Jump to content

RealisticDave

Members
  • Posts

    9
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Thanks for the additional comment. I did some reading from various sources about antivirus programs (both free and paid), and decided for now to download the free Kaspersky antivirus and see how it plays with Windows 10 and Malwarebytes. Had it on for a little time now, while I did some surfing of news sites to look at Texas flood info, and everything seems to be happy. Again, thanks for the comments!
  2. Thanks, Firefox, I was pretty sure that Defender should have hit the alarm, but thanks for the confirmation. Kaspersky has a free trial period available, so I may just install it on 1 computer and see if there are any problems before I purchase it. And---to quote my wife---"You won't be stupid enough to do THAT again when you're in a hurry!" Again, thanks for your comments!
  3. I've been using Malwarebytes Premium on our 3 computers for a while, with our current licence valid until January 2018. Alongside this, I've been using Windows Defender. This combo has seemed to work fine in protecting us. However, this week I had an 'incident,' through my own carelessness: I quickly checked my email before leaving early on Thursday, dealt with a couple, and saw an email that I had been expecting from a trusted source. The email had a .pdf attached, but when I hit the symbol to open it, instead of doing so, it led me to a screen to sign into another program (default was Office 365, but there was a long list...). I started to login to Gmail, then realized that this was a mistake. I don't think there was any damage, except that it sent this .pdf email to everyone in my contact list. A few hours later, I started to receive emails from people telling me about this fact. No one actually started to open the email (like I did), most just said, "it didn't look like something you'd send, so I just deleted it." One person told me that his anti-virus told him it was a hacking attempt. I hadn't received any security pop-ups, and so I asked him what he used. Told me he had free versions of Malwarebytes, CC Cleaner, and had a paid version of Kaspersky Total Security (which is what alerted him). (FYI, when I got home I did a Malwarebytes scan and a Windows Defender off-line deep scan.) I'd appreciate a comment on a couple of points: Is it possible that either Malwarebytes or Defender just missed giving a real-time alert because it didn't have the definitions for this in it's database? I'm going to keep Malwarebytes regardless, but if I was to disable Windows Defender and install Kaspersky Total Security, would both these programs be compatible to run side-by-side without problems? And hopefully offer more protection? I have no one to blame except myself for not thinking things through Thursday AM because I was in a rush. But still, I'd like to do what I can to make things as secure as possible. Thanks!
  4. Kevin, when I opened Yahoo Mail today, had a number of new messges---but did not receive a new tab with the fraudulent virus screen. This makes at least 3 days in a row without it. So, I believe something you lead me through has cleared the problem. I ran DelFix, and I've attached the log file (even though you didn't ask for it). Seems that everything was deleted, as expected. It also deleted some recent Windows Updates...for some reason...so I think I'll run Windows Update today and see if I need to have any updates installed. I decided to get rid of Erunt, as well, and have done that with the Control Panel. I'm going to read the BleepingComputer link that you sent to glean some more info. This experience has also led me to believe that I need to do a little better job of housekeeping, starting with the '.old' folder that I haven't needed for quite a while! Thanks again for your time and effort. I appreciate it. To use your term, we "can close out." If there's a way to mark this thread as 'solved,' I'll do so as well. Take care, Dave DelFix.txt
  5. Hello again, Kevin, I ran ESET again today, same parameters as yesterday, except that I left the (default) "Remove found threats" tab checked. It found 19 threats and quarantined them. I went through the list and recognized them all: The AdwCleaner is the software I ran a day or two ago.EaseUs is the software that I use to back up photos to an external drive.NCH Software is a suite that I don't use much, it's mostly audio & video stuff.Wisdom ScreenHunter is a program to capture all or part of a webpage.Appdata/Roaming...(long string) is something to do with the profile that my wife set up on Firefox.AllCPUMeter is a small window that runs on my desktop.Avery is a program to print labels, envelopes, business cards, etc.Cardsworkssetup is a program that has something to do with software my wife uses in printing greeting cards.NetworkMeter is another small window (widget) that runs on my desktop, showing other info than the AllCPUMeter above.Last two lines are from my .old folder, created when I migrated to Win7. (Been meaning to get rid of my entire .old folder, because I haven't needed to go in there for anything for quite a while.)Bottom line is that all of these listed items---except the AdwCleaner---have been on my computer for quite a while, months or a year, actually. I suppose there's always a chance that something has been changed within one of these? I think I'm going to let ESET delete all of the files, except the EaseUs files, which I had the "Manage Quarantine" feature restore. I use that program regularly, and it has always operated fine. (I just opened it up now, and it seems to be working fine still.) All of the rest, I'll let ESET get rid of them. If my widgets or something don't work and I need them, I do a fresh reinstall. Well, I just closed ESET, had it delete all files except EaseUs, and had it uninstall ESET. When I booted up and opened Yahoo Mail today, no problems. I think I'd just as soon see how things go for the next couple of days. It's possible that something you had me do has cleared the problem. If I don't have a problem in the next little bit, I'll close this thread and mark it solved. Thanks much for your time and trouble. I appreciate all your effort and suggestions. Cheers, Dave log.txt
