and select Copy. beginning with Start:: and finishing with End:: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Highlight the entire content of the quote box below and select Copy. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Start FRST (FRST64) with Administrator privileges Press the Fix button. FRST will process the lines copied above from the clipboard. When finished, a log file Fixlog.txt will pop up and saved in the same location the tool was ran from. Please copy and paste its contents in your next reply. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ AdwCleaner - Fix Mode Download AdwCleaner and move it to your Desktop Right-click on AdwCleaner.exe and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users) Accept the EULA (I accept), then click on Scan Let the scan complete. Once it's done, make sure that every item listed in the different tabs is checked and click on the Clean & Repair button. This will kill all the active processes Once the cleaning process is complete, AdwCleaner will ask to restart your computer, do it After the restart, a log will open when logging in. Please copy/paste the content of that log in your next reply ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ RogueKiller Download the right version of RogueKiller for your Windows version (32 or 64-bit) Once done, move the executable file to your Desktop, right-click on it and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users) Click on the Start Scan button in the right panel, which will bring you to another tab, and click on it again (this time it'll be in the bottom right corner) Wait for the scan to complete On completion, the results will be displayed Check every single entry (threat found), and click on the Remove Selected button On completion, the results will be displayed. Click on the Open Report button in the bottom left corner, followed by the Open TXT button (also in the bottom left corner) This will open the report in Notepad. Copy/paste its content in your next reply Please post these logs when finished.
×
×
  • Create New...