I tried deleting temporary files to no avail. it is something specific to this PC. if this borders on "tech" support I can move on, I just wanted to rule out malware or malware related items.
Type: Posts; User: Saidian; Keyword(s):
I tried deleting temporary files to no avail. it is something specific to this PC. if this borders on "tech" support I can move on, I just wanted to rule out malware or malware related items.
Ok - it seems all the fixes are temporary. right now when I try and open Gmail, it just stalls, in addition, when I do a good search, the search returns are quick, but clicking on the link fails. I...
Sorry with the holiday was traveling:
The issue is isolated to only one PC on this network, which has the fastest hardware , since this fix, the buffering has decreased significantly. I will...
what abogut this?
this doesn't look like it was revmoed?
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{F6BF8414-962C-40FE-90F1-B80A7E72DB9A} detected: Backdoor.Bedep (A)
Emsisoft Emergency Kit - Version 11.0
Last update: 7/1/2016 2:47:49 PM
User account: BlackPC\Aaron
Scan settings:
Scan type: Malware Scan
Objects: Rootkits, Memory, Traces, Files
Detect...
The overall internet is faster, but the bufferring on youtube videos is crazy. the last time this happened it was due to malware. I can call my ISP, but when I do speed testing from DSL reports.com,...
PUP.Optional.MindSpark, C:\Users\Aaron\AppData\Local\Google\Chrome\User Data\Default\Extensions\aloclllfpfjnbhenpnopmemkdjnoimki\12.41.9.65052_0\manifest.json, Quarantined,...
iles: 478
PUP.Optional.WinYahoo, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk, Quarantined, [21bae53928729f97f374835e56ad4cb4],
PUP.Optional.SearchManager.ChrPRST,...
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 7/1/2016
Scan Time: 1:08 PM
Logfile: Malwarebytes log.txt
Administrator: Yes
Version: 2.2.1.1043
Malware Database: v2016.07.01.07
I could not get the ADWcleaner to run, after hitting scan, it would time out and say the database was corrupt and to uninstall reinstall. after trying this 5 times I gave up. I will look to see if...
I have a 5MB connection and everything is running slow on this PC on the internet. other pc's on the same connection are not having any issues:
Addition.txt:
Additional scan result of Farbar...
Fix result of Farbar Recovery Scan Tool (x64) Version:31-10-2015
Ran by Aaron (2015-11-01 22:35:03) Run:3
Running from C:\Users\Aaron\Desktop
Loaded Profiles: Aaron (Available Profiles: Aaron &...
Does it seem that the backdoor trojan is at least dormant?
Everything seems to be working better, since the Malware bytes run last night. I keep a pretty close eye on credit monitoring, and my banking, and I haven't seen anything suspicious. I will continue...
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.4 (09.28.2015:1)
OS: Windows 7 Home Premium x64
Ran by Aaron on Sun...
# AdwCleaner v5.016 - Logfile created 01/11/2015 at 17:57:36
# Updated 01/11/2015 by Xplode
# Database : 2015-11-01.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
#...
the ESET took forever, I will have to run the other two programs in about 5 hours from now. will get back to you with results.
C:\FRST\Quarantine\C\Users\Aaron\AppData\Local\Coupon Companion\Chrome\Coupon Companion.crx.xBAD JS/Toolbar.Crossrider.E potentially unwanted application...
Fix result of Farbar Recovery Scan Tool (x64) Version:31-10-2015
Ran by Aaron (2015-11-01 09:20:00) Run:2
Running from C:\Users\Aaron\Desktop
Loaded Profiles: Aaron (Available Profiles: Aaron &...
I deleted the registry entry
RogueKiller V10.11.3.0 (x64) [Oct 26 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website :...
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("accessibility.typeaheadfind.flashBar", 0);
user_pref("app.update.auto", false);...
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 10/31/2015
Scan Time: 6:33 PM
Logfile: Malware REmoval v1.txt
Administrator: Yes
Version: 2.2.0.1024
Malware Database:...
*/
user_pref("accessibility.typeaheadfind.flashBar", 0);
user_pref("app.update.auto", false);
user_pref("app.update.cancelations", 4);
user_pref("app.update.disable_button.showUpdateHistory",...
*/
user_pref("accessibility.typeaheadfind.flashBar", 0);
user_pref("app.update.auto", false);
user_pref("app.update.cancelations", 4);
u), ,[0e734d10484384b2064ce978d430867a]...
alwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 10/31/2015
Scan Time: 9:46 PM
Logfile: Malware removal v2.txt
Administrator: Yes
Version: 2.2.0.1024
Malware Database:...
There have been improvements, the executeables haven't been running.
I will post the new long when the scan is finished. can you expound a little more on what was on my machine. I do use this...
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit...
*/
user_pref("accessibility.typeaheadfind.flashBar", 0);
user_pref("app.update.auto", false);
user_pref("app.update.cancelations", 4);
user_pref("app.update.disable_button.showUpdateHistory",...
*/
user_pref("accessibility.typeaheadfind.flashBar", 0);
user_pref("app.update.auto", false);
user_pref("app.update.cancelations", 4);
user_pref("app.update.disable_button.showUpdateHistory",...
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 10/31/2015
Scan Time: 6:33 PM
Logfile:
Administrator: Yes
Version: 2.2.0.1024
Malware Database: v2015.10.31.05
Ignore that post above this, I am having trouble posting the malware bytes scan, I think it is too large for the server.
NOTE: It is good practice to copy and paste the instructions into notepad and save to desktop and/or print them in case it is necessary for you to go offline during the cleanup process. To open...
RogueKiller V10.11.3.0 (x64) [Oct 26 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/software/roguekiller/...
The issue is still present.
Sorry been a busy few days. I have completed it, and will be available most of today.
ComboFix 15-10-28.01 - Aaron 10/31/2015 10:23:19.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8170.2965 [GMT -5:00]
Running from: c:\users\Aaron\Desktop\ComboFix.exe
SP:...
Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-10-2015
Ran by Aaron (2015-10-28 22:02:11)
Running from G:\Downloads\Malware removal
Windows 7 Home Premium Service Pack 1...
Everything is working much better.
what do you think about AVG? as an antivirus?
Is there anything else which needs to be done?
Just doing 20 minutes of reading, this thing is pretty nasty.
http://www.securelist.com/en/analysis/204792180/TDL4_Top_Bot
looks like my machine/ IP address, could have been used for any...
SO will windows just reassign that partition? honestly I am pretty amazed at how you tracked this down. I am not sure if this common place for you, but on this end you have saved me quite a bit of...
I did, and it doesn't - the overall performance is increased on searches also (something I expected).
Just curious though that partition is still active though, so what is the partition used for?
here you go.
Completed, do you want me to take another SS of the GPparted?
OK - sorry for the late response - been working 13 hours, and haven't been around my PC.....
so - looks like the boot sector for the OS is in that 200mb partition, if you take a look at the screen...
Here are the photos.
I am curious what we are looking for - or what lead you down this path. I would consider myself at least a little more adept than the average user -but I am clueless what we...
I tried downloading a different version, and also changing the file extension to .com and/or renaming the file.
doesn't want to run.
TDS killer doesn't want to run. I try and execute the program and all it does it sit there. I have rebooted, but the exe is not starting the application. there are only two files an exe and a eula?...
Ok - i was able to get the command prompt - everything worked fine. let me know your next command !
Here is the photo, it asks me to load drivers if i pick option one...but most of the drivers on the win 7 cd I have are old..