Jump to content

Codeit

Members
  • Content Count

    36
  • Joined

  • Last visited

About Codeit

  • Rank
    New Member

Recent Profile Visitors

112 profile views
  1. Computer Manufacturer: ASUS Model Number: gl703() Video Card: nvidia gtx i hope someone responds quickly because my laptop is heating up even more for an app called mrt or removal tool of malintentionated software or smth like it but pls help
  2. hi so a couple of weeks ago i got infected with a malware or virus called online aplication updater and others that caused overheating but i disinfected my device with help of nasdaq but my device was getting normal but instead it started to heat up more every day first it only heat up for opening a big game after the infection for opening zoom or other aplications and then for opening a google tab then for just turning on the device i was told that maybe some files got corrupted so i run mini tool box and after it didnt turn on and after another try it turned on but heat up more . pls help me im not sure what is causing the heat but i think is everything that runs so pls help me im kinda worry about the heat because it may damage my procesor or other components and well my guaranty is about to expire and i cant go out to repair it so i want to fix the heat so nothing gets burnt or else .
  3. hi thx for the new steps but do you know somebody on the hardware forum ?
  4. hi mmm do you know somebody on the harware forums cuz they answer me once and never again till now maybe they are busy but my device is still heating up i would say it is heating up even more but i guess there is no malware so thank you thanks for helping me all this time and well answearing so thanks a lot i hope you have a great day if i have any problem with malware in the future i know where and who to ask for help Thanks for helping.
  5. hi ok i already post a new topic and i think zoom is supposed to be in two directories to be used in multiple sessions or smth like it
  6. https://www.virustotal.com/gui/file/f8dae3bef837b40441cd9fe89f8debf006c1232692551a177cf2fd88d1abcb5b/community https://www.virustotal.com/gui/file/f8dae3bef837b40441cd9fe89f8debf006c1232692551a177cf2fd88d1abcb5b/detection https://www.virustotal.com/gui/file/1f7767a6371a6da48a6c92b56baa3b3be15ee918b59c2ef3db0989b6ab7b4298/detection https://www.virustotal.com/gui/file/2958e8e988ed12e5126ad03b1ed3845db10ccbd6ae9b2d94be256c800b718de0/community for some reason there is to locations of this zoom exe i put google too but they seem clear im gona scan the harware maybe theres the problem but with this quarantine how i fix it ?
  7. the thing is that before the reinstall of google and zoom this apps werent making the device heat up so i just reinstalled them and it started to heat up again . i have my device on table with nothing more beetween it and the table maybe thats a problem too? but i dont
  8. ok here is itFixlog.txt i dont know if its normal but its quite heated up i guess is cuz the repair but ill turn it off i think you have to translate it
  9. what does the repair tool do? i didnt respond because i was busy with a lot of projects but ill do it it
  10. oh and do i have to wait to restrt the device ? because last time it freezed and then battery runned out
  11. hi before zoom didnt heat up but after i reinstalledit and deleted those pup no its heating up did you ckecked the pup there was an important file? is better but sometimes without reason it starts the fan and the disk on the taskmanger is really high and system interrupcions is using some cpu i think
  12. Hi mmm i hope you read this so the device started a little bit heated up but it is a quite slow but ill leave it there and see if it cools down but sometime the fan goes high speed i think something is downloadinf or maybe is just the start ill keep you inform
  13. hi first im gonna delete all quarantined items and then ill delete all so i dont restore some dangerous items
  14. i did the same a couple weeks ago and some of those pup wherent unwanted or they were from the system in short words it broke my device none of the text load and it was really slow thats why i wanted you to check some of them so i dont delete an important file .
  15. And another thing wich pup can i safely delete ? ill attach a normal scan that i did recently and later a rootkit i copied but it is still at the bottom Malwarebytes www.malwarebytes.com -Detalles del registro- Fecha del análisis: 1/4/20 Hora del análisis: 18:54 Archivo de registro: 1eabfe44-7474-11ea-8c6b-0c9d925814f1.json -Información del software- Versión: 4.1.0.56 Versión de los componentes: 1.0.859 Versión del paquete de actualización: 1.0.21762 Licencia: Prueba -Información del sistema- SO: Windows 10 (Build 18362.720) CPU: x64 Sistema de archivos: NTFS Usuario: ASUS\ASUS -Resumen del análisis- Tipo de análisis: Análisis de amenazas Análisis iniciado por:: Manual Resultado: Completado Objetos analizados: 355371 Amenazas detectadas: 50 Amenazas en cuarentena: 0 Tiempo transcurrido: 1 min, 57 seg -Opciones de análisis- Memoria: Activado Inicio: Activado Sistema de archivos: Activado Archivo: Activado Rootkits: Desactivado Heurística: Activado PUP: Detectar PUM: Detectar -Detalles del análisis- Proceso: 0 (No hay elementos maliciosos detectados) Módulo: 0 (No hay elementos maliciosos detectados) Clave del registro: 15 PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\REI_AxControl.DLL, Sin acciones por parte del usuario, 383, 327193, 1.0.21762, , ame, PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Sin