Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

how do i uninstall mix.dj


  • Please log in to reply
16 replies to this topic

#1 kamibird

kamibird

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 13 August 2013 - 08:41 PM

my adware 2012 quit working right. so tried to reload it form tucows, then something went wrong. i got this awful mix.dj that i cant get rid of. i installed and ran malwarebytes and cleaned that up. just the quick scan so far. thanks kb


Edited by hamluis, 14 August 2013 - 05:04 AM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:20 PM

Posted 13 August 2013 - 08:50 PM

:welcome: kamibird to Bleeping Computer!

 

Do you refer to the mix dj toolbar or program?

 

Download SecurityCheck.exe from Here
. Run SecurityCheck and follow the instruction from inside the code box.
. When the scan is finished, a notepad will automatically open as check.txt
   Please copy and paste the contents here on your next reply.

 

Download Adwcleaner by Xplode : http://www.bleepingcomputer.com/download/adwcleaner/
Click on Adwcleaner and hit the Delete button. Copy and paste the result on your next reply.

 

Download JRT by thisisu http://www.bleepingcomputer.com/download/junkware-removal-tool/
Make sure to disable your antivirus or any running protection softwares before running JRT to avoid interferences.
For Vista and Windows 7, right-click and Run as Administrator. In XP, double click JRT icon.
Please be patient and let the program finish scanning.
Once finish, a text document will open then copy-paste it on your next reply.

 

 

 


Tekken
 


#3 kamibird

kamibird
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 14 August 2013 - 05:33 PM

well, i managed to get rid of some of whatever it was by going into my program files. i found a folder that said 'mixdj' and ran a security check and it had an infection of some sort so i got rid of the folder. i had to do it two times to get rid of the folder. that is gone. i still have 'MixDJ V42' coming up as a search engine on my tool bar on my internet explorer, but not mozilla.  I was able to disable it by going into tools on ie but couldnt remove it. on microsoft help forum someone was saying something about the problem being 'conduit'. i found a folder in program files named conduit with 2 files having the date from when i got the problem. the file wasnt infected but i dont know if 'conduit' is a folder i need or if it came from mixdj so i didnt remove it. i'm wondering if that will finish this thing off correctly if i just remove the folder. or do i need to go through all these other steps mentioned by jhayz. thanks so much! i dont have a computer brain and now found something i dislike more than doing dishes.



#4 kamibird

kamibird
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 14 August 2013 - 05:41 PM

before i dowload anymore cleaners what should i do w/ what i have?

i 've got comodo for virus, firewall and defense +. microsoft security for firewall and spyware. and Malwarebytes. thanks



#5 kamibird

kamibird
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 14 August 2013 - 05:59 PM

ok here's what i got from the scan

 

Results of screen317's Security Check version 0.99.72 

 Windows XP Service Pack 3 x86  

 Internet Explorer 8 

``````````````Antivirus/Firewall Check:``````````````

 Windows Firewall Enabled! 

 WMI entry may not exist for antivirus; attempting automatic update.

`````````Anti-malware/Other Utilities Check:`````````

 Malwarebytes Anti-Malware version 1.75.0.1300 

 Java 7 Update 7 

 Java version out of Date!

 Adobe Flash Player           11.7.700.224 

 Adobe Reader 10.1.4 Adobe Reader out of Date! 

 Mozilla Firefox 15.0 Firefox out of Date! 

````````Process Check: objlist.exe by Laurent```````` 

