I actually did what you suggested yesterday and waiting for a response from Spybot Suport.
Thanks.
Type: Posts; User: Silverbullet; Keyword(s):
I actually did what you suggested yesterday and waiting for a response from Spybot Suport.
Thanks.
Yes, the quarantine request was from Spybot.
I have Spybot 2.9 with live protection.
I have seen the FBI Ransom adware for years. It locks your computer and the only way to recover is to power...
While browsing in edge, I received a Ransom FBI ad and I powered off computer.
After Reboot, edge did not work.
Reboot again and I received a Quarantine Request and I said yes.
After that edge and...
Performed Cleanup-PC works Great-Thanks a bunch Ken
Per Your Instructions:
.....
Download Malwarebytes' Anti-Malware to your desktop. <---------
.....
I noticed that when I downloaded this package it said that it was a trial version good for...
Ken:
The PC is running very good. The only complaint I still have is the user id logon process is 5-6 minutes. Malware service is the next highest CPU process next to idle process after I consider...
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.0.9 (06.23.2015:1)
OS: Windows 7 Home Premium x64
Ran by Dean-PC-7 on Tue...
Thanks for your help Ken.
AdwCleaner log was in AdwCleaner directory under C:.
JRT.exe ran for 3 hours and I went to bed. In the morning JRT displayed "Scanning Shortcuts" in the DOS CMD window. ...
The main problem is after I log in it takes 5-10 minutes before the system is bogged down. There is a lot of disk activity and the CPU is busy (25-50%) and iexplore is slow.
I did run a MS fix for...
Thanks for all your help
Dean
Thanks again. Everything is back to normal.
OTL Log:
========== SERVICES/DRIVERS ==========
========== OTL ==========
Registry value...
OTL logfile created on: 4/22/2012 7:33:12 AM - Run 2
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Users\Jean\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type =...
I start task manager, kill the one instance of explorer, start a new explorer process thur task manager and I get my desktop back.
Whether I only log off or shutdown and reboot, the desktop does...
The laptop continues to work great.
The fix worked but the same problem exists after logging in the next time.
:\ProgramData\Spybot - Search & Destroy\Recovery\WinAutoRunul.zip Win32/Bagle.gen.zip worm
C:\Qoobox\Quarantine\C\ProgramData\14XqPxvo.exe.vir Win32/TrojanClicker.Agent.NEB trojan...
The explorer fix worked. Will work on later after virus removed- Thanks
Computer working good.
mbam log:
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org
Database version:...
OTL Extras logfile created on: 4/18/2012 7:58:50 AM - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Users\Jean\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) -...
< MD5 for: EXPLORER.EXE.MUI >
[2009/07/13 21:26:48 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=4B87EEFDC8E253F846A7DFB49A8E6C70 -- C:\Windows\en-US\explorer.exe.mui
[2009/07/13 21:26:48...
The computer is running very good and is back to its normal performance.
The only problem I have is that I can not get the desktop displayed for my old ID. After completing the logon process, It...
ComboFix 12-04-17.01 - Jean 04/17/2012 18:54:18.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3891.2459 [GMT -5:00]
Running from: c:\users\Jean\Desktop\ComboFix.exe
SP:...
Thanks Again
Will Wait for your response.
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-17 11:44:11
-----------------------------
11:44:11.766 OS Version:...
Thanks for Reply:
The other method was an email to support under the support tab. Since I have Not received an email back from him today, I will continue with you and send email to support that I...
Thanks for your response.
I just want you to know that I also submitted a email bug report before I submitted a bug report to the forum. At the time I could not find my ID/Password from 4 years...
Yesterday my Windows 7 Laptop started slowing down. After about 5 minutes surfing the internet, the PC would slow down to a crawl. The CPU usuage was bedtween 80-100% and I noticed a slow network...
CFScript did not work as input to Combofix. I reread instructions and tried copy/paste of code box 3 times and no joy. I canot dertermine what is wrong.
So, as you suggested I manually deleted...
All three Scans say that these 25 some files are the same content (Duplicates). I did about 5 other files with all three scan reporting that they are the same file as "Ylr1.exe".
I know last week...
Combofix Log (w/o CFScript):
ComboFix 08-09-13.03 - Dean 2008-09-13 19:57:04.4 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.238 [GMT -5:00]
Running from: C:\Documents...
Sorry it has taken so long. I had to uninstall McAfee Security Clenter to disable McAfee. This was after disableing it thru its menu, stopping the McAfee services, & talking to McAfee Tech Support....
More Infor...
1. The name of the what is called a trojan is "RemAdm-ProcLaunch!171" which McAfee calls a "(Potentially Unwanted Program)". It said it was part of the "Combofix.exe" process, so I...
:oops:
1. I did steps 1 and 2 of your instructions w/o any errors or problems.
2. I started step 3. After combofix.exe ran (with CFScript dragged on combofix.exe icon) for about 15 seconds...
Sorry about that! :oops:
I must have forgot to do a copy after select all. I will double check from now on. Thanks for the patience.
By the way, the window security balloon is back again....
:cool:
PC Status:
1. No "Automatic Updates" Balloon Window.
2. 5 minutes of iexplorer use results in no extra windows being displayed.
3. PC Performance is good.
4. At end of combofix...
I ran spybot scan in Windows Safe mode and it deleted virtumonde.dll but when I rebooted and ran spybot scan it was still there. Also the following spyware showed up in scan:
downloadware.SED
...