Jump to content

Maurice Naggar

Experts
  • Content Count

    26,095
  • Joined

  • Days Won

    42

Everything posted by Maurice Naggar

  1. Hello. Any news at this point? I had hoped to get the SecurityCheck report so I could review & then we could proceed from there. Cheers.
  2. Hello @UserGB I hope you are doing well. I have not heard back from you in many days. Do you need further help ? Are you still with us here ?
  3. When you get to a stopping point, after doing the last ESET scan, I have a Custom cleanup script, which will be used thru the FRST64. It is intended to run the Windows System File Checker & the Windows DISM to check Windows, plus to remove a .tmp file. 66VU01574V.tmp The script Fixlist.txt needs to be saved to the same folder that contains FRST64.exe / you have yours saved on Desktop. The custom script on this post is ONLY for this machine and NO other. This custom script is for Beluga666 only / for this machine only. Please be sure to Clos
  4. You will be needing to connect to the internet, at least so that you can download tools I guide you to & for you to make replies here. . It would be useful to get from you the MSERT.log file so I can review. Do know that Win32/DefenderTamperingRestore is not a big thing. It refers to Defenders antispyware having been off. Anyhow, this MSERT has fixed that & that feature is ON now. . We have already run the Malwarebytes with the rootkit option, plus Adwcleaner, plus the MS SAFETY Scanner. Plus You had scanned with your MCAFEE antivirus. . I woul
  5. Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Please review the following for Tips to help protect from infection Thank you
  6. Hi. Thanks for the C Clean report from Adwcleaner. Use Option One , or Two of this article to set Windows File Explorer to show all files https://www.tenforums.com/tutorials/7078-turn-off-show-all-folders-windows-10-navigation-pane.html . As a next step, to checkout your system a bit more, a scan with Sophos. Download Sophos Free Virus Removal Tool and save it to your desktop. If your security alerts to this scan either accept the alert or turn off your security to allow Sophos to run and complete..... Please Do Not use your PC whilst the
  7. Per the SecurityCheck report, these items need your follow-up & action to get them up+to-date or other action. Know that security updates are critical to keep up with. NVIDIA GeForce Experience 3.20.5.70 v.3.20.5.70 Warning! Download Update TeamViewer v.15.5.6 Warning! Download Update WinRAR 5.40 (64-bit) v.5.40.0 Warning! Download Update Microsoft Teams v.1.3.00.30866 Warning! Download Update Torrent v.3.5.5.46010 Warning! Ad-supported P2P-client VLC media player v.3.0.12 Spotify v.1.1.53.608.g7ed9c03a Warning! Dow
  8. Bravo. We can do a 'happy dance. The Windows Defender is all present, and ON, and protecting. AntispywareEnabled : True AntivirusEnabled : True AntivirusSignatureLastUpdated : 5/13/2021 5:01:11 AM . You should take a few minutes to do a Quick Scan with Microsoft Defender. I will have other remarks on the SecurityCheck. I will also guide you on removing the tools we used.
  9. Additional Note. Per the SecurityCheck report. Windows Defender (enabled and up to date). Windows Defender Firewall (mpssvc) - The service is running . YAY . You need to Uninstall the app Sophos Virus Removal Tool v.2.9.0 Using Windows Settings >>>Programs & Features Doing a regular uninstall procedure. Later on, I will have more remarks about Security report.
  10. Thank you. The FSS report about some key Windows services, including Microsoft Defender is perfect. . Request a new query report using Windows Powershell. Start a Elevated Powershell command prompt-window. On the Windows taskbar, on the Search box, type in powershell Wait and look for the results list. Click on the line that shows Powershell with "Run as Administrator". Then you will see the Powershell window. Into that, we want to Copy & Paste this entire line as is get-mpcomputerstatus then tap the Enter-key and wait and watch th
  11. Thanks for the report. Be aware that the installed version of MS Office appears to not be licensed. LicenseStatus: Office 16, Office16O365HomePremR_Subscription4 edition Timebased activation will expire :43251 minutes LicenseStatus: Office 16, Office16O365HomePremR_Grace edition Windows is in Notification mode . GPL Ghostscript v.9.52 Warning! Download Update Uninstall old version and install new one. Oracle VM VirtualBox 6.0.10 v.6.0.10 Warning! Download Update Evernote 10.9.10 v.10.9.10 Warning! Download Update IrfanVie
  12. pssEC0B.ps1 sounds like a Powershell script. AVG ought not to prevent the running of Adwcleaner. Also internet connection needs to be on. Please try again to get & Run Adwcleaner.
  13. I very much regret that Malwarebytes for Windows is still crashing. It is still a mystery as to why it is so. Plus since this is on Windows 7 I am not confident as to whether this specific pc will succeed. . The Windows O S is what need your follow-up & attention. Windows 7 Extended support has ended 14.01.2020, Your operating system may be vulnerable to new types of threats . But I already stated that. . Here are tips on keeping your web browsers safer. Please make time and read all of this. apply the tips. See this article on our Malware
