Jump to content

Change Mode

mattyang

Members
  • Content Count

    212
  • Joined

  • Last visited

Everything posted by mattyang

  1. No worries Juliet, did run TFC prior to running Malwarebyte. Everything looks good again. Once thanks ladies for the tireless effort in assisting in this matter.
  2. Hi Julie, did as requested and ran another scan by Malwarebytes. So far results returned looks good as nothing malicious detected.
  3. Hi Juliet, did the scan as advised and posting the following log result: Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 11/4/2015 Scan Time: 10:11:07 AM Logfile: Malwarebytes Scan Log.txt Administrator: Yes Version: 2.01.4.1018 Malware Database: v2015.04.10.08 Rootkit Database: v2015.03.31.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 7 CPU: x64 File System: NTFS User: Mattheus Scan Type: Threat Scan Result: Completed Objects Scanned: 354534 Time Elapsed: 44 min, 53 sec Memory: Enabled Startup
  4. Think my kid notebook pick up something nasty as he keeps getting redirected to ads website. And lots of UNIDEAL Popups appearing. Some information on his notebook: HP ENVY 14 NOTEBOOK WINDOWS 7 HOME PREMIUM Intel ® Core i7 CPU Q720 @1.60Ghz 4 GB Ram 64 Bit operating System. AVG Free EDITION 2015 Appreciate some guidance to clear this mess up. Thanks.
  5. Thank you very much Juliet for your patience in guarding me through the process of cleaning up my notebook. Indeed you are a beacon of light to guide lost souls like me in this rapid changing tech world....
  6. Hi Juliet, please find the result of both scans: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-09-2014 Ran by Matt at 2014-09-30 18:56:53 Run:2 Running from C:\Users\Matt\Desktop Loaded Profile: Matt (Available profiles: Matt) Boot Mode: Normal ============================================== Content of fixlist: ***************** start CloseProcesses: C:\$Recycle.Bin\S-1-5-21-2988392325-1286642985-2377832700-1005\$RZCNRZM\4s4eywhw.default\extensions\[email protected]\uninstall.exe C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.29.17
  7. Hi Juliet, result of ESET Online scan as follows: C:\$Recycle.Bin\S-1-5-21-2988392325-1286642985-2377832700-1005\$RZCNRZM\4s4eywhw.default\extensions\[email protected]\uninstall.exe Win32/Toolbar.Montiera.B potentially unwanted application C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.29.17\zonealarmEng.dll a variant of Win32/Toolbar.Montiera.A potentially unwanted application C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.29.17\zonealarmsrv.exe a variant of Win32/Toolbar.Montiera.A potentially unwanted application C:\Program Files\
  8. Ok I can see how this is going to be a long drawn out process of cleaning up my notebook. So far I did uninstalled Trend from my notebook from the list of programs installed. Have gone through the list again but its not found there, am I missing a step somewhere? Also did a search for the mentioned programs to be uninstalled but did not find any. Browsers issued solved after running Adwcleaner. Result as follows: # AdwCleaner v3.310 - Report created 28/09/2014 at 12:26:14 # Updated 12/09/2014 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (32 bits) # Us
  9. Btw Juliet, I tried opening all three browsers, Firefox, IE and Chrome, noticed all three start homepage opens to the istartsurf page...
  10. Hi Juliet, in replying to the AV software, used to had Trend but have since stopped using as license expired. Currently having AVG Free Edition installed. Following is FARBAR Fixlog result: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-09-2014 Ran by Matt at 2014-09-28 09:33:47 Run:1 Running from C:\Users\Matt\Desktop Loaded Profile: Matt (Available profiles: Matt) Boot Mode: Normal ============================================== Content of fixlist: ***************** start CloseProcesses: Folder:C:\ProgramData\WindowsMangerProtect HKLM\...\Run: [] =>
  11. Firstly resetted Firefox to default setting didn't work. On opening the browser, home page shown is www.istartsurf.com, different from what I had set. However, when I press on homepage it does bring me back to my original homepage. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-09-2014 Ran by Matt (administrator) on MATT-PC on 27-09-2014 22:01:06 Running from C:\Users\Matt\Downloads Loaded Profile: Matt (Available profiles: Matt) Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: English (United States) Internet Explorer Version 11 Boot Mod
  12. Hi Tomk_ seems like everything looks good after ESET scan. No threats were found. Do appreciate your assistance and guidance on this.
