Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Believe I am infected with malware--Sendori?


  • Please log in to reply
12 replies to this topic

#1 gh1990

gh1990

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:07 PM

Posted 19 January 2014 - 12:01 PM

For quite some time I have been having occasional trouble getting to some popular websites (e.g., google.com, facebook.com, pinterest.com). My browser (Chrome) will stop me from accessing the site when this happens, claiming that there is an issue with the site's security certificate. Usually when I expand the error it says the security certificate is coming from "icloud.com". Sometimes it would claim the site was actually "akamai" or something similar.  When the issue is happening, I cannot use any browser to access the site. I use a Lenovo laptop and am running Windows 7. The last few days I have noticed that my husband's Apple computer has been having the same issue. Occasionally my iphone will have trouble connecting to the gmail or google servers when I'm using my Wifi at home.

 

I have run Malwarebytes, Avast, Windows Security scans. Malwarebytes found a few "PUPs" that I removed. Another forum directed me to the Google DNS which I have been using for the past two days. At first this seemed to solve the problem--then I started getting redirects to something called "Sendori". I found that a program called Sendori had been installed on my computer and I uninstalled it in the Control Panel. Now I cannot find any files with the name "sendori" in them on my computer but I doubt this actually solved my problem.

 

If anyone has any advice or suggestions that would be great. Thank you in advance.



BC AdBot (Login to Remove)

 


#2 gh1990

gh1990
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:07 PM

Posted 19 January 2014 - 01:55 PM

Here's some more specific info. Just tried to use google.com with no luck, received this error message:

 

 

"Cannot connect to the real www.google.com

 

Something is currently interfering with your secure connection to www.google.com.

Try to reload this page in a few minutes or after switching to a new network. If you have recently connected to a new Wi-Fi network, finish logging in before reloading.

If you were to visit www.google.com right now, you might share private information with an attacker. To protect your privacy, Chrome will not load the page until it can establish a secure connection to the real www.google.com."

 

I tried to reload google.com after receiving this message and it redirected to www.facebook.com. If someone has any idea of what my next steps should be please let me know.


Edited by gh1990, 19 January 2014 - 01:57 PM.


#3 noknojon

noknojon

    Almost Retired


  • Members
  • 9,866 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Victoria Australia
  • Local time:10:07 AM

Posted 19 January 2014 - 02:23 PM

Hello -

These people have been around for a while and they attach their program to other downloads.

 

Please try to follow this guide => How do I Uninstall Sendori?
They also include a contact for those who still have problems -

 

Thank You -



#4 gh1990

gh1990
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:07 PM

Posted 19 January 2014 - 02:25 PM

Hello -

These people have been around for a while and they attach their program to other downloads.

 

Please try to follow this guide => How do I Uninstall Sendori?
They also include a contact for those who still have problems -

 

Thank You -

I am hesitant to follow that link as my antivirus (Avast) has detected it is a threat. Edit: it won't load even if I try to follow it...


Edited by gh1990, 19 January 2014 - 02:25 PM.


#5 noknojon

noknojon

    Almost Retired


  • Members
  • 9,866 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Victoria Australia
  • Local time:10:07 AM

Posted 19 January 2014 - 02:55 PM

My Antivirus will allow it, as it is a heuristic detection only -

 

That means "it may be bad", but even the WOT rating is no more than ?? and not Bad -

 

I have been there several times to copy these same uninstall directions (plus a complaint to them).

 

Please try it -

Edited to add given directions -

1. Click on start Button
2. Type “Programs and features” in the search bar and hit enter
3. You will see the programs and features window which will show you all the applications installed on your computer.
4. In this list you will see Sendori Installed on the computer. Right Click on it and it will give you the option to uninstall.
5. Click on Uninstall and this will prompt a survey page. Please fill in the survey page and click done. This will uninstall the Sendori app from your computer.
6. One last step would be to reboot your computer after the application is uninstalled.
7. If you have any problems uninstalling Sendori from your computer, Please email us about the issue and we will get back to you as early as possible.

Thank you,
Sendori Support.

Email: [email protected]


Edited by noknojon, 19 January 2014 - 02:59 PM.


