Jump to content

deeprybka

Experts
  • Content Count

    1,338
  • Joined

  • Last visited

Posts posted by deeprybka


  1. Step 1

    frst.pngfrstfix.png

    Press thew7.png + R on your keyboard at the same time. Type notepad and click OK.

    • Copy the entire content of the codebox below and paste into the notepad document:

      "C:\Users\HP\AppData\Roaming\Rainmaker Software Group LLC.?\Pro PC Cleaner 2.5.6"
    • Click File, Save As and type fixlist.txt as the File Name.
    Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!
    • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.

      (XP users click run after receipt of Windows Security Warning - Open File).

    • Press the Fix button just once and wait.
    • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
    • When finished FRST will generate a log on the Desktop, called Fixlog.txt.
    Please post it to your reply.

  2. Step 1

    Please downloadesetlogo.pngOnline Scanner and save it to your Desktop.

    • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
    • Start installer.pngwith administartor privileges.
    • Select the option Yes, I accept the Terms of Use and click on Start.
    • Choose the following settings:
    settings.png
    • Click on Start. The virus signature database will begin to download. This may take some time.
    • When completed the Online Scan will begin automatically.

      Note: This scan might take a long time! Please be patient.

    • When completed, click on Finish.
    • A log filelog.pngis created at logpath.png

      Copy and paste the content of this log file in your next reply.

    esetlog.png

    Note: Do not forget to re-enable your antivirus application after running the above scan!

    eset.gif


  3. Please download the attached fixlist above and save it in the same directory as FRST.

    • Start FRST with Administrator privileges.
    • Press the Fix button.
    • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.
      Please copy and paste its contents in your next reply.

  4. I don't know what are you doing! The content of the fixlist must be:

    CloseProcesses:HKLM-x32\...\Run: [] => [X]HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction SearchScopes: HKU\S-1-5-21-3292518850-759306849-2421569196-1000 -> DefaultScope {B8B14CBB-2C8B-4992-98ED-9C52601EE885} URL =SearchScopes: HKU\S-1-5-21-3292518850-759306849-2421569196-1000 -> {B8B14CBB-2C8B-4992-98ED-9C52601EE885} URL =Task: {4FFE2FFC-A478-421F-90E2-673F330C717D} - System32\Tasks\Norton PC Checkup Setup => C:\Users\HP\AppData\Local\Temp\PCCUStubInstaller\SymcPCCUInstaller.exe Task: {B5E46480-D77D-4631-B35A-CE9CE6F54758} - System32\Tasks\ProPCCleaner_Start => C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe Task: {EAFDB959-5D40-4177-986D-826E31721612} - System32\Tasks\ProPCCleaner_Popup => C:\Program Files (x86)\Pro PC Cleaner\Splash.exe C:\Program Files (x86)\Pro PC CleanerEmptyTemp:

  5. You did it wrong.

    Step 1

    frst.pngfrstfix.png

    Please download the attached fixlist txt.gif and save it in the same directory as FRST.

    • Start FRST with Administrator privileges.
    • Press the Fix button.
    • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.

      Please copy and paste its contents in your next reply.

    attachicon.giffixlist.txt

     


  6. You did it wrong.

    Step 1

    frst.pngfrstfix.png

    Please download the attached fixlist txt.gif and save it in the same directory as FRST.

    • Start FRST with Administrator privileges.
    • Press the Fix button.
    • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.

      Please copy and paste its contents in your next reply.

    fixlist.txt

  7. Hi there,

    Step 1

    Please downloadesetlogo.pngOnline Scanner and save it to your Desktop.

    • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
    • Start installer.pngwith administartor privileges.
    • Select the option Yes, I accept the Terms of Use and click on Start.
    • Choose the following settings:
    settings.png
    • Click on Start. The virus signature database will begin to download. This may take some time.
    • When completed the Online Scan will begin automatically.

      Note: This scan might take a long time! Please be patient.

    • When completed, click on Finish.
    • A log filelog.pngis created at logpath.png

      Copy and paste the content of this log file in your next reply.

    esetlog.png

    Note: Do not forget to re-enable your antivirus application after running the above scan!

    eset.gif

    Step 2

    frst.pngfrstscan.png

    Start FRST with administator privileges.

    • Press the Scan button.
    • When finished, FRST will produce a log (FRST.txt) in the same directory the tool was run from.

      Please copy and paste the log in your next reply.


  8. Hi & :welcome:

    My name is Jürgen and I will be assisting you with your Malware related problems. medieval.gif

    Before we move on, please read the following points carefully. :excl:

    • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
    • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
    • Perform everything in the correct order. Sometimes one step requires the previous one.
    • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
    • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
    • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
    • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
    • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
    P2P/Piracy Warning:
    • If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
    • Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
    • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now and read the policy on Piracy.
    Step 1

    frst.pngfrstfix.png

    Press thew7.png + R on your keyboard at the same time. Type notepad and click OK.

