I installed Java (I couldn't get an Internet connection to download directly to my desktop, so I had to download the offline installation program to a flash drive, then load and run on my desktop). I...
Type: Posts; User: GoPhillies; Keyword(s):
I installed Java (I couldn't get an Internet connection to download directly to my desktop, so I had to download the offline installation program to a flash drive, then load and run on my desktop). I...
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11/17/2016
Scan Time: 12:21:48 AM
Logfile: MBAM Scan Log.txt
Administrator: Yes
Version: 2.2.1.1043
Malware Database:...
Fix result of Farbar Recovery Scan Tool (x64) Version: 04-11-2016
Ran by John (13-11-2016 10:27:51) Run:1
Running from C:\Users\John\Desktop
Loaded Profiles: John (Available Profiles: John)
Boot...
I'm suddenly having trouble connecting to web sites with my desktop. The problem started about a week ago and affected my desktop, as well as my wife’s two laptops, and my Kindle, all of which...
Everything is working well. Yeah, I manually update MBAM and run a Quick Scan every 1-2 weeks. It has served me well. I think I will not renew my McAfee when it comes due (one year free with new...
Updated Windows Defender didn't find anything.
# AdwCleaner v2.306 - Logfile created 08/08/2013 at 07:08:13
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : John - JOHNDESKTOP
# Boot...
OK. Due to work obligations, I won't be able to get back to this until Thursday evening, though.
Thanks a lot for your help. This is a great site, and I will send a contribution.
I have this nagging feeling that that was too easy! I deleted the System Care Antivirus folder after I made sure that the .exe file that it had previously contained was indeed gone, and it looks OK....
I was unable to find and manually remove C:\Users\John\AppData\Local\dqipvpat.exe
I ran Rogue Killer and got this report:
RogueKiller V8.6.5 [Aug 5 2013] by Tigzy
mail :...
BTW, I did run a scan with Spybot. It ran for about 12.574 seconds, "came up without results," and the "Show Scan Results" screen was blank.
Thank you. Yes, I do still need help.
I commited a cardinal sin yesterday by clicking on an e-mail attachment from DHL thinking it contained legitimate information about a delivery that I was awaiting. It did not. Instead, I got...
Junk deleted.
Kaspersky clean.
MBAM clean.
Normal boot without blue screen.
Machine running OK.
SpywareBlaster and SpywareGuard updated.
Thanks again.
Again, after my previous experience, I guess I'm paranoid that there may be more to it than just that single eSoftware folder with the studio.dll and DAT files. If HJT missed those files, what are...
And the report from Jotti:
Scan taken on 24 Jan 2009 17:32:20 (GMT)
A-Squared Found Trojan-Downloader.Agen.282636!IK
AntiVir Found TR/Dldr.Agen.282636
ArcaVir Found Adware.Surfside.Bj ...
I uploaded the eSoftware\studio.dll file to VirusTotal, and 27/39 antivirus sites recognized it as a Trojan. The majority of those sites linked it to Zlob.5835. I don't know how readable this is,...
I was able to boot my computer into Normal Mode this morning without the blue Stop Error screen, and it seems to be running fine, but I have assiduously avoided any Web surfing until I'm sure this...
Maybe I'm paranoid after my last experience. Is it OK to just delete that single file that Kaspersky identified? Will "Delete" nuke it, or do I need to do more than that to make sure it is dead and...
After I posted my HJT log, I ran a Kaspersky Online Scan, and it identified not-a-virus.Adware.Win32.Surfside.bj on my system.
*KASPERSKY ONLINE SCANNER 7 REPORT*
Sunday, January 18, 2009...
I was cleaning out old e-mails last night, decided to unsubscribe from some commercial sites, and then started having problems. First, some dynamic links quit working ... just no response. Due to...
Well, let me repeat my earlier post: I think we have done what we set out to accomplish, and I believe we can retire this thread. I greatly appreciate your expert, clear, very patient, not to...
I guess it worked. When I rebooted a balloon popped up in the lower right corner that said "Program Changes Detected. Program(s) removed: Limewire 1." Thanks.