#6 gh1990

gh1990
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:07 PM

Posted 19 January 2014 - 04:30 PM

My Antivirus will allow it, as it is a heuristic detection only -

 

That means "it may be bad", but even the WOT rating is no more than ?? and not Bad -

 

I have been there several times to copy these same uninstall directions (plus a complaint to them).

 

Please try it -

Edited to add given directions -

1. Click on start Button
2. Type “Programs and features” in the search bar and hit enter
3. You will see the programs and features window which will show you all the applications installed on your computer.
4. In this list you will see Sendori Installed on the computer. Right Click on it and it will give you the option to uninstall.
5. Click on Uninstall and this will prompt a survey page. Please fill in the survey page and click done. This will uninstall the Sendori app from your computer.
6. One last step would be to reboot your computer after the application is uninstalled.
7. If you have any problems uninstalling Sendori from your computer, Please email us about the issue and we will get back to you as early as possible.

Thank you,
Sendori Support.

Email: [email protected]

I have already uninstalled the program--earlier this morning. There is no trace of Sendori on my computer anymore when I search for it and it is not listed as a program in the Programs and features window. However, I was still having the redirect issue after doing this. Is there a scan I should do or some other way to make sure that my computer is completely free of malware now?



#7 noknojon

noknojon

    Almost Retired


  • Members
  • 9,866 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Victoria Australia
  • Local time:10:07 AM

Posted 19 January 2014 - 05:08 PM

However, I was still having the redirect issue after doing this.

Hi -

Make sure that you delete Sendori from all of your Home Page settings (ask if not sure)

If you are using Chrome, I would first change to Internet Explorer (or another) and then Delete Chrome Browser

If you choose to install Chrome later this will pick up more minor infections than most other browsers

These are My Findings Only, and a Personal comment -

 

Now First -

Please download and run RKill by Grinler.

A black DOS box will briefly flash and then disappear.
This is normal and indicates the tool ran successfully.

At most the tool will run for about 2 minutes

 

Important: Do not reboot your computer until you complete the next step.

 

* Please download AdwCleaner by Xplode and save to your Desktop.
* Double-click on AdwCleaner.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
* Click on the Scan button (only once)
* AdwCleaner will begin...be patient as the scan may take some time to complete.
* After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
* NOW - Click on the Clean button (only once)
* Press OK when asked to close all programs and follow the onscreen prompts.
* Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
* After Auto rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
* Copy and paste the contents of that logfile in your next reply.
* A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

 

And then -

Please download Junkware Removal Tool by thisisu and save it to your Desktop.
* Close all open programs and shut down any protection/security software now to avoid potential conflicts.
* Double-click on JRT.exe to run the tool.
* Vista/Windows 7/8 users right-click and select Run As Administrator.
* The tool will open and start scanning your system.
* Please be patient as this can take a while to complete depending on your system's specifications.
* On completion, a log file named JRT.txt will automatically open and be saved to your Desktop.
* Copy and paste the contents of JRT.txt in your next reply.
These tools will search for and remove many potentially unwanted programs (PUPs), adware, toolbars, browser hijackers, extensions, add-ons, browser helper objects (BHOs) and other junkware to include many related registry entires (values, keys)

 

 

Then -

Clear Cache / Temp Files
Download TFC by OldTimer to your desktop
• Please double-click TFC.exe to run it.
• For Vista, Win 7 / 8 right-click on the file and choose Run As Administrator).
• It will close all programs when run, so make sure you have saved all your work before you begin.
• Click the Start button to begin the process.
• Once it's finished it may reboot your machine.
• If it does not, please manually reboot the machine yourself to ensure a complete clean.

 

 

If you have time now or later, this will take about 2 hours to run (on average only)

Run ESETOnlineScanner Please use Internet Explorer as the scanner uses ActiveX
If you will not use Internet Explorer, please see 3 - 1 & 3 - 2
1 .Hold down Control (Ctrl) key, and click on This link to open ESET OnlineScan in a new window.
2 .Click the eset online button.
3 .For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
3 - 1 .Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
3 - 2 .Double click on esetsmartinstaller_enu on your desktop.
4 .Check "YES, I accept the Terms of Use."
5 .Click the Start button.
6 .Accept any security warnings from your browser.
7 .Under scan settings, check "Scan Archives" and "Remove found threats"
8 .Click Advanced settings and select the following:
* Scan potentially unwanted applications
* Scan for potentially unsafe applications
* Enable Anti-Stealth technology

9 .ESET will then download updates for itself, install itself, and begin scanning your computer.

