Jump to content


  • Content Count

  • Joined

  • Last visited

Everything posted by Kaze

  1. That's great to know man thank you so much. The work this community does is underrated
  2. I have an email from myself sent by my email say I've been recorded and this person has gained access to my pc via RAT However I have no webcam nor mic If this is real what are my options, any help is greatly appreciated As soon as I get home I'm going to be disconnecting my PC from my wifi Below are my screenshots
  3. I started a scan with MBAM and left for a few hours, I came back and all though there was no infection detected - a window called Microsoft Mouse and Keyboard Center popped up asking if I wanted to activate some features of my keyboard and mousse. Here is a picture of it in task manager
  4. It's okay, the malware is in quarantine with MBAM, should I delete it? Also, if a malware is running on my computer, it would definitely show up on my processes right?
  5. Hi, thank you for your help, here are the attachments you've requested FRST.txt Addition.txt
  6. Hi, I got infected yesterday with this malware, I quickly ran a full scan with MBAM but it didin't get detected. I then rebooted in safemode and ran the scan again but no luck. Still feeling uneasy I ran the scan again today and it caught it. Spoolsv.exe - which I uploaded to virustotal and came back negative. It's in quarantine right now, but I'd like to get some further assistance if I have more sneaky malware. Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 23/08/2015 Scan Time: 7:54:43 PM Logfile: Administrator: Yes Version: Malware Database: v2015.08.23.0
  7. My antivirus found a trojan in that download. http://puu.sh/gIOhy/57b21658a2.jpg
  8. yeah sorry, just noticed it was missing, pasted the log
  9. All processes killed ========== FILES ========== File/Folder C:\Program Files (x86)\Mozilla Firefox\nsprotector.js not found. File/Folder C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M\ApnIC[1].0 not found. File/Folder C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M\ApnIC[1].0 not found. C:\Users\owner\Desktop\Downloads\CrystalDiskInfo5_6_2Shizuku-en.exe moved successfully. C:\Users\raniakhaled\AppData\LocalLow\ToggleEN\plugins\{5E1360DC-8FA8-40df-A8CD-
  10. Results of screen317's Security Check version 0.99.99 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! COMODO Antivirus Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` MVPS Hosts File Spybot - Search & Destroy Adobe Flash Player Flash Player out of Date! Adobe Reader 9 Adobe Reader out of Date! Mozilla Firefox (36.0.1) Google Chrome (41.0.2272.101) Google Chrome (41.0.2272.89) ````````Process Check: objlist.exe by Laurent`````
  11. nothing as far as I know, everything looks good! Would you recomend me changing passwords?
  12. Sorry about that, i forgot to include it Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015 Ran by owner at 2015-03-20 12:25:47 Run:1 Running from C:\Users\owner\Desktop Loaded Profiles: owner & (Available profiles: owner) Boot Mode: Normal ============================================== Content of fixlist: ***************** start HKLM\...\Policies\Explorer: [RestrictRun] 0 HKU\S-1-5-21-3519416599-1403306863-3896355811-1000\...\Policies\Explorer: [RestrictRun] 0 HKU\S-1-5-21-3519416599-1403306863-3896355811-1000\SOFTWARE\Policies\Microsoft\Internet Expl
  13. # AdwCleaner v4.112 - Logfile created 20/03/2015 at 12:00:40 # Updated 09/03/2015 by Xplode # Database : 2015-03-15.1 [server] # Operating system : Windows 7 Home Premium Service Pack 1 (x64) # Username : owner - OWNER-PC # Running from : C:\Users\owner\Desktop\AdwCleaner.exe # Option : Cleaning ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Scheduled tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\GeekBuddyRSP Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
  14. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015 Ran by owner (administrator) on OWNER-PC on 20-03-2015 12:23:27 Running from C:\Users\owner\Desktop Loaded Profiles: owner & (Available profiles: owner) Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If
  15. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015 Ran by owner at 2015-03-19 21:05:32 Running from C:\Users\owner\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: COMODO Antivirus (Enabled - Up to date) {F0BC89B2-8937-0933-021B-B17D981F2A71} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Disabled - Up to date) {9BC38DF1-3CCA-732D-A93
  16. Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 19/03/2015 Scan Time: 8:26:06 PM Logfile: Administrator: Yes Version: Malware Database: v2015.03.19.10 Rootkit Database: v2015.02.25.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: owner Scan Type: Threat Scan Result: Completed Objects Scanned: 454672 Time Elapsed: 30 min, 10 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabl
  17. I've litterly tried everything, JRT, MAB, SBS&D and Adwarecleaner. This thing is NOT going away. I tried reinstalling Chrome but it's still there with a new install Help please 1.txt 2.txt
  18. I ran a scan with MAB today and found 2 objects, both are PUP wiseconverts, I deleted those and restarted my computer, I then went to run Adware cleaner just to be safe. Heres a log, is it safe to delete these? as in if I DO delete this something gets curropted? Help is appriciated. thanks AdwCleanerR4.txt
  19. Hi, I've quarantined Spigot, but prior to this I haven't had problems like being redirected. It says it's Registry Key, does this mean that it contains some essential for windows 7 that I shouldn't delete? Here;s the log. ThanksPUP.spigot.txt
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.