Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

I'm infected with something I do believe [Solved]

Started by sweetsuzee , Sep 07 2020 02:22 PM

Infected antivirus software

This topic is locked

#46
DR M

Posted 02 February 2021 - 02:14 AM

The Grecian Geek

Malware Removal
4,107 posts

Hi, Sue.

The fix is fine.

Let's run AdwCleaner once more.

Download AdwCleaner and save it to your desktop. By doing that you will get the newest version of the tool.

Double click AdwCleaner.exe to run it.
Click Scan Now.
- When the scan has finished, a Scan Results window will open.
- Click Cancel (at this point do not attempt to Quarantine anything that is found)
Now click the Log Files tab.
- Double click on the latest scan log (Scan logs have a [S0*] suffix, where * is replaced by a number. The latest scan will have the largest number)
- A Notepad file will open containing the results of the scan.
- Please post the contents of the file in your next reply.

==============================

After the above, please sum up all the issues you are experiencing with this computer.

From what I understood from your messages:

1. Antivirus

2. AOL problems

3.Can't open Corel documents

About the first point (Antivirus), you do have an antivirus. It's the built-in Windows 10 antivirus (Windows Defender), under the whole security platform called Windows Security. You can't see it in the installed programs list.

About the AOL problems, please be a bit more detailed, so we can see if we can help you from here or if it is AOL's matter.

I'm not sure if I understood right for the Corel issue, so again please describe in more details your issue.

Feel free to report any other issue you are experiencing.

Before inserting the text I need you to understand that I am loyal to you as my fixer.

Thanks. I hope I will be able to help you. :prop:

#47
sweetsuzee

Posted 02 February 2021 - 03:41 PM

Member

Topic Starter
Member
55 posts

Of course you will be able to help me. You are really good. The computer issues are almost taken care of. As previously explained both AOL and Corel took care of their issues. AOL's was really as internal as you can get since it wasn't showing my mail in their software and Corel's problem had to do with programming files having been changed. However, over the past 24 hours one of my most important programs seems to have quit functioning. Attempting to reinstall brought a notice that an older version had to be removed first so I decided to leave things alone until you say it is okay. Copernic is my desktop search function and with my brain being the way it is now coupled with the thousands upon thousands of files I have, I really need that software. LOL Anyway, you have helped me so much and I really don't know if there are any serious problems any longer other than the slowness of the computer. The AOL popups is something I have to learn to live with since I cannot afford to pay for their upgraded service. UGH !! When the Adw was installing it indicated that it was installing version 8.0.7 and yet what actually ran was version 8.0.8. Anyway, here's the report -

# -------------------------------

# Malwarebytes AdwCleaner 8.0.8.0

# -------------------------------

# Build: 10-08-2020

# Database: 2020-09-29.1 (Local)

# Support: https://www.malwarebytes.com/support

# -------------------------------

# Mode: Scan

# -------------------------------

# Start: 02-02-2021

# Duration: 00:01:29

# OS: Windows 10 Home

# Scanned: 31837

# Detected: 0

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.

AdwCleaner[S00].txt - [2114 octets] - [03/05/2019 09:36:18]

AdwCleaner[C00].txt - [2024 octets] - [03/05/2019 09:42:15]

AdwCleaner_Debug.log - [28997 octets] - [16/09/2019 20:13:44]

AdwCleaner[S01].txt - [3511 octets] - [16/09/2019 20:17:35]

AdwCleaner[C01].txt - [3390 octets] - [16/09/2019 20:31:53]

AdwCleaner[S02].txt - [1633 octets] - [29/09/2019 12:31:08]

AdwCleaner[S03].txt - [2864 octets] - [14/09/2020 00:35:40]

AdwCleaner[S04].txt - [2925 octets] - [14/09/2020 10:17:32]

AdwCleaner[C04].txt - [2904 octets] - [14/09/2020 10:24:20]

AdwCleaner[S05].txt - [1957 octets] - [14/09/2020 13:00:01]

AdwCleaner[S06].txt - [2018 octets] - [26/01/2021 16:44:01]

AdwCleaner[S07].txt - [2079 octets] - [26/01/2021 16:45:52]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S08].txt ##########

#48
DR M

Posted 03 February 2021 - 03:48 AM

The Grecian Geek

Malware Removal
4,107 posts

Hi, Sue.

AdwCleaner log is clean, and so your computer. No malware, no adware, no viruses, covid free. You are clean.