Please be patient as this will take some time.
10 .When the scan completes, click List Threats
11 .Click Export, and save the file to your desktop using a unique name, such as ESETScan.
- Include the contents of this report in your next reply.
12 .Click the Back button.
13 .Click the Finish button.
* NOTE:Sometimes if ESET finds no infections it will not create a log.

 

 

Recheck your Home Page(s) and tell me if you can/have now reset them -

 

Thank You -



#8 gh1990

gh1990
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:07 PM

Posted 20 January 2014 - 06:42 PM

EDIT: Thought this might have solved the problem but just got the SSL Error again when trying to do a google search :( Here is the Chrome error:

 

 

What does this mean?

 

www.google.com normally uses encryption (SSL) to protect your information. When Chrome tried to connect to www.google.com this time, www.google.com returned unusual and incorrect credentials. Either an attacker is trying to pretend to be www.google.com, or a Wi-Fi login screen has interrupted the connection. Your information is still secure because Chrome stopped the connection before any data was exchanged.

Network errors and attacks are usually temporary, so this page will probably work later. You can also try switching to another network.

 

Technical details

www.google.com has asked Chrome to block any certificates with errors, but the certificate that Chrome received during this connection attempt has an error.
Error type: HSTS failure
Subject: www.apple.com
Issuer: VeriSign Class 3 Extended Validation SSL SGC CA
Public key hashes: sha1/b+6GDfWX6nXDqji+tYOL4DQzmlQ= sha256/cuo6i7ZitaKmQ7ixBDJEVS4HOvLV6iuF+OYTXnVdUuE= sha1/j5qKVfIJ52ZNgKFWdkAfs1i7Dhk= sha256/TfUknRoG8EPFF/IfejfY9nW2CPiv9v5p3/1WM2e0urg= sha1/sYEIGhmkwJQf+uiVKMEkyZs0rMc= sha256/JbQbUG5JMJUoI6brnx0x3vZF6jilxsapbXGVfjhN8Fg=

 

When I try to access google.com in Firefox, I get this:

 

This Connection is Untrusted
 
You have asked Firefox to connect securely to www.google.com, but we can't confirm that your connection is secure.
 
Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site's identity can't be verified.
What Should I Do?
 
If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue.
 

 

www.google.com uses an invalid security certificate. The certificate is only valid for www.apple.com (Error code: ssl_error_bad_cert_domain)
 
 

 

 

Thank you, here are my logs:

 

AdwCleaner

 

# AdwCleaner v3.017 - Report created 19/01/2014 at 15:52:50
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium  (64 bits)
# Username : A - A-PC
# Running from : C:\Users\A\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Users\A\AppData\Local\PackageAware
File Deleted : C:\Users\A\AppData\Local\Temp\Uninstall.exe
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKCU\Software\YahooPartnerToolbar
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v8.0.7600.17267
 
 
-\\ Mozilla Firefox v26.0 (en-US)
 
[ File : C:\Users\A\AppData\Roaming\Mozilla\Firefox\Profiles\3zxkt7ij.default\prefs.js ]
 
 
-\\ Google Chrome v32.0.1700.76
 
[ File : C:\Users\A\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [2484 octets] - [19/01/2014 15:50:47]
AdwCleaner[S0].txt - [2384 octets] - [19/01/2014 15:52:50]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2444 octets] ##########
 