acciones por parte del usuario, 3692, 398592, 1.0.21762, , ame, PUP.Optional.JetMedia, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{FC44DE72-60F9-4BC1-B098-D2F6B5A06187}, Sin acciones por parte del usuario, 4012, 652995, 1.0.21762, , ame, PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, Sin acciones por parte del usuario, 383, 327197, , , , PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine.1, Sin acciones por parte del usuario, 383, 327197, , , , PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine, Sin acciones por parte del usuario, 383, 327197, 1.0.21762, , ame, PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\REI_AxControl.DLL, Sin acciones por parte del usuario, 383, 327193, 1.0.21762, , ame, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E, Sin acciones por parte del usuario, 2972, 260247, 1.0.21762, , ame, PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\Reimage Repair, Sin acciones por parte del usuario, 383, 336077, 1.0.21762, , ame, PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\REI_AxControl.DLL, Sin acciones por parte del usuario, 383, 327193, 1.0.21762, , ame, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E, Sin acciones por parte del usuario, 2972, 260247, 1.0.21762, , ame, PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Sin acciones por parte del usuario, 383, 332494, , , , PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Sin acciones por parte del usuario, 383, 332494, , , , PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Sin acciones por parte del usuario, 383, 332494, 1.0.21762, , ame, PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, Sin acciones por parte del usuario, 383, 327206, 1.0.21762, , ame, Valor del registro: 6 PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Sin acciones por parte del usuario, 922, -1, 0.0.0, , action, PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Sin acciones por parte del usuario, 922, -1, 0.0.0, , action, PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}|CONTACT, Sin acciones por parte del usuario, 3692, 333852, 1.0.21762, , ame, PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}|URLINFOABOUT, Sin acciones por parte del usuario, 3692, 321304, 1.0.21762, , ame, PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, Sin acciones por parte del usuario, 6937, 676880, 1.0.21762, , ame, PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, Sin acciones por parte del usuario, 6937, 676880, 1.0.21762, , ame, Datos del registro: 12 PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{1a2732e7-c538-4ff2-aecd-30fdbe696915}|NameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{24eab875-8e50-461b-a400-49a7dbfc9bb8}|NameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{24eab875-8e50-461b-a400-49a7dbfc9bb8}|DhcpNameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3bbc858f-2d13-46b1-936a-000502eee2f7}|NameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3bbc858f-2d13-46b1-936a-000502eee2f7}|DhcpNameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3e44e275-95ce-11e8-bdc3-806e6f6e6963}|NameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{64b46f64-b5a9-4467-8bdb-a783d988db5e}|NameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{9aecd45d-40fb-4ada-a421-f60c08d5c3bc}|NameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{9aecd45d-40fb-4ada-a421-f60c08d5c3bc}|DhcpNameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{f2043b06-8c5e-482a-b03f-758b64e963e5}|NameServer, Sin acciones por parte del usuario, 2972, -1, 0.0.0, , action, Secuencia de datos: 0 (No hay elementos maliciosos detectados) Carpeta: 3 PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Sin acciones por parte del usuario, 3692, 391425, 1.0.21762, , ame, PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\Results, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\PROGRAMDATA\REIMAGEREPAIR, Sin acciones por parte del usuario, 383, 651074, 1.0.21762, , ame, Archivo: 14 PUP.Optional.Linkury.ACMB1, C:\WINDOWS\SYSWOW64\FINDIT.XML, Sin acciones por parte del usuario, 922, 259512, 1.0.21762, , ame, PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Sin acciones por parte del usuario, 3692, 391431, 1.0.21762, , ame, PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\online.exe, Sin acciones por parte del usuario, 3692, 391425, , , , PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\SystemFoldermsiexec.exe, Sin acciones por parte del usuario, 3692, 391425, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\Results\ProtectorPackage.log, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\Results\ScanAgent.log, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\Results\ScanAgentDebugRepair.log, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\active_protection.txt, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\cfl.rei, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\scan_agent_result_log.txt, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\urldb0.rei, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\urldb1.rei, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\urldb2.rei, Sin acciones por parte del usuario, 383, 651074, , , , PUP.Optional.Reimage, C:\ProgramData\ReimageRepair\url_setting_definitions.txt, Sin acciones por parte del usuario, 383, 651074, , , , Sector físico: 0 (No hay elementos maliciosos detectados) WMI: 0 (No hay elementos maliciosos detectados) (end) normal scan.txt
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.