Jump to content

Maurice Naggar

Experts
  • Content Count

    20,520
  • Joined

  • Last visited

About Maurice Naggar

Profile Information

  • Location
    USA
  • Interests
    Security, Windows, Windows Update, malware prevention

Recent Profile Visitors

79,313 profile views
  1. Sorry to hear there is on-going hitches. Re-reading the prior frst reports I notice one of them is "chopped" / missing trailing information. Almost as if it too had a issue about completion. Let us do a new run with FRST64, which is already on the Downloads folder. Run report with FRST64 Right-click on FRST64 icon and select Run as Administrator to start the tool , and reply YES to allow it to proceed and run. _Windows 8 or 10 users will be prompted about Windows *SmartScreen protection* - click line More info information on that screen and click button Run anyway on next screen._ Click YES when prompted by Windows U A C prompt to allow it to run. Note: If you are prompted by Windows SmartScreen, click More info & followup & choose Run anyway. Approve the Windows UAC prompt on Windows Vista and newer operating systems by clicking on Continue or Yes. Click Yes when the* disclaimer* appears in FRST. The tool may want to update itself - in that case you'll be prompted when the update is completed and ready to use. Make sure that Addition options is *checked* - the configuration should look exactly like on the screen below (do not mark additional things unless asked). Press Scan button and wait. The tool will produce 2 logfiles on your desktop: FRST.txt , Addition.txt Click OK button when it shows up. Close the Notepad windows when they show on screen. The tool saves the files. Please attach these 2 files to your next reply. [ 2 ] Download Farbar's Service Scanner utility http://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/ and Save to your Desktop. Right-Click on fss.exe and select Run As Admisnitrator. Answer Yes to ok when prompted. If your firewall then puts out a prompt, again, allow it to run. Once FSS is on-screen, be sure the following items are checkmarked: Internet Services Windows Firewall System Restore Security Center/Action Center Windows Update Windows Defender Other services Click on "Scan". It will create a log (FSS.txt) in the same directory the tool is run. Copy & Paste contents of FSS.txt into your reply. [ 3 ] Please download MiniToolBox save it to your desktop and run it. Reply YES when prompted by Windows to Allow the program to run. Reply YES when prompted by the tool to proceed. Checkmark the following check-boxes: List content of Hosts List IP configuration List Winsock Entries List last 10 Event Viewer log List Installed Programs List Devices List Users, Partitions and Memory size. List Minidump Files Click Go and when all done, attach the result ( MTB.txt ). A copy of MTB.txt will be saved in the same directory the tool is run. Thank you.
  2. Hello @Rocio The message you refer to is a informational one & it does not mean that your machine has a trojan. Malwarebytes for Windows and the Malwarebytes Browser Guard do have a block on linkojager.org The program stopped any further connection. The Malwarebytes malware research team had detected a trojan on that link & so had it put on the Block list. This is a long explanation, but something you should know. The Block notices from Malwarebytes web protection do mean that Malwarebytes is keeping your pc safe from potential harm. A block notice is an advisory of the "block". For Your Information: The website Block message indicates that a potential risk was blocked by the malicious website protection. The Malwarebytes web protection, by default, will always show each IP block occurrence. The Malwarebytes Webs protection feature will advise customers when a known or suspected malicious IP is attempted to be reached (outgoing) or is trying access your PC. See our info page https://www.malwarebytes.com/lp/ip-blocking/?ipblock=true Incoming block notice can be ignored, our software is blocking the threat and there is nothing more that can be done. On Outbound blocks, any attempted connection was stopped. No action is required unless you’re also experiencing malware symptoms or there are multiple (different) IPs (ex;123.23.34 and 4.44.56). For further help about the Google Chrome browser, follow the tips by Exile360. https://forums.malwarebytes.com/topic/9573-im-infected-what-do-i-do-now/ Sincerely.
  3. The ESET scanner has their unique detections. Most of what were removed were P U P { Potenial Unwanted Programs ). In the case of YTD, Eset has tagged them as C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\Uninstall.exe en variant av Win32/YTDDownloader.F Potentiellt oönskat program rensad genom borttagning C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\ytd.exe en variant av Win32/YTDDownloader.A Potentiellt oönskat program rensad genom borttagning
  4. Hello Sebbe. Thanks for the report. There were 2 threats detected and removed. Results Summary: ---------------- Found HackTool:Win64/AutoKMS and Removed! Hardware over-heating may cause the machine to power off. Make sure your machine is not over-heating. Another possible cause for going black, is , if the power saving setting is too short. . I would suggest a free scan with the ESET Online Scanner Go to https://www.eset.com/us/home/online-scanner/ Look on the right side of the page. Click Scan Now It will start a download of "esetonlinescanner_enu.exe" Save the file to your system, such as the Downloads folder, or else to the Desktop. Go to the saved file, and double click it to get it started. When presented with the initial ESET options, click on "Computer Scan". Next, when prompted by Windows, allow it to start by clicking Yes When prompted for scan type, Click on Full scan Click on the radio selection "Enable ESET to detect and quarantine potentially unwanted applications" and click on Start scan button. Have patience. The entire process may take an hour or more. There is an initial update download. There is a progress window display. You should ignore all prompts to get the ESET antivirus software program. ( e.g. their standard program). You do not need to buy or get or install anything else. When the scan is completed, if something was found, it will show a screen with the number of detected items. If so, click the button marked “View detected results”. Click The blue “Save scan log” to save the log. If something was removed and you know it is a false finding, you may click on the blue ”Restore cleaned files” ( in blue, at bottom). Press Continue when all done. You should click to off the offer for “periodic scanning”.
