escorial

Pc seems to work fine with the exception of the zone alarm not updating to a newer version, but I believe it's a as issue as they are the ones who tried the update and had the issue, it's now a escalated case. There still working on it and will get back

Sorry, SFC / Scannow did find: Microsoft Windows [Version 6.1.7601] Copyright (c) 2009 Microsoft Corporation. All rights reserved. C:\Windows\system32>sfc /scannow Beginning system scan. This process will take some time. Beginning verification phase of system scan. Verification 100% complete. Windows Resource Protection found corrupt files but was unable to fix some of th em. Details are included in the CBS.Log windir\Logs\CBS\CBS.log. For example C:\Windows\Logs\CBS\CBS.log C:\Windows\system32>

I hope I followed the instructions correctly, please see attached. I have ran the scf /scannow and that looked up, Zone Alarm also does not see anything as well as MLB virus.txt Addition.txt FRST.txt

Have ran MLB and Zone Alarm as well as Scf /scannow and all looks good. Is there any way manually to remove those files? I was on the Win Seven Forum and one reply told me to run the Win7 repair disc which I did and it just said it found some issue in the startup and fixed that. Then ran the FarBar tool again and those files still showed up. I have read on the farbar tool but just cant understand how to use it???

Also could anyone tell me if this is bad stuff and how could I fix it if possible??? (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-09-06 10:37 ==================== End of FRST.txt ============================

Ran FRST64 see attached FRST.txt Addition.txt

Have spoken with the bank and the echeck was not tendered and they have blocked that company, cost $30 money well spent! Just ran the updated MBAM here are the results;; Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 9/5/17 Scan Time: 1:55 PM Log File: ba20e382-926b-11e7-8c22-000272cc4cc3.json Administrator: Yes -Software Information- Version: 3.2.2.2018 Components Version: 1.0.188 Update Package Version: 1.0.2731 License: Trial -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: j-PC\j -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 326145 Threats Detected: 0 (No malicious items detected) Threats Quarantined: 0 (No malicious items detected) Time Elapsed: 17 min, 10 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) (end)

will do

Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 8/31/17 Scan Time: 11:14 PM Log File: 11258871-8ecc-11e7-b99c-000272cc4cc3.json Administrator: Yes -Software Information- Version: 3.1.2.1733 Components Version: 1.0.160 Update Package Version: 1.0.2700 License: Trial -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: j-PC\j -Scan Summary- Scan Type: Threat Scan Result: Cancelled Objects Scanned: 38505 Threats Detected: 0 (No malicious items detected) Threats Quarantined: 0 (No malicious items detected) Time Elapsed: 5 min, 22 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) (end)

Yea they wanted echeck (said Credit card would be too dangerous over a non secure PC) which I gave them the info and as of today it had not been cashed so I did cancel the check. It was strange as I was having a issue with a new cell phone, I called the manufacture and they could not help so they put me in contact with Yahoo who told me I had the infection and said they could put me in touch with a company that could , what was strange they were able to do this while I was online. Now I look back very strange. They installed the remote software and did ask my yahoo pass word and my phones as well as check number and routing number and sent me a PDF receipt for my e check. I did remove all of there software and then changed my yahoo password. These jokers also switched my wired pc to wireless and uninstalled maylarebytes. I have since went back to wired and reinstalled malwarebytes. Also I do have zone alarm paid version running all the times. I believe that I have covered just about everything and my yahoo address has nothing to do with my banking email address for that account. If there is some freeware on here that I could use to double check my pc that would be great! TIA

Hi I recently was told by Yahoo (or I think was yahoo who turned out to be Gemini Techies) that I had torpig. Well the Gemini co turned out to be scammers so beware. But now this has been brought to my attention cam Malwaybytes protect or even remove the torpig? Iam running the newest paid for home version of malywarebytes on one of my pc's and a fee version on the other. Neither has ever found anything as of today's date. I believe here is some info on these low lifes https://www.consumeraffairs.com/tech-support-services/24-7-techies.html