    • Copy the entire content of the codebox below and paste into the notepad document:

      CloseProcesses:HKLM-x32\...\Run: [] => [X]HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction SearchScopes: HKU\S-1-5-21-3292518850-759306849-2421569196-1000 -> DefaultScope {B8B14CBB-2C8B-4992-98ED-9C52601EE885} URL =SearchScopes: HKU\S-1-5-21-3292518850-759306849-2421569196-1000 -> {B8B14CBB-2C8B-4992-98ED-9C52601EE885} URL =Task: {4FFE2FFC-A478-421F-90E2-673F330C717D} - System32\Tasks\Norton PC Checkup Setup => C:\Users\HP\AppData\Local\Temp\PCCUStubInstaller\SymcPCCUInstaller.exe Task: {B5E46480-D77D-4631-B35A-CE9CE6F54758} - System32\Tasks\ProPCCleaner_Start => C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe Task: {EAFDB959-5D40-4177-986D-826E31721612} - System32\Tasks\ProPCCleaner_Popup => C:\Program Files (x86)\Pro PC Cleaner\Splash.exe C:\Program Files (x86)\Pro PC CleanerEmptyTemp:
    • Click File, Save As and type fixlist.txt as the File Name.
    Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!
    • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.

      (XP users click run after receipt of Windows Security Warning - Open File).

    • Press the Fix button just once and wait.
    • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
    • When finished FRST will generate a log on the Desktop, called Fixlog.txt.
    Please post it to your reply.

    lesestoff.png

    Can you please tell me which problems still persist now?


  9. Hi there!

    warning.gif P2P warning

    Going over your logs I noticed that you have µTorrent installed.

    • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
    • They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
    • Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
    • The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.
    It is pretty much certain that if you continue to use P2P programs, you will get infected again.

    I would recommend that you uninstall µTorrent, however that choice is up to you.

    If you wish to keep it, please do not use it until your computer is cleaned.

    Step 1

    v21logo.PNG

    Please download and install Malwarebytes Anti-Malware.(NEW VERSION)

    • Please open Malwarebytes Anti-Malware and update the database.
    • Click "Settings" [1] and go to "Detection and Protection" [2]
    • Make sure "Scan for Rootkits" is checked.
    • Click on Dashboard [3], then click on Scan Now [4] to start the scan.

      :exclame: If Malware or Potentially Unwanted Programs [PUPs] are found, you will receive a prompt:

      m21p.png

    • Click on "Remove Selected" [5].
    • Then click "Save Results" [6] and select

      m21p4.png

    • Return to our forum. Paste your log into your next reply and then click Finish [7].
    mbamv21.gif

  10. It's good to hear that your problems appear to be solved. :)

    That's it! abklatsch.gif
    Your logs look clean to me at the moment. thumbup2.gif
    We're gonna clean up everything now, close security holes on your computer and in the end I'll provide you with a list of security tips so you hopefully will not need our help anymore in the future.


    My help is free for everybody, however...
    If I have helped you fix your PC, then please consider donating to continue the fight against malware: btn_donate_SM.gif
    Thank you!


    Clean Upcleanupm.PNG

    Now we remove all the tools we used (including their logs and quarantine folders), restore your settings and delete old and infected system restorepoints:

    • You can uninstall programs that you had to install (e.g. MBAM or ESET Onlinescanner) in the control panel if you so wish.
    • Download delfix.pngDelFix (by Xplode) and save it to your Desktop.
      • Close all running programs and start delfix.exe.
      • Make sure that all available options are checked.
      • Click on Run
      • DelFix should remove all our tools and delete itself afterwards. I don't need the log file.
    • If there is still something left you can delete it manually.

    Closing security holes

    Many infections happen via drive-by downloads that run unnoticed in the background while the user visits an infected website. To achieve this malware exploits security holes in installed software (e.g. browser or its plugins). Older versions of such software often have lots of known exploitable holes. Therefore it's very important to always keep your software up-to-date.
    The following software is outdated. Make sure you remove all old versions and install the current one instead if you need the program:

     

    Adobe Flash Player 16
    Java 7 Update 71

     

    Tips

    I recommend to read and follow the "16 simple and easy ways to keep your computer safe and secure on the Internet" (Link) by Lawrence Abrams.


  11. Sorry for asking again but was it ok that ESET recognized certain threats and I did not remove them?

    Yes, it was. :)

    The stuff that ESET has found is already in quarantine or just some irrelevant remnants, but no active ad/malware. So we're done.

