Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Don't know if I'm infected, would like to kill this early if so.


  • Please log in to reply
22 replies to this topic

#1 themike1

themike1

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 02:39 PM

Alright so I don't know if I'm infected, I log on and power on my PC, as I usually, do, And A hitman scan starts, as it always does, I don't have a paiud subscri[ption so It can't delete anything, Most of it is racking cookies, No big deal, Then, I see some stuff from Linkey, and one suspicious thing, What can I use, to find if I am infected, and if so, Kill, it, I already have malware bytes, and have used it, I'm not paying for it, And have Avast, as my AV software.



BC AdBot (Login to Remove)

 


#2 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 02:47 PM

I'm doing a malwarebytes scan now, It already found one thing, and I'll post the logs, here when they finish.



#3 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 03:37 PM

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 5/18/2014
Scan Time: 1:34:58 PM
Logfile: newlog.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.05.18.07
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: rikki

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 265781
Time Elapsed: 21 min, 26 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 3
PUP.Optional.Linkey.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}, Quarantined, [dd024a08c8b3d85eae1c6eba7a88dd23],
PUP.Optional.SettingsManager.A, HKLM\SOFTWARE\WOW6432NODE\SYSTEMK\General, Quarantined, [ce1192c0a4d71d19679b791706fc32ce],
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, Quarantined, [eaf54e0495e6cb6b68364f6b9f648a76],

Registry Values: 1
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, Quarantined, [eaf54e0495e6cb6b68364f6b9f648a76],

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
PUP.Optional.DefaultSearch.A, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\default-search.xml, Quarantined, [31ae331f69121323f109b1de679b50b0],
PUP.Optional.DefaultSearch.A, C:\Users\rikki\AppData\Roaming\Mozilla\Firefox\Profiles\1qvk77l0.default-1375766792890\prefs.js, Good: (), Bad: (user_pref("keyword.URL", "http://www.default-search.net/search?sid=476&aid=100&itype=n&ver=11111&tm=248&src=ds&p=");), Replaced,[a43b6fe3afcc7db92267b1c816ee3dc3]

Physical Sectors: 0
(No malicious items detected)


(end)

 

 

That's the log, Any full mass huge scans I can do, I've done eset before, But I can't seem to find it, On my PC now.



#4 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 03:41 PM

And I found ESET, should I scan the archives as well, and do I need to diable avast?



#5 Starbuck

Starbuck

    'r Brudiwr


  • Malware Response Team
  • 4,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midlands, UK
  • Local time:03:24 AM

Posted 18 May 2014 - 04:29 PM

Hi themike 1

Those PUP's are basically Adware. (normally installed as third party programs when you install a free program.)

Best thing to run is:

Step 1
Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer.
  • After the scan has finished...
  • Click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
Run both programs and then post the reports from them.

Thanks

BBPP6nz.png


#6 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 04:40 PM

Ok now I'm having some trouble opening my browser it took a little while first due to the update but a waited a minute and when I clicked the browser again it's not coming on and the icon is staying as if I pushed it as in its looking pushed down and my screen just went to black though I do have task manager open

#7 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 04:43 PM

And it's saying the login process was unable to display options when Corel+alt+del was pressed
And that last one was fixed but the browser still won't come up

#8 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 04:44 PM

It gives be a not responding cursor when I try to click on it

#9 Starbuck

Starbuck

    'r Brudiwr


  • Malware Response Team
  • 4,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midlands, UK
  • Local time:03:24 AM

Posted 18 May 2014 - 04:45 PM

Ok now I'm having some trouble opening my browser it took a little while first due to the update

What browser are you using?
Do you have another browser installed?

BBPP6nz.png


#10 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 04:50 PM

I'm using Firefox