Jump to content

1972vet

Experts
  • Posts

    1,345
  • Joined

  • Last visited

Everything posted by 1972vet

  1. I had the same 51 found during scan moments ago...chose not to quarantine as in all the years I've used mbam it's never found a thing on my system. Any idea when this will be changed out so future detection of these will be avoided? ...waiting for advancedsetup or one of the crew
  2. Strange indeed. V2 products are sold in stores across the country and online. I've used them for years. If the WOT browser extension can't be trusted, then how can one learn to trust the evaluations from it. It's a real conundrum.
  3. MB just asked today if I wanted to upgrade. Immediately upon upgrading I went to visit a website where I always go to purchase my ecigs supplies. MB popped up the message that the website is a "Fraud". Can someone look into this and let me know if I've been dupped? Thanks (alleged fraud website would be dubdubdub..v2.com)
  4. Unlocked at the request of the member, as this issue has once again re-appeared. Please carry on.
  5. At the request of the member, this topic is re-opened for further research...please carry on.
  6. Success! You could, if you like, scan again and enable "Rootkit" scanning. To do that, open mbam, click "Detection and Protection" and check the box "Scan for rootkits". How's it running for you?
  7. There are more than a few problems, but before we proceed you should look for and uninstall the following program: QuickShare QuickShare is an adware program most commonly bundled with other "Free" downloaded software of certain type(s). This particular piece of vermin has almost rootkit type capabilities (...almost, although not quite). You should use caution when downloading/installing programs from the internet and uncheck certain items (when available as an option) so that other "PUP" type software won't be surreptitiously installed. Next, you need to decide upon, which of these you would prefer to keep and which to uninstall: AVG AntiVirus Free Edition 2014 Symantec AntiVirus Corporate Edition ...having both of those programs installed and running real time protection will cause instability and eventually a system crash with the potential of data loss of course. These two programs alone, running while you try to scan with mbam would in fact, cause such a struggle among them that the system would freeze up just as you have described. You really have no need of this program either: Spybot - Search & Destroy Once you have completed all of the above, please reboot the system and try running a threat scan with mbam. Post back the resulting log. Thanks!
  8. Greetings Mr. Bojangles and thank you for your patience, Please disable the active protection component of your antivirus and antispyware programs by following the directions that apply Here. Next, please download the free utility DDS from any of these locations...Here, Here...or Here. Note - Some infections may prevent certain executable files from running on your computer. If one of these download locations results in a failed run of the utility, please try the next location until you find one that will work on your machine Double click the downloaded dds utility to run the tool When it completes, DDS will open two (2) logs:DDS.txtAttach.txtSave both reports to your desktop. Please remember to include the following logs in your next reply, Thanks! DDS.txt Attach.txt
  9. Per the request from the user, this thread is closed and the member will re-post once all the peer to peer software has been removed.
  10. Re-opened as per request of member, please carry on.
  11. Re-opened at users request...user wanted to thank kevinf80 for the help, and wants the opportunity to finish up.Good work Kev! Please carry on...
  12. Due to the lack of feedback this Topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks! The fixes and advice in this thread are for this machine only. Do not apply the instructions from this thread to your own machine. Please start a new thread describing your issue and someone will be along to assist you.
  13. Still with us RoadGuyXTL? Can you provide us with any information yet about your situation?
  14. I won't insist that Microsoft is wrong about that but...I see no evidence of it in any of the logs you produced, neither have you really complained of anything that indicates a "virut" (polymorphic file infector virus) infection. As with various "other" malicious codes that can infect a Windows platform, many of them can produce the type of symptoms you HAVE complained of, i.e. Windows update not working, Windows activation issues... However, in that event, it is Microsoft who needs to counsel you regarding their recommendation(s) to resolve the Windows activation (validation) issue. That said, it would seem to me that you might feel as though you are being passed back and forth. I'm not suggesting you go back to Microsoft though, since it's rather foolish to expect different results when trying the same thing twice. I would advise, that if you are able to reformat and reinstall the operating system, that it would be the best alternative to resolve your issue(s). If you just want a second opinion, you can run through the instructions Here to see what turns up. Dr. WebCurit has been quite successful in identifying/removing/cleaning various virut infections of late, whereas, heretofore, a virut infection was pretty well, "game over" for most users. Aside from that, I have no other advice but please do let us know what you decide and how it turns out for you. Warm regards and best wishes, vet
  15. Things look better somewhat...tell me how it runs now and what issues remain. Thanks!