`````````````````System Health check`````````````````

 Total Fragmentation on Drive C:: 2%

````````````````````End of Log``````````````````````



#6 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:20 PM

Posted 14 August 2013 - 07:20 PM

Please complete the steps as suggested.


Tekken
 


#7 kamibird

kamibird
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 16 August 2013 - 01:05 AM

i wasnt able to turn microsoft security essentials off for the scan, so i ran them w/ it on. here's what i got. kb

 

# AdwCleaner v2.306 - Logfile created 08/15/2013 at 21:45:10
# Updated 19/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : vicky - HOME-PC
# Boot Mode : Normal
# Running from : C:\Documents and Settings\vicky\My Documents\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Documents and Settings\vicky\Local Settings\Application Data\BrowserPlus2
Deleted on reboot : C:\Documents and Settings\vicky\Local Settings\Application Data\Conduit
Deleted on reboot : C:\Documents and Settings\vicky\Local Settings\Application Data\MixiDJ_V42
Deleted on reboot : C:\Program Files\BrowserPlus2
Deleted on reboot : C:\Program Files\Common Files\AVG Secure Search
Deleted on reboot : C:\Program Files\Conduit
File Deleted : C:\END
Folder Deleted : C:\Documents and Settings\vicky\Application Data\SearchProtect

***** [Registry] *****

Key Deleted : HKCU\Software\BrowserPlus2
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\MixiDJ_V42
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\BrowserPlus2
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3298578
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3309350
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{77119D84-55F3-44B0-A433-F4E6C004F28C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7D6BBCAB-E0A2-4FF6-BE40-9C0F86D61BC9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{847CA4A4-791C-4A6C-8D49-A5ABA31964C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7A5E1AD-9233-4D93-88D9-7304D7B67FB8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MixiDJ_V42 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{165FF19B-1E97-471E-95E3-68925D55E384}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A83013E6-BF8A-410F-B343-E9D1E597A36E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserPlus2 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MixiDJ_V42 Toolbar
Key Deleted : HKLM\Software\MixiDJ_V42
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0 (en-US)

File : C:\Documents and Settings\vicky\Application Data\Mozilla\Firefox\Profiles\tmavej3p.default-1376461069000\prefs.js

[OK] File is clean.

*************************

AdwCleaner[R1.b].txt - [6052 octets] - [15/08/2013 21:35:34]
AdwCleaner[R1].txt - [6052 octets] - [15/08/2013 21:33:00]
AdwCleaner[S1].txt - [347 octets] - [15/08/2013 21:35:43]
AdwCleaner[S2].txt - [347 octets] - [15/08/2013 21:36:38]
AdwCleaner[S3].txt - [6161 octets] - [15/08/2013 21:45:10]

########## EOF - C:\AdwCleaner[S3].txt - [6221 octets] ##########
 

 

 

# AdwCleaner v2.306 - Logfile created 08/15/2013 at 21:36:38
# Updated 19/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : vicky - HOME-PC
# Boot Mode : Normal
# Running from : C:\Documents and Settings\vicky\My Documents\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

 

 

# AdwCleaner v2.306 - Logfile created 08/15/2013 at 21:33:00
# Updated 19/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : vicky - HOME-PC
# Boot Mode : Normal
# Running from : C:\Documents and Settings\vicky\My Documents\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\END
Folder Found : C:\Documents and Settings\vicky\Application Data\SearchProtect
Folder Found : C:\Documents and Settings\vicky\Local Settings\Application Data\BrowserPlus2
Folder Found : C:\Documents and Settings\vicky\Local Settings\Application Data\Conduit
Folder Found : C:\Documents and Settings\vicky\Local Settings\Application Data\MixiDJ_V42
Folder Found : C:\Program Files\BrowserPlus2
Folder Found : C:\Program Files\Common Files\AVG Secure Search
Folder Found : C:\Program Files\Conduit

***** [Registry] *****

Key Found : HKCU\Software\BrowserPlus2
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\ConduitSearchScopes
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\MixiDJ_V42
Key Found : HKCU\Software\SmartBar
Key Found : HKCU\Toolbar
Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\Software\BrowserPlus2
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\S
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3298578
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3309350
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{77119D84-55F3-44B0-A433-F4E6C004F28C}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7D6BBCAB-E0A2-4FF6-BE40-9C0F86D61BC9}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{847CA4A4-791C-4A6C-8D49-A5ABA31964C0}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7A5E1AD-9233-4D93-88D9-7304D7B67FB8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MixiDJ_V42 Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{165FF19B-1E97-471E-95E3-68925D55E384}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A83013E6-BF8A-410F-B343-E9D1E597A36E}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserPlus2 Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MixiDJ_V42 Toolbar
Key Found : HKLM\Software\MixiDJ_V42
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKU\S-1-5-21-602162358-299502267-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0 (en-US)

File : C:\Documents and Settings\vicky\Application Data\Mozilla\Firefox\Profiles\tmavej3p.default-1376461069000\prefs.js

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [5923 octets] - [15/08/2013 21:33:00]