  6. Kevin, I did the ESET scanner, as requested in your last post. Followed the instructions you provided, it took about 3 hours to complete scanning. When it finished, it had 19 (I think) "threats" found; the list on the screen (open during scanning) only shows a few at a time---some looked like "PUPs," but a couple that were showing had something like 'potentially damaging application,' or some term like that. Per your instructions, I hit "Finish," but I don't think it created the log file you wanted me to attach. I've looked all through C:/program files/ESET/ESET Online Scanner, and all the files shown are either application, application extension, Active-X, or set-up. In the Modules folder, only data files, and the Quarantine folder is empty. The only file that is a text file is the one I attached, log.txt, but it has almost nothing in it. If you were expecting to see a list of the threats that were found (as I was...), not there. I couldn't go back to see what the 'threats' that were found actually were, because when I hit Finish it brought up a new screen and closed the previous one. I'll have time this weekend to run it again. I can either try it as I did tonight---checking or unchecking the boxes per your instructions---and hope that it creates a usable logfile at the end. Or, do you think it would be worth running the program again and leaving the "Remove found threats" box checked? Maybe you know if when the program removes things, it shows a list at that point? Just a thought. Please give me your opinion on the subject. Thanks, Dave log.txt
  7. Kevin, thanks for the further suggestions. I ran through the list today: Put your attached file (fixlist.txt) into the same folder as the FRST info, ran the program, and then hit Fix. I've attached the Fixlog.txt to this post.Shutdown Windows Firewall and MSE (anti-virus) and ran Zoek (inserted your script, checked Scan All Users). The dialogue box popped up, and for about 4 minutes some comments were entered. Then, nothing. Left the computer for about 15 minutes, and nothing had changed: no zoek-results logfile, in wordpad or on my C drive.Waited a little while longer, then rebooted computer and ran everything again. Same results. The dialogue box has comments in it, but after about 4 minutes, nothing else. Looked at Windows Task Manager, and it still shows the program running. I don't know if there's a problem or not, but I'm going to copy the text from the dialogue box and attach it to this post. I'll post this message, but I'll leave everything running to see if the program does eventually end and open a zoek-results logfile. (But it's lunchtime here, and I'm going to watch the USA footie girls likely lose to the English footie girls...)Later, I'll update this post with whatever happens with Zoek. Fyi, when I booted up and opened Yahoo Mail today, had a couple of new e-mails, but the virus didn't open another tab. (Although, it hasn't happened every day thus far.) Thanks again, Dave Fixlog_13-02-2015_11-33-43.txt Zoek Dialogue Box.rtf
  8. Kevin, thanks for the reply. I went through your list today, as follows: No P2P software on my computer whatsoever---never had it, never will.Backed up my registry with ERUNT.AdwCleaner ran OK, and I've posted both logfiles (S0.txt & R0.txt) in this post.Junkware Removal Tool downloaded OK, I ran it as Administrator, and shut off Windows Firewall and Microsoft Security Essentials. Opened in a 'terminal screen,' but didn't seem to be accomplishing anything. It had some messages about not finding correct path, etc. Eventually it just shut down and closed screen. I compared the screen shot with what was shown on the JRT webpage, and it was nothing like that. I tried running it 3 times, even downloaded the program a second time, but all the same. So, for whatever reason, doesn't work for me.Ran Malwarebytes, no problem found, I've added the logfile to this post.Ran Farbar Revovery Scan, and the FRST.Txt is attached to this post. I've also attached the Addition.Txt file.Lastly, I ran RogueKiller, and I've also attached the logfile.I didn't really look these logfiles over much because I'm not sure what to look for anyway. Hopefully you might see something that looks suspect? FYI, when I opened up Yahoo Mail today and clicked on my first new message, it opened up the same thing in a new tab---only this time the url was securitylog.systems (not av-alertprotector.com, as yesterday). But I've had this same screen show up, coming from various addresses, so I'm certain it's all the same problem.(I may not have noted that this only happens---thus far---when I open new e-mails, don't remember it ever happening when I look at previously opened e-mails.) Thanks, Dave AdwCleanerS0.txt Malwarebytes Application Log.txt FRST_12-02-2015_14-59-50.txt Addition_12-02-2015_14-59-49.txt RKreport_SCN_02122015_151123.log AdwCleanerR0.txt
  9. I've searched for this (av-alertprotector) in the forum, and came back with nothing found. I've had this problem on Win7 for the past 2 or 3 weeks. It seems to be only when I open an e-mail (any e-mail, not a particular one) in my Yahoo account, and it only happens once per session (thus far, anyway). It opens up another tab with a "Warning Virus Alert!" screen. The url addresses are different, and the screens often are too, but I'm quite certain that it's all one problem, because the number displayed seems to be the same: 1-866-781-3623. I, of course, do not click on anything, just close the tab that it opened. This site has an image of the exact screen that I'm seeing today: http://www.deletevirus.net/remove-av-alertguarddotcom-pop/, but I believe that it's a sales pitch to purchase "GridinSoft Trojan Killer." And, this site---http://domain-kb.com/www/av-alertguard.com---which may or may not be truthful, states that av-alertprotector.com was registered in the UK on 2/6/2015...which may be about the time that this problem started? I've used Malwarebytes (free) for years, and my wife and I religiously run it often. After receiving this problem, I also installed Malwarebytes Anti-Exploit on this computer. Besides running Malwarebytes and MS Security Essentials, I've been through my (Control Panel) Installed Programs list and I see nothing that isn't supposed to be there. I only use Firefox browser on this computer, and I've checked the Add-ons and nothing is strange there, either (they've been installed for a long time). I also have a free spyware program installed (SuperAntispyware---had it on for years) and I updated definitions and ran that, didn't find anything. Not sure what else to do, any suggestions? Thanks.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.