  16. The symantec document entry, I find, relates to an update you once had which prevented the registration reminder from continuing to pop up. I find nothing relating to it in the combofix log so your best bet is to just run the symantec removal tool which purports to remove all remnants of any failed symantec uninstall: Download their Removal Tool and run it. When it completes, just delete the tool from the desktop. Next, we need to run combofix again, using a script this time...so please disable the on board security products as before, thanks! Please open a blank Notepad by clicking start-->run...Then, in the run box type Notepad.exe and click "OK". Copy the below text in Bold and paste it into the blank Notepad. Save it as CFScript.txt...Change the "Save as type" to All Files and save it to your desktop. Now drag the text document over to your Combofix.exe Combofix will run again automatically. Please post back the new log that will be generated. Thanks! Note: Do not mouseclick combofix's window while it's running. That may cause it to stall killall:: folder:: c:\users\Master Account\AppData\Roaming\GlarySoft c:\users\Master Account\AppData\Roaming\Dropbox c:\programdata\ErrorEND c:\program files\ErrorEND c:\programdata\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} c:\program files\IObit driver:: AdvancedSystemCareService5 AdvancedSystemCareService6 registry:: [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5] [-HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] dds:: uInternet Settings,ProxyServer = firefox:: FF - ProfilePath - c:\users\Master Account\AppData\Roaming\Mozilla\Firefox\Profiles\0uutxuxw.default\ FF - ExtSQL: 2013-03-01 17:11; ascsurfingprotection@iobit.com; c:\users\Master Account\AppData\Roaming\Mozilla\Firefox\Profiles\0uutxuxw.default\extensions\ascsurfingprotection@iobit.com reglock:: [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
  17. Thanks. While I look this over, tell me please, did you set up this proxy server: uInternet Settings,ProxyServer = 133.1.16.172:3124
  18. The recovery console is a Windows XP "concept" and doesn't apply for either Vista or 7 because the recovery options are much different...please don't worry, just run combofix and post back the log. If things go south, we should be able to walk you through any land mines.
  19. OK, thanks for taking a look...we need to do some surgery to remove it as it is a driver which will conflict with your other security programs, not to mention instability that can also result from stray drivers left behind. Please do this: Please disable the active protection component of your antivirus and antispyware programs by following the directions that apply Here. ...of those, many people overlook the Windows Defender since, for most, there is no icon for it in the system tray. Scroll through those directives above and look for this application specifically, to make certain it is disabled (Microsoft Security Essentials users can disregard the Windows Defender disable instruction since while MSE is installed, Windows Defender is disabled already by default). Please download combofix from This Webpage...and read through the instructions there for running the tool. ***Important Note*** Please read through the guidance on that web page carefully and thoroughly...and install the Recovery Console. Using this tool without the Recovery Console installed is NOT RECOMMENDED. If you have Windows Vista or Windows 7, you can skip the recovery console step...in Vista/7 it's in the System Recovery Options menu. The System Recovery Options menu is on the Windows Vista or Windows 7 installation disc. If Windows doesn't start correctly, you can use these tools to repair startup problems. The Windows Recovery Console will allow you to boot into a special recovery (repair) mode that is not otherwise available. This allows us to more easily help you should your computer have a problem after an attempted removal of malware. It's a simple procedure that will only take a few moments. Once installed, a blue screen prompt should appear that reads as follows: The Recovery Console was successfully installed. When you see that screen, please continue as follows: Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix. Click Yes to allow ComboFix to continue scanning for malware. When the tool is finished, it will produce a log file for you. Please post that log back here on your next reply. Thanks! Note: Do not mouseclick combofix's window while it's running....that may cause the scan to stall
  20. Thanks RoadGuy, There's no need to change anything via the msconfig utility, but if you DO open it and visit the "Startup" tab, whether an item is checked or not, it would still show you the file path. Look for it there and if you find it, and it's NOT checked, then leave it that way but post back here and let me know what the file path is. It would also be interesting if you find nothing there (which is what I actually suspect). That being the case, we might be more successful using a different utility to try removing it...let me know what you find so we'll know what our next step should be. Thanks!
  21. Now, please run a manual update to your on board mbam. When the update completes, please run a "Full" system scan...and post THAT log back here on your next reply. One other thing before closing mbam, I'd like you to click on the More Tools tab and download the "Startuplite" program. Run it...and make note of everything it lists. Somewhere on that list should appear the Symantec driver information. Post that information here as well. Thanks!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.