However, over the past 24 hours one of my most important programs seems to have quit functioning. Attempting to reinstall brought a notice that an older version had to be removed first so I decided to leave things alone until you say it is okay. Anyway, you have helped me so much and I really don't know if there are any serious problems any longer other than the slowness of the computer.

I can see in your logs that you have installed this version of Copernic:

Copernic Desktop Search (Version: 7.1.3.13796 - Copernic)

I have performed a search and found that the latest version is 7.1.3.13807, released on January 26th 2021.

I do not have experience in Copernic Desktop Search, but keeping your programs updated is a must. Instead of reinstalling the program, why don't you try to update it? Open Copernic, press the Help tap and then Check for Software Update. Follow the instructions and do the update. Then, check if the program now functions properly. If not, tell me exactly what the problem is.

As for the slowness, I have some suggestions for you, but let's move a step at a time.

#49
sweetsuzee

Posted 03 February 2021 - 11:40 PM

Member

Topic Starter
Member
55 posts

Hi Dr. M,

Come on, give a girl a break. That updated version is a week old. We've been dealing with this that long and you told me NOT to download anything. LOL

Anyway, today has been the day from [bleep] and nope, still don't have the Copernic Desktop Search (CDS) situation handled. It's gone from bad to worse. However, most of today has been spent on hold on the phone with the GeekSquad section of Best Buys. Received a notice about an annual renewal due with their allegedly billing my bank account. I felt confident it was nonsense as I've NEVER dealt with them in my life but when you see charges like that, at least for me, takes priority over all else. Needless to say it was a sham but someone should have been able to tell me that early on without having to transfer me a dozen times. UGH !!

I do now have the latest version installed but it is useless until I can figure out how to install the license keys. I will say this, CDS is, in my opinion, the greatest DS program out there. It doesn't many how many files or ow lrge your computer is, it finds what you are seeking in a matter of seconds. You can view the listed files in a view pane and copy and paste some info contained within if you need to. It surely beats having to go through various software programs and scores of folders and files and then having to open the file to c/p and then close the file/folders/programs. They have a free version although I purchased a 3 year contract which allows me the use of various extensions for WPD, doc, xcl, etc. Right this minute if I conduct a search, it only opens txt files as well as xml, html, htm, log, rtf and a variety of other useless files for my purpose although I realize they are very important. I now, as of a few minutes ago have the license keys on the desktop but I don't know how to bring them into the software. However, in going back and forth between the CDS and the correspondence I think I just solved it. However, right this moment I am too tired to wait for a reboot, etc. I'm shutting down and going to bed as I don't feel well and I will write as soon as I know. Again, thank you for all you have helped me with and thank you even more for just caring.

#50
DR M

Posted 04 February 2021 - 05:46 AM

The Grecian Geek

Malware Removal
4,107 posts

you told me NOT to download anything.

Thanks, Sue!

However... here we are talking about an update, not a new download. Updates are important for both, the operating system and all the third party software we use.

I do now have the latest version installed but it is useless until I can figure out how to install the license keys.

Perhaps you will find this video helpful. It's a bit weird that there isn't a place to insert the license as we usually do for other software. Here, it needs the license to be imported from the license file. Please let me know if you are OK with this issue.

I noticed from your previous logs that the percentage of memory in use is 78%. This is too much, considering that you have 8GB RAM installed which is fine for what you do with your computer. The slowness you referred too in your previous post, may have to do with this.

Right click on the taskbar and choose Task Manager. If it gives you the option for More Details, choose it, and then choose the Processes tab. Then, press on the Memory tab and check which process leads to high memory usage.

I'm shutting down and going to bed as I don't feel well and I will write as soon as I know. Again, thank you for all you have helped me with and thank you even more for just caring.

You are most welcome, and I really hope you had a good night's sleep. First comes our health, then our computer's.

#51
sweetsuzee

Posted 04 February 2021 - 01:55 PM

Member

Topic Starter
Member
55 posts

Shows you how little I know. I always thought upgrading included a download just by the nature of the process. LOL

Well, I'm happy to announce that when I logged in this morning and started working, the computer speed was as fast as it was when new. However, the computer is on death's doorstep and I have a brand new laptop sitting in an unopened box on the floor behind me. I'm hesitant because it is such a nightmare to start over and having to load everything, etc. Before I do anything, however, I want to make sure everything is backed up on the external drive.