########## EOF - C:\AdwCleaner[R1].txt - [5983 octets] ##########

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.4.6 (08.15.2013:1)
OS: Microsoft Windows XP x86
Ran by vicky on Thu 08/15/2013 at 22:15:39.32
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthelper.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\viprotocol.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\protocols\handler\viprotocol
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{1C6D8096-810A-43F1-9824-B0C81C721B56}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\big fish games"
Successfully deleted: [Folder] "C:\Documents and Settings\vicky\Local Settings\Application Data\conduit"
Successfully deleted: [Folder] "C:\Program Files\conduit"
Successfully deleted: [Folder] "C:\Program Files\radiorage_4jei"





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 08/15/2013 at 22:23:54.51
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#8 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:20 PM

Posted 17 August 2013 - 02:23 AM

How's the computer running?


Tekken
 


#9 kamibird

kamibird
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 20 August 2013 - 06:19 PM

well a lot of stuff cleaned out and i was able to get a malware loaded which was the original problem.

Then I loaded Avast since that seemed to be highly recommended, but it did not have a firewall so i left the firewall only on for comodo. Plus there's microsoft security running which i've ran that w/ comodo w/o trouble. i also for some reason added malwarebytes. maybe because it was well rated on tucows or somewhere. I put comodo in the paranoid mode and somewhere along the line things slowed down terribly. so i uninstalled avast and adwcleaner since comodo didnt  approve of adwcleaner too well. and it seems to be running fine again.

  do you have any suggestions about the security i have now. the only change now is the adware/malware is changed to malware bytes.

and i did located some files that seem to be related to the original mixdj, but i'm not sure what they are. thanks vb



#10 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:20 PM

Posted 20 August 2013 - 10:09 PM

:step1: If you need any suggestions regarding protection softwares, please ask in the Antivirus, FireWall and Protection section of Bleeping Computer.

 

:step2: Do not install/run multiple instances of antiviruses as it can cause unwanted slow down, conflicts in your system.

 

:step3: Do not change (add or remove) any settings or softwares until your computer problem is resolved in your open thread.

 

:step4: Please follow only the instructions posted and follow up with the results needed.

 

Download SecurityCheck.exe from Here

. Run SecurityCheck and follow the instruction from inside the code box.
. When the scan is finished, a notepad will automatically open as check.txt
   Please copy and paste the contents here on your next reply.


Edited by jhayz, 27 August 2013 - 11:17 PM.

Tekken
 


#11 kamibird

kamibird
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 21 August 2013 - 12:12 AM

thanks jhayz for the clear instructions. kb

 

an error came up before this was done running.

it said 'variable must be of type 'object'' . in case this means anything

 

Results of screen317's Security Check version 0.99.72  
 Windows XP Service Pack 3 x86   
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 7  
 Java version out of Date!
 Adobe Flash Player     11.8.800.94  
 Adobe Reader XI  
 Mozilla Firefox 15.0 Firefox out of Date!  
````````Process Check: objlist.exe by Laurent````````  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 3%
````````````````````End of Log``````````````````````



#12 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:20 PM

Posted 21 August 2013 - 12:32 AM

There is no antivirus installed and Java, Firefox are outdated.

Try downloading Speccy and then install the program.  To post and publish a snapshot of your PC.
. In the Menu bar, click File -> Publish Snapshot
. Click Yes > then Copy to Clipboard
. On your next reply, right-click on a empty space and click Paste on reply box then click Post.

 

Download MiniToolBox and open/run the program.
When open, checkmark or select all options then click Go.
A notepad will open then copy-paste the report on your next reply.


Tekken
 


#13 kamibird

kamibird
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 21 August 2013 - 12:53 AM

jhayz,

fyi, first time a ran security check it said firefox was outdated, i checked for updates and firefox said it was up to date. and comodo and microsoft virus are on, or say they are on.

 

http://speccy.piriform.com/results/mYGsvOh5m1EXFx8uiurPaFL



#14 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:20 PM

Posted 21 August 2013 - 01:57 AM

Is the computer still having some issues? I've only used the Windows Firewall along with a router's built-in feature to accomodate inbound and outbound traffic for internet related packet inspections. If ever you ran into slow connections, it could be a virus protection or firewall blocking access on certain connections.


Tekken
 


#15 kamibird

kamibird
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 27 August 2013 - 02:21 AM

it think the original problem is dealt w/ although i've been seeing some files that look to be related. now there's a worm. . microsoft security cleans it and removes it and has me restart and scan and finds it again and cleans it and on and on in a vicious circle. it is Morto.gen!B and Morto.D i will check around the site a bit. thank you for you care and help.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users