  14. Very good cleanup by Adwcleaner for the Chrome browser. It removed what appear like 3 search hijackers. Good result since it did remove those. None of those are 'randomware' ! I gotta re-emphasize that . These 3 are P U P. . Note I did not ask to change any option on Adwcleaner. We are done with that. Also know, that whatever happened at your company months ago, Is not to be assumed to be associated to what your pc is at this time. We use known security scanners to find & remove any actual 'boogers' / malware. . Here are tips on keeping yo
  15. Next steps after the last post. Let me suggest you do one scan with Adwcleaner to check for adwares. First download & save it https://support.malwarebytes.com/hc/en-us/articles/360038520054-Download-and-install-Malwarebytes-AdwCleaner Then do a scan with Adwcleaner https://support.malwarebytes.com/hc/en-us/articles/360038520114-Malwarebytes-AdwCleaner-scan-and-clean Attach the clean log.
  16. Yay. No infection reported by the MS SAFETY Scanner. Yay. . Yes, uninstall 'Browser Assistant's. You will also want to Close any open web browser. Later, restart browser if needed.
  17. Hi. I am adding a few additional notes. Just to highlight some key points. When we look at the folder names of the browser extensions of Chrome, know that the names are a bunch of alpha characters. Do not attribute to that any presumption of bad stuff. Those names are very often a big string of alpha characters. That is not a cause for concern. Remember, we use known security apps to scan for malware. Actual security tools used to help make the determination !! . As to ransomware, those will display distinctive screen windows asking for crypto payments AND also will E
  18. Thanks. The Microsoft Safety Scanner is a free Microsoft stand-alone virus scanner that can be used to scan for & remove malware or potentially unwanted software from a system. The download links & the how-to-run-the tool are at this link at Microsoft https://docs.microsoft.com/en-us/windows/security/threat-protection/intelligence/safety-scanner-download Look on the Scan Options & select "FULL scan". Have lots of patience. The run may take several hours. Let me know the result of this. The log is named MSERT.log the log will be
  19. Thank you for the report from SecurityCheck. It is good to see that BitDefender free antivirus is up to date & is the resident antivirus. There are a number of other items that do need your attention & follow-up. [ Windows 7 ] ------- Extended support has ended 14.01.2020, Your operating system may be vulnerable to new types of threats Microsoft .NET Framework 4.8 v.4.8.03761 Warning! Download Update TreeSize Free V4.1.2 v.4.1.2 Warning! Download Update Zoom v.5.3.2 (53291.1011) Warning! Download Update Adobe Flash Play
  20. Hi. I am so glad. Also proud of your persistence. . We can run 2 reports. [1] You already have FSS.exe The service scan tool. I need you to run it again like on https://forums.malwarebytes.com/topic/273193-malware-deleted-my-windows-defender-service-and-has-admin-access/?do=findComment&comment=1452087 Then attach the report. [ 2 ] I would like you to run a tool named SecurityCheck to inquire on the current-security-update status of some applications. Download SecurityCheck by glax24 from here https://tools.safezone.cc/glax24/Securi
  21. ESET tagged that 1 EXE file as a potentially unwanted app. ( P U A ). It is deleted. . The Microsoft Safety Scanner is a free Microsoft stand-alone virus scanner that can be used to scan for & remove malware or potentially unwanted software from a system. The download links & the how-to-run-the tool are at this link at Microsoft https://docs.microsoft.com/en-us/windows/security/threat-protection/intelligence/safety-scanner-download You may select Quick scan from scan option. Let me know the result of this. The log is named MSERT.log the log
  22. Hello. Thanks. A excellent result from Adwcleaner. Now a scan with a different tool. The Microsoft Safety Scanner is a free Microsoft stand-alone virus scanner that can be used to scan for & remove malware or potentially unwanted software from a system. The download links & the how-to-run-the tool are at this link at Microsoft https://docs.microsoft.com/en-us/windows/security/threat-protection/intelligence/safety-scanner-download On the Scan Options, select "FULL" scan. Have lots of patience. The run may take a few hours. Let me know the result of t
  23. What tool ? What Russian ?? SecurityCheck is trusted . Please get & run it.
  24. Note: PUP.Optional is Malwarebytes generic detection name for potentially unwanted programs. In this instance, was likely some sort of potential search abuse. But again, note that MB removed the P U P
  25. Hi. Your pc has Premium Malware yes for Windows. That has multiple real-time protections, including anti-ransomware. What the last MB scan found are PUP.Optional.TorrentSearch Why are you presuming ransomware ? I will need other reports from this pc. Meantime, Let me suggest you do one scan with Adwcleaner to check for adwares. First download & save it https://support.malwarebytes.com/hc/en-us/articles/360038520054-Download-and-install-Malwarebytes-AdwCleaner Then do a scan with Adwcleaner https://support.malwarebytes.com/h
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.