I'm saddened by the improvements, however, because that ends our relationship. LOL I hope that someday they'll come up with a way for people like the 2 of us, outside the walls of a big company, to remotely work on a computer so I could hire you personally. LOL I know Beyond Trust, formerly Bomgar, the company AOL uses costs thousands of dollars monthly. I can only imagine the type of technology required. Amazing. I'm thinking back to late 1980s when I acquired my first computer and printer. No audio; no video; no color; with noisy pinfed paper. My first computer had a total capacity of 30 Mgs and I was assured it would last me a lifetime as it was millions of pages of copy. The next thing I knew I was installing software that had a larger capacity. I can imagine how Henry Ford felt through the years as he watched the progress of his automobile. Anyway, I digress. I sincerely want to thank you from the deepest pit of my heart for your assistance. Truly, Sue

#52
DR M

Posted 04 February 2021 - 02:16 PM

The Grecian Geek

Malware Removal
4,107 posts

However, the computer is on death's doorstep and I have a brand new laptop sitting in an unopened box on the floor behind me. I'm hesitant because it is such a nightmare to start over and having to load everything, etc. Before I do anything, however, I want to make sure everything is backed up on the external drive.

No, why do you say that? The computer functions well. If you have another computer waiting for you, this is another story. You can open a new thread here anytime, and we will help you to set it up and do whatever you want/need. I would be glad to do so anyway, at any time.

I'm saddened by the improvements, however, because that ends our relationship.

Always in your service, Ma'am.

We are just a click away.

===================================

Before I close this thread...

The following tool will remove the tools we used as well as reset system restore points:

Download KpRm by kernel-panik and save it to your desktop.

Right-click kprm_(version).exe and select Run as Administrator.
Read and accept the disclaimer.
When the tool opens, ensure all boxes under Actions are checked.
Under Delete Quarantines select Delete Now, then click Run.
Once complete, click OK.
A log will open in Notepad titled kprm-(date).txt.
Please copy and paste its contents in your next reply.

Now your computer is clean, here are some final tips about your computer's security from now on:

Some of the following, are from Klein's (2005) article, So how did I get infected in the first place. Since then, the article has been reproduced or linked to in dozens of locations. As a result, many malware experts have continued updating it, to include current operating systems and software program information. My source is Security Garden, and I marked for you the following:

1. Keep your Windows updated!
It is important always to keep current with the latest security fixes from Microsoft. This can patch many of the security holes through which attackers can infect your computer.

2. Update 3rd Party Software Programs
Third Party software programs have long been targets for malware creators. It has been stated that "Adobe’s Reader and Flash and all versions of Java are together responsible for a total of 66 percent of the vulnerabilities in Windows systems exploited by malware.'' It's important to keep everything updated.

3. Update the browsers you use
Many malware infections install themselves by exploiting security holes in the Internet browser that you use. So... Keep them updated.

4. Be careful about what you download and what you open!

Many "freeware" programs come with an enormous amount of bundled spyware that will slow down your system, spawn pop-up advertisements, or just plain crash your browser or even Windows itself. Watch for pre-checked options such as toolbars that are not essential to the operation of the installed software.
Peer-to-peer (P2P) programs like Kazaa, BearShare, Imesh, Warez P2P, and others, allow the creation of a network enabling people to connect with other users and upload or download material in a fast efficient manner. BUT even if the P2P software you are using is "clean", a large percentage of the files served on the P2P network are likely to be infected.
Cracked or pirated programs are not only illegal, but also can make your computer a malware target. Have this in mind.
Do not open any files without being certain of what they are!

5. Avoid questionable web sites!
Visit web sites that are trustworthy and reputable. Many disreputable sites will attempt to install malware on your system through "drive-by" exploits just by visiting the site in your browser. Lyrics sites, free software sites (especially ones that target young children), cracked software sites, and pornography sites are some of the worst offenders. Also, never give out personal information of any sort online or click "OK" to a pop-up unless it is signed by a reputable company and you know what it is.

6. PC means personal computer!
Don't give access to your computer to friends or family who appear to be clueless about what they are doing.

7. Back-up your work!
Make back-ups of your personal files frequently. You never know when you'll have to reformat and start from scratch. You can always reformat and reinstall programs, but you cannot replace your data if you haven't made backups.

8. Must-Have Software
An anti-virus and an anti-spyware program is a necessity for the security of your computer. Be sure that you keep them updated, and that real time protection is enabled.

If you have any questions or concerns please don't hesitate to ask!

I'm glad I was able to help you.