JRT
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x64
Ran by A on Sun 01/19/2014 at 16:00:05.46
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{03A5128A-D158-4672-8496-E2D0DCB22157}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{04D612A9-895B-46DE-8081-27F093A2DC62}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{09EB211B-DD37-4CF6-9682-A284D2CC2964}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{0F01EE5D-7065-4D4B-BD21-57EF7D6DEAFD}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{1DC3DCC0-08B6-4169-96F0-FE9E691DF578}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{21CA8BC3-7461-4AF9-A426-0252DA1207F6}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{247FA8D1-9144-467F-A1F0-6074879C7B37}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{2F048D78-ECBD-4ABA-B38C-96BED10AF975}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{3924ADF6-09DA-4BBD-BEBA-0B76A4CFF904}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{405B6C77-611B-4548-8385-268E0AD2272C}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{44588CEF-E36D-40D2-B720-70544DE3879F}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{46D404B0-329E-4D44-A116-03B470190A54}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{494542F1-4582-416A-8F7D-244AC4A00360}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{515CAAAB-529E-4901-81AF-71CC17FFC0AA}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{5A550519-D1C5-412B-8B2B-DEADB9C35091}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{5CB55198-1332-4222-9AF5-D9B508B18735}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{634EAE01-65B2-4AAC-947A-B5E8EA078D12}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{72A9DD7F-C9ED-48EB-BC5D-461E2C53B353}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{73BFBDD3-3B82-40AE-BC52-C0AF3ADF8E8B}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{7B94616B-5E32-4730-BE8E-FB8345DF4C6F}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{7EDF2215-C165-4A7B-8F5B-1DF3ED43D0A8}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{860F2578-7624-4B84-B1B8-68CB03A787DD}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{955CA1C0-B59F-4B75-AEA6-976FB0081214}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{A3DC4F94-7F8D-4913-973E-52798581FC5F}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{A6CA00E4-7D28-4519-928C-57906575BDC3}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{A7555B6E-E2FE-447E-8489-191687D484AB}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{AF1B2E44-3A35-468B-B1F9-CB7B5C2E7DF0}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{BCA2531F-CCFA-43AE-975F-07FD184A6C0E}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{C3A265B9-9647-492C-9D84-1C7D704A04DE}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{D34E6A2D-658A-40A6-A404-EDEF0086A768}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{D501F969-F68F-41A0-B6F3-5E76C4870FF4}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{DF0B8054-3557-4E2E-9F99-463FDDA8A75E}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{E1E94CEB-97BB-4717-AD47-4E760B6F77E1}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{E66F0F04-CB5C-47DE-A5E6-DE36589DC9C8}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{E91EF46B-CA7A-4D11-B584-EFA97CF6926F}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{F36B92F1-50E9-426F-B11D-66640B43BD9A}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{F50FF3C3-1F3A-4228-B5F4-52EF438F789A}
Successfully deleted: [Empty Folder] C:\Users\A\appdata\local\{F8562C97-796C-4BDD-BF14-FF45FFCC957E}
 