Yeah, I had already read the policy. That's why I turned myself in when I noticed the LimeWire folder. Wonder why it didn't show up when we ran HijackThis, ComboFix, SpyBot, or Mbam?
The LimeWire version is 1.0.0.2. The Malware Removal web site that Spybot directs me to says that LimeWire 4.12 is clean. Should I go to the LimeWire site and upgrade to the newer version, then...
Oops, one more question. I just noticed that I have LimeWire on my computer, downloaded back in January, 2007. To my recollection, I have never used it, and I didn't even know I had it. It does...
Phil, I think we have done what we set out to accomplish, and I believe we can close this thread at your discretion. From the looks of the new pleas for help showing up on the Malware Removal forum,...
By the way, I can't get rid of that danged Viewpoint. I have uninstalled it several times now through Add-Remove, but it shows back up whenever I reboot. I guess AOL keeps automatically...
The problem is not so much that the folders have been rearranged, but that several major folders aren't there anymore. Everything works OK, so I guess the files are there somewhere, but I can't find...
Am I OK to update my Windows XP with Service Pack 3 now?
It looks like everything is holding up OK. Fast startup and loading of programs, no Fatal System Errors, and pleasant Internet sessions with no pop-ups are all continuing. I updated and ran Spybot...
OK, that is done. Should I turn TeaTimer back on now?
It was a bit disappointing when mbam identified another file infected with vundo. Does this mean it just missed an innocuous file on earlier...
New HJT log after latest mbam:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:57:25 AM, on 11/5/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00...
After TeaTimer sent me messages about registry changes, I decided to run mbam again, and it picked up one bad file. Here is the log:
Malwarebytes' Anti-Malware 1.30
Database version: 1358...
I just turned TeaTimer back on and immediately got a whole string of messages about Spybot detecting "an important registry entry that has been changed," and asking me to "Allow change" or "Deny...
The MBAM and McAfee scans both came back clean.
The computer is running faster than it has in a long time. I had added a gig of RAM last month and was disappointed that performance didn't seem...
The computer is running much faster. I have not signed on to the Internet, and I don't plan to until I get the OK from you. At some point I will want advice on what I need to turn on and/or install...
MBAM log:
Malwarebytes' Anti-Malware 1.30
Database version: 1355
Windows 5.1.2600 Service Pack 2
11/1/2008 10:48:22 PM
mbam-log-2008-11-01 (22-48-22).txt
Scan type: Full Scan (C:\|)
ComboFix log after adding the CFScript per your codebox:
ComboFix 08-11-01.01 - Dad 2008-11-01 20:37:14.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1411 [GMT -4:00]...
OK, I cycled the power, hit F12, "Boot from SATA Hard Drive," and it rebooted, finished ComboFix, and produced a log file. Whew! When ComboFix says to not touch the computer while the program is...
Big problem! I dragged the CFScript.txt file into the ComboFix icon on the desktop, and everything ran as it was supposed to. However, when ComboFix tried to reboot my computer, I got the blue...
I have no idea how things got this bad. I had a few unwanted pop-ups about 2 weeks ago, but nothing bad. It really went down the tubes after a session on a college sports forum that I visit every...
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:13:01 PM, on 10/29/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
...
ComboFix 08-10-29.07 - Dad 2008-10-29 13:47:53.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1397 [GMT -4:00]
Running from: C:\Documents and...
Got it. I failed to notice the space between / and cmdcons.
Pardon me, cmdcons is not showing up.
When I restarted my computer, I got the blue screen and error message again. I cycled the power button and pressed F12 during startup, got the Boot Menu screen, selected boot from SATA Hard Drive,...
By the way, my computer booted without the blue screen and Fatal System Error message. Not sure why, as I did not do any of the troubleshooting that MS suggested. I suspect, however, that the...
Back from reunion. Good times.
Phillies up 3 games to 1.
Computer booted without the error message.
I have a good feeling about this.
Here is the HJT log:
Nope, going to a reunion, so I'll be away from the TV too until Sunday evening. Ugly loss last night.