    That's it! abklatsch.gif

    Your logs look clean to me at the moment. thumbup2.gif

    We're gonna clean up everything now, close security holes on your computer and in the end I'll provide you with a list of security tips so you hopefully will not need our help anymore in the future.

    My help is free for everybody.

    If I have helped you fix your PC, then please consider donating to continue the fight against malware: btn_donate_SM.gif

    Thank you!

    Clean Upcleanupm.PNG

    Now we remove all the tools we used (including their logs and quarantine folders), restore your settings and delete old and infected system restorepoints:

    • You can uninstall programs that you had to install (e.g. MBAM or ESET Onlinescanner) in the control panel if you so wish.
    • Download delfix.pngDelFix (by Xplode) and save it to your Desktop.
      • Close all running programs and start delfix.exe.
      • Make sure that all available options are checked.
      • Click on Run
      • DelFix should remove all our tools and delete itself afterwards. I don't need the log file.
    • If there is still something left you can delete it manually.

    Closing security holes

    Many infections happen via drive-by downloads that run unnoticed in the background while the user visits an infected website. To achieve this malware exploits security holes in installed software (e.g. browser or its plugins). Older versions of such software often have lots of known exploitable holes. Therefore it's very important to always keep your software up-to-date.

    Tips

    I recommend to read and follow the "16 simple and easy ways to keep your computer safe and secure on the Internet" (Link) by Lawrence Abrams.


  12. Hi & :welcome:
    My name is Jürgen and I will be assisting you with your Malware related problems. medieval.gif

    Before we move on, please read the following points carefully. :excl:

    • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
    • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
    • Perform everything in the correct order. Sometimes one step requires the previous one.
    • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
    • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
    • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
    • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
    • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.

    P2P/Piracy Warning:

    • If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
    • Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
    • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now and read the policy on Piracy.

    Step 1

    Please run a FRST scan. This will help us diagnose your problem.

    frst.pngfrstscan.png
    Please download Farbar Recovery Scan Tool and save it to your Desktop.
    (If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)

    • Start FRST with administator privileges.
    • Make sure the option Addition.txt is checked and press the Scan button.
    • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
    • Please copy and paste these logs in your next reply.

    You can attach the logs as well. :)

    attachlogs.png


  13. Backup your bookmarks etc.

     

     

    Step 1

    • Please download and install revouninstaller.pngRevo Uninstaller Free
      note: there is no need to click anything on that page, the download will start automatically
    • Double click Revo Uninstaller to run it
    • From the list of programs double click on the listed program(s) to remove it:
      Firefox
    • When prompted if you want to uninstall click Yes
    • Be sure the Moderate option is selected then click Next
    • The program will run, If prompted again click Yes
    • When the built-in uninstaller is finished click on Next
    • Once the program has searched for leftovers click Next
    • Check the items in bold only on the list then click Delete
      note: you may have to expand some folders by clicking the "+" mark
    • When prompted click on Yes and then on Next
    • Put a check on any folders that are found and select Delete
    • When prompted select Yes then Next
    • Once done click Finish

    Step 2
     

    Re-install Firefox.

     

    https://www.mozilla.org/en-US/firefox/new/


  14. Hi & :welcome:

    My name is Jürgen and I will be assisting you with your Malware related problems. medieval.gif

    Before we move on, please read the following points carefully. :excl:

    • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
    • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
    • Perform everything in the correct order. Sometimes one step requires the previous one.
    • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
    • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
    • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
    • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
    • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
    P2P/Piracy Warning:
    • If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
    • Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
    • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now and read the policy on Piracy.
    Step 1

    Please run a FRST scan. This will help us diagnose your problem.

    frst.pngfrstscan.png

    Please download Farbar Recovery Scan Tool and save it to your Desktop.

    (If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)

    • Start FRST with administator privileges.
    • Make sure the option Addition.txt is checked and press the Scan button.
    • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
    • Please copy and paste these logs in your next reply.

  15. Step 1

    Please downloadesetlogo.pngOnline Scanner and save it to your Desktop.

    • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
    • Start installer.pngwith administartor privileges.
    • Select the option Yes, I accept the Terms of Use and click on Start.
    • Choose the following settings:
    settings.png
    • Click on Start. The virus signature database will begin to download. This may take some time.
    • When completed the Online Scan will begin automatically.

      Note: This scan might take a long time! Please be patient.

    • When completed, click on Finish
    • A log filelog.pngis created at logpath.png

      Copy and paste the content of this log file in your next reply.

    esetlog.png

    Note: Do not forget to re-enable your antivirus application after running the above scan!

    eset.gif

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.