#53
sweetsuzee

Posted 06 February 2021 - 10:13 AM

Member

Topic Starter
Member
55 posts

Glad you didn't close this out yet. While sleeping I realized I hadn't finished your instructions in that I hadn't downloaded and run the KpRm as yet. So, first thing this morning I attempted to do same. I have tried for 1.5 hrs to no avail. All it wants to do is install the "Access Online Forms" program. I am not getting any negative prompts or the like. It just doesn't download. Advice?

#54
sweetsuzee

Posted 06 February 2021 - 10:19 AM

Member

Topic Starter
Member
55 posts

And my ad blocker is off.

#55
DR M

Posted 06 February 2021 - 10:37 AM

The Grecian Geek

Malware Removal
4,107 posts

Hi, Sue.

For the Adblock plus in Chrome, which is your default browser:

"To disable or reenable our Chrome Adblock Plus version, please go to "Settings" in the menu in the top right corner. Then, select "Extensions" on the left side. Find Adblock Plus here, and simply click on "Remove" or click the slider. If you want to enable the adblocker on all website again, simply click on the slider again."

I have tried for 1.5 hrs to no avail. All it wants to do is install the "Access Online Forms" program. I am not getting any negative prompts or the like. It just doesn't download. Advice?

So you didn't download the KpRm?

What happens when you click on the link I provided?

#56
sweetsuzee

Posted 06 February 2021 - 03:51 PM

Member

Topic Starter
Member
55 posts

I feel like a complete idiot. Between 7:54 AM and 11:46 AM [PT] I downloaded the KpRm exe 7 times just like downloading the AVG Clear exe 10 times on 2-1. Out of frustration I decided to look at my donwload folder to see if it indicated anything and boy did I get shocked. I guess I'm not recognizing any prompts telling me my download was completed. I know with the KpRm the download didn't take long as there was instantly a white flash and then an immediate push for me to download the Access Online Forms program. Anyway, here's the results -

# Run at 2/6/2021 11:54:54 AM

# KpRm (Kernel-panik) version 2.8

# Website https://kernel-panik.me/tool/kprm/

# Run by suesarkis from C:\Users\suesarkis\Downloads

# Computer Name: SUESBABY

# OS: Windows 10 X64 (19041)

# Number of passes: 1

- Checked options -

~ Registry Backup

~ Delete Tools

~ Restore System Settings

~ UAC Restore

~ Delete Restore Points

~ Create Restore Point

~ Delete Quarantines

- Create Registry Backup -

~ [OK] Hive C:\WINDOWS\System32\config\SOFTWARE backed up

~ [OK] Hive C:\Users\suesarkis\NTUSER.dat backed up

[OK] Registry Backup: C:\KPRM\backup\2021-02-06-11-54-53

- Delete Tools -

## AdwCleaner

[OK] C:\Users\suesarkis\Desktop\AdwCleaner.exe deleted

[OK] C:\Users\suesarkis\Desktop\adwcleaner_8.0.9.1.exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner (1).exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner (2).exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner (3).exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner (4).exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner (5).exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner (6).exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner (7).exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner (8).exe deleted

[OK] C:\Users\suesarkis\Downloads\AdwCleaner.exe deleted

[OK] C:\AdwCleaner deleted

## AswMBR

[OK] C:\Users\suesarkis\Desktop\aswmbr.exe deleted

## ESET Online Scanner

[OK] C:\Users\suesarkis\Desktop\ESET Online Scanner.lnk deleted

[OK] C:\Users\suesarkis\Downloads\esetonlinescanner_enu (1).exe deleted

[OK] C:\Users\suesarkis\Downloads\esetonlinescanner_enu.exe deleted

[OK] C:\Users\suesarkis\AppData\Local\ESET\ESETOnlineScanner deleted

## FRST

[OK] C:\Users\suesarkis\Desktop\Addition.txt deleted

[OK] C:\Users\suesarkis\Desktop\Fixlog.txt deleted

[OK] C:\Users\suesarkis\Desktop\FRST-OlderVersion deleted

[OK] C:\Users\suesarkis\Desktop\FRST.txt deleted

[OK] C:\Users\suesarkis\Desktop\FRST64.exe deleted

[OK] C:\Users\suesarkis\Downloads\Addition.txt deleted

[OK] C:\Users\suesarkis\Downloads\fixlist.txt deleted

[OK] C:\Users\suesarkis\Downloads\FRST.txt deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (1).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (2).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (3).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (4).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (5).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (6).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (7).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (8).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64 (9).exe deleted