 
 
~~~ FireFox
 
Emptied folder: C:\Users\A\AppData\Roaming\mozilla\firefox\profiles\3zxkt7ij.default\minidumps [6 files]
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/19/2014 at 16:12:58.63
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
I did not have a ESET log because it found no threats.
 
Thank you again in advance for any advice! Since finishing the scans I have not personally had the problem on my Windows 7 laptop. My husband did mention he could not connect to Google, however, on his Apple computer. Could the problem be with my router? Does my laptop seem clean?

Edited by gh1990, 20 January 2014 - 07:42 PM.


#9 noknojon

noknojon

    Almost Retired


  • Members
  • 9,866 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Victoria Australia
  • Local time:10:07 AM

Posted 20 January 2014 - 08:55 PM

Note : I am only able to deal with one computer at a time, since the issues will get confused.

 

I do believe that Sendori was originally designed to hang on Mac computers. Now that it is on so many Windows PCs this has caused the problem. Added to that, I have spent about 6 months arguing with them about the number of people that do have this problem and have trouble removing it fully.

 

 

Please use another browser like Internet Explorer on Windows, or Safari on Apple computers. and then Delete Chrome from both systems, as this picks up these problems. If you read the Am I Infected pages, most of the Toolbar / Redirecting problems are on Chrome browsers (regardless of Antivirus Etc.). The first thing to remember is that Internet Explorer is built into Windows systems, while Chrome or Firefox are both just Add on programs.

The one thing you did not list above, was what happens when you try to access anything with Internet Explorer and what version of Internet Explorer you have installed.

 

The others have said I was silly to use Internet Explorer as my main browser, but I do not get these problems that all Chrome users get. There is a design flaw with the program that lets these programs in, and now it makes it harder to remove them.

 

 

This is only for Windows based computers, and will take about 3 to 5 minutes to run

Download Screen317 Security Check and save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Please post the contents of that document.
Note:: If any security program requests permission to access the Internet, allow it to do so.

 

 

Thank You -



#10 gh1990

gh1990
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:07 PM

Posted 20 January 2014 - 09:10 PM

Okay, I have uninstalled Chrome and Firefox. Using IE now and haven't had the problem yet, but not willing to say I'm in the clear as it seems to come and go with the other browsers. Will update if I notice it comes back.

 

Here is the log:

 

 Results of screen317's Security Check version 0.99.79 
 Windows 7  x64 (UAC is enabled) 
 Out of date service pack!!
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
Microsoft Security Essentials  
avast! Antivirus               
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 JavaFX 2.1.1   
 Java™ 6 Update 30 
 Java 7 Update 51 
 Adobe Flash Player 11.9.900.170 
 Adobe Reader 10.1.8 Adobe Reader out of Date! 
````````Process Check: objlist.exe by Laurent```````` 
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
 AVAST Software Avast AvastSvc.exe 
 AVAST Software Avast AvastUI.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 1%
````````````````````End of Log``````````````````````
 



#11 noknojon

noknojon

    Almost Retired


  • Members
  • 9,866 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Victoria Australia
  • Local time:10:07 AM

Posted 20 January 2014 - 09:59 PM

OK -

A few little problems -

Microsoft Security Essentials & avast! Antivirus should Not be on together as they will "fight and contradict each other"

Only one Antivirus program, or they both sleep, or both want to fight any infection (causes havoc internally).

   

Delete  Java™ 6 Update 30 from Programs and features.

 

Finally  Out of date service pack!! You have not installed SP 1 for Windows 7. Do you do normal monthly Updates ??

 

Now a couple of answers for your other problem ............. None of them are too bad.

 

The first one shows that Facebook has problems with Akamai Technologies (a major sponsor)

 

Fix for certificate error - Userscripts.org (Error code: ssl_error_bad_cert_domain). This error is actually caused by facebook itself in combination with Akamai Technologies Inc (one reason why you see it.

 

The second one can occur when your Clock is out of Time / Date -
Try this. Go to Control Panel, then to your date and time.
 Make sure it has the right date,. mine was in October and it should have said November even though I never changed my month some mystical force had.
 So after I changed the month to this month. I was then able to syncronize to the internet.

 

I just searched 20 versions, and these were the most given answers to (Error code: ssl_error_bad_cert_domain)

This is the 2 things to look at - Was Facebook open, and Check Time / Date, Sounds simple, but they are your answers.

I will add my 3rd if nothing else matches ? 2 Active Antivirus programs -

 

 

Thanks -



#12 gh1990

gh1990
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:07 PM

Posted 20 January 2014 - 10:22 PM

Ok, I uninstalled the Java update. Facebook was not open during the scans but I have had the akaimai issue before so if it happens again I will follow those instructions. Time/date were correct. Downloading the Windows update now (I do update monthly and my Windows Update said I had no important updates to do, so I did not realize I was missing it). Just now, using Internet Explorer, I had the google error again: " There is a problem with this website's security certificate. The security certificate presented by this website has errors, and should not be trusted. Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server. We recommend that you close this webpage and do not continue to this website. Click here to close this webpage. Continue to this website (not recommended). " Thank you again for all of your help! I will uninstall Avast and stick to Microsoft Security Essentials if I need to, but the problem happened before I used Avast--I downloaded Avast in an attempt to find it.

Just tried google.com one more time using IE and received a different error:

 

 

"

404 Not Found nginx

<!-- a padding to disable MSIE and Chrome friendly e"



#13 noknojon

noknojon

    Almost Retired


  • Members
  • 9,866 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Victoria Australia
  • Local time:10:07 AM

Posted 21 January 2014 - 12:05 AM

Check that your Home page is correct -

I just set mine to http://www.google.com/ and this is where I can always search from.

Also you can always try the word GOOGLE in my signature, as it is a live link to google.com

 

404 error means the page is missing, or you can not reach it for some reason.






1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users