  5. Thanks for the Fixlog report. As to Iobit, I cannot recommend that. Be sure that Google Chrome is not set to have SYNC "on". Using Chrome browser need you to go to https://www.google.com/settings/chrome/sync and sign into your account. Scroll down until you see the "reset sync" button and click on the button At the prompt click on "Ok".
  6. I would just remove others (Chrome, adobe reader, keepass).
  7. I do regret both of your last 2 news bits. by the way, tell me how you went about "uninstalling Malwarebytes" ? Can we get you to make a fresh attempt to get and run the Malwarebytes Support tool ......just for a report. Have lots of patience throughout and take your time. no rush thru. NOTE: Microsoft .NET 4.0 Framework is required in order to run the Support Tool on your computer. If you receive the following error while running the tool: Click OK to open Microsoft's download page and download the latest .NET Framework components. Do have patience while the report tool runs. It may take several minutes. Just let it run & take its time. You may want to close your other open windows so that there is a clear field of view. Download Malwarebytes Support Tool Once the file is downloaded, open your Downloads folder/location of the downloaded file Double-click mb-support-1.5.3.749.exe to run the report You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent. Place a checkmark next to Accept License Agreement and click Next You will be presented with a page stating, "Get Started!" Do NOT use the button “Start repair” ! Click the Advanced tab on the left column Click the Gather Logs button A progress bar will appear and the program will proceed with getting logs from your computer Upon completion, click a file named mbst-grab-results.zip will be saved to your Desktop. Click OK Please attach the ZIP file in your next reply. Thank you for your patience.
  8. In my view, I would want to know what exclusions exactly in MB you refer to. If those are folders of Kaspersky or modules ( EXE or DLL ) exclusions of Kaspersky, I would keep those.
  9. On the pink thing, which browser was that ? Is there a different browser you can use ? On the failed MS Windows update: This procedure will use the Windows System File Checker tool ( SFC ). Open an elevated command prompt window i.e. run Command Prompt as an administrator . It is best to use the Windows Copy ( CTRL+ C ) and paste ( CTRL+V ) for the whole line, as-is To Get the elevated command prompt, press Windows-key + X key and then selected Command prompt ( Admin ) On that command prompt, Copy & Paste this command sfc /scannow Let it run til it finishes. Have patience. Next, lets get a report Please start the Windows File Explorer and go to the folder C:\Windows\Logs\CBS You will find the log-file CBS.log with your mouse, click it one time so it has focus on the file. Then do a right-click with the mouse on CBS.log and select "Send to Compressed Files folder". It will show a message to the effect that the zip file will be created on the DESKTOP. Proceed with the selection. When done, CBS.zip will be on Desktop. Please attach the CBS.zip file with your reply. Thank you.
  10. Also, as a separate task to deal with the MS .Net Framework issue, Please try the 4.8 version which is newer and is a web installer. https://dotnet.microsoft.com/download
  11. As we go forward, I would like to be sure that your first "save" any download we guide you to .....and ideally saved to the Downloads folder. When our colleague Porthos suggested to get the Malwarebytes 4 installer, where did you save the file mb4-setup-consumer-4.0.4.49-1.0.750-1.0.14966,exe ? . I do not see a third-party name brand antivirus installed. So here, there ought not to be a complication from a antivirus. I regret you ran into hitches attempting to run the Support tool. The reason my colleagues have advised about .Net Framework updates was so that the Support tool could run without a hiccup. It does seem to me that there are 'some' elements of Malwarebytes in place. And so I would like to see if we can gather some logs by other means. Especially the setup logs from Malwarebytes. . Lets first set Windows 7 to SHOW all folders Open Control Panel > Appearance and Personalization. Now, click on Folder Options or File Explorer Option, as it is now called > View tab. In this tab, under Advance Settings, Look under Hidden files and folders, CLICK on the radio-box "Show hidden files, folders and drives" then, also, un-tick ( set to off or blank) Hide extensions for known file types & un-tick Hide protected operating system files IF & when you get prompts, reply in affirmative to allow the changes. Click the Apply button ( at bottom) Click the OK button ( at bottom) Please copy the files listed below to a convenient location such as your desktop, select them all, then right-click on them and hover your mouse over Send to and select Compressed (zipped) folder and then attach the resulting ZIP file to your next reply. These logs will provide details on what went wrong with the installation and should help to troubleshoot the issue. C:\ProgramData\Malwarebytes\MBAMService\LOGS MBAMSERVICE.LOG mbupdatr.log C:\Users\Kelly\AppData\Local\Temp Setup Log 20##-##-## #00#.txt (there may be more than one of these files; if so, copy all of them) Thanks for your patience in advance.
  12. Very good. Thanks . Lets take a breather. I will get back with you once I complete other research. 😀
  13. Sorry for the trouble. Use this link to get a list. For your X64 system, you want the next to last one listed https://www.catalog.update.microsoft.com/Search.aspx?q=kb4536952
  14. @1MitchX Can we have you get this service stack update for Windows 7 64 bit from Microsoft Update Catalog 2020-01 Servicing Stack Update for Windows 7 for x64-based Systems (KB4536952) Download and be sure to Save first https://www.catalog.update.microsoft.com/DownloadDialog.aspx then run the file to begin the install. This is jut one step. There will be more after this.
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.