[OK] C:\Users\suesarkis\Downloads\FRST64.exe deleted

[OK] C:\FRST deleted

## FSS

[OK] C:\Users\suesarkis\Downloads\FSS.exe deleted

[OK] C:\Users\suesarkis\Downloads\FSS.txt deleted

## Malwarebytes Anti-Rootkit

[OK] C:\Users\suesarkis\Desktop\mbar deleted

[OK] C:\Users\suesarkis\Downloads\mbar-1.07.0.1007.exe deleted

## OTL

[OK] C:\Users\suesarkis\Desktop\OTL.exe deleted

[OK] C:\_OTL deleted

## Shortcut Cleaner

[OK] C:\Users\suesarkis\Downloads\sc-cleaner.exe deleted

## TDSSKiller

[OK] C:\Users\suesarkis\Desktop\tdsskiller.exe deleted

## Windows Repair All In One (portable)

[OK] C:\Users\suesarkis\Downloads\tweaking.com_windows_repair_aio deleted

[OK] C:\Users\suesarkis\Downloads\tweaking.com_windows_repair_aio.zip deleted

- Restore System Settings -

[OK] Reset WinSock

[OK] FLUSHDNS

[OK] Hide Hidden file.

[OK] Show Extensions for known file types

[OK] Hide protected operating system files

- Restore UAC -

[OK] Set EnableLUA with default (1) value

[OK] Set ConsentPromptBehaviorAdmin with default (5) value

[OK] Set ConsentPromptBehaviorUser with default (3) value

[OK] Set EnableInstallerDetection with default (0) value

[OK] Set EnableSecureUIAPaths with default (1) value

[OK] Set EnableUIADesktopToggle with default (0) value

[OK] Set EnableVirtualization with default (1) value

[OK] Set FilterAdministratorToken with default (0) value

[OK] Set PromptOnSecureDesktop with default (1) value

[OK] Set ValidateAdminCodeSignatures with default (0) value

- Clear Restore Points -

~ [OK] RP named Installed Copernic Desktop Search created at 02/02/2021 18:34:55 deleted

~ [OK] RP named Installed Copernic Desktop Search created at 02/02/2021 18:44:56 deleted

~ [OK] RP named Installed Copernic Desktop Search created at 02/02/2021 21:48:07 deleted

~ [OK] RP named Installed Copernic Desktop Search created at 02/02/2021 23:09:00 deleted

~ [OK] RP named Installed Copernic Desktop Search created at 02/02/2021 23:55:56 deleted

~ [OK] RP named Installed Copernic Desktop Search created at 02/03/2021 19:22:15 deleted

~ [OK] RP named Installed Copernic Desktop Search created at 02/03/2021 19:33:21 deleted

[OK] All system restore points have been successfully deleted

- Create Restore Point -

[OK] System Restore Point created

- Display System Restore Point -

~ [I] RP named KpRm created at 02/06/2021 20:13:39

-- KPRM finished in 1243.89s --

#57
DR M

Posted 07 February 2021 - 05:21 AM

The Grecian Geek

Malware Removal
4,107 posts

It seems that you have to check your Downloads folder when you download something.

The log is fine, so it's time for this thread to close.

================================

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.

If you're the topic starter, and need this topic reopened, please contact a staff member with the link of the thread.

Everyone else please begin a New Topic.

Back to Virus, Spyware, Malware Removal · Next Unread Topic →

Also tagged with one or more of these keywords: Infected, antivirus software

Security → Virus, Spyware, Malware Removal → Someone keeps aggressively hacking my computer. Please Help! Started by miahmelll , 11 Oct 2020 spyware, malware, infected and 2 more...	1 reply 2,478 views	RKinner 12 Oct 2020
malware Security → Virus, Spyware, Malware Removal → Windows 7 Malware Can't be detected Started by kishon647 , 26 Aug 2020 malware, cleanup, virus, windows7 and 3 more... 1 2	Hot 17 replies 5,605 views	kishon647 28 Aug 2020
Security → Virus, Spyware, Malware Removal → infected comp? Started by fantashtic , 30 Nov 2017 infected	2 replies 3,181 views	zep516 22 Dec 2017
Security → Virus, Spyware, Malware Removal → Windows 7 Pro 64bit [Closed] Started by bonezz , 09 Nov 2017 Infected	2 replies 2,312 views	Dakeyras 18 Nov 2017
Security → Virus, Spyware, Malware Removal → DLL error-Computer unuseable Started by Alooner , 04 Nov 2017 malware, dll, dll error, spyware and 1 more...	5 replies 2,748 views	RKinner 10 Nov 2017