  13. Hi Tomk_ did a scan with Malware and got the following scan result. Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Database version: v2013.01.22.02 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 9.0.8112.16421 Matt :: MATT-PC [administrator] 22/1/2013 6:02:38 PM mbam-log-2013-01-22 (18-02-38).txt Scan type: Full scan (C:|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 346211 Time elapsed: 2 hour(s), 16 minute(s), 31 second(s) Memory Processes Detected: 0
  14. Hi Tomk_ herein are the scan result from DDS for my Toshiba Notebook. I had done so as SuperAntiSpyware has detected some trojans in my system. Hence, just want to be thoroughly sure that all remnants of anything that might pose a threat to the notebook are thoroughly eradicated. DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 1.6.0_29 Run by Matt at 20:29:42 on 2013-01-21 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.65.1033.18.3060.2237 [GMT 8:00] . AV: Trend Micro Titanium Maximum Security 2012 *Disabled/Updated* {B7599298-8445-728A-A5C7-A2
  15. Thanks Tomk_ couldn't have done it without your guidance. Btw, how do I remove JRT as I can't locate the uninstall software in Programs?
  16. Hi Tomk_, things looks good, thou didn't see any CoupondropDown extensions but did managed to remove another which I suspected was harbouring the offending adware. So far can see the problem is no longer bugging me. Thanks.
  17. Tomk_, here is the scan result from JRT: Junkware Removal Tool (JRT) by Thisisu Version: 4.4.2 (01.08.2013:1) OS: Microsoft Windows XP x86 Ran by acer on Mon 01/14/2013 at 19:14:44.17 Blog: http://thisisudax.blogspot.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully repaired: [Registry Value] hkey_local_machinesoftwaremicrosoftinternet explorersearchscopes{0633ee93-d776-472f-a0ff-e1416b8b2e3a}DisplayName Successfully repaired: [Registry Value] hkey_local_machinesoftwaremicrosoftinternet
  18. Tomk_, COMBOFIX scan log with CFScript.txt ComboFix 13-01-13.01 - acer 01/13/2013 20:11:28.2.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1023.582 [GMT 8:00] Running from: c:documents and settingsacerDesktopComboFix.exe Command switches used :: c:documents and settingsacerDesktopCFScript.txt AV: Trend Micro Titanium Internet Security 2012 *Disabled/Updated* {7D2296BC-32CC-4519-917E-52E652474AF5} . . ((((((((((((((((((((((((( Files Created from 2012-12-13 to 2013-01-13 ))))))))))))))))))))))))))))))) . . 2013-01-13 01:42 . 2013-01-13 01:42
  19. Tomk_, yet to run the CFScript in ComboFix, I can see the Coupondropdown ads popping up at certain underlined words. Will run CFScript and report in again to see if problem still exist.
  20. Hi Tomk_, sorry for the delay in posting as had some problems deactivating Trend due to password problems. However, have since resolved issue and done scan online as directed using ESET, please find the log as follows: [email protected] as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6844 # api_version=3.0.2 # EOSSerial=b3322dc81dbe6449be78e90816a15ada # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2013-01-13 02
  21. Hi Tomk_, following is ComboFix scan result: ComboFix 13-01-06.01 - acer 01/08/2013 18:20:14.1.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1023.595 [GMT 8:00] Running from: c:documents and settingsacerDesktopComboFix.exe AV: Trend Micro Titanium Internet Security 2012 *Disabled/Updated* {7D2296BC-32CC-4519-917E-52E652474AF5} * Created a new restore point . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:documents and settingsAll UsersApplication DataTEMP c:windowssystem32
  22. Hi Tomk_, please find scan result from Malwarebyte. Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Database version: v2013.01.04.05 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 acer :: ACER-2BD4233E2B [administrator] 1/4/2013 9:17:25 PM mbam-log-2013-01-04 (21-17-25).txt Scan type: Full scan (C:|D:|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 250173 Time elapsed: 1 hour(s), 1 minute(s), 15 second(s)
  23. Oops sorry about that Tomk_, will do a scan with Malware and post the result soon.
  24. Hi Tomk_, herein is the result from AdwCleaner for the Toshiba Notebook. Hope I am not confusing the issues by posting on problems for two different machines. AdwCleanerS1.txt
  25. Hi Tomk_, with regards to AdwCleaner, attached is the scan result from run on my Acer Desktop. However, please do not confuse this with post 2 which was merge from another topic and was posted with regards to scan on my Toshiba notebook.AdwCleanerS1.txt
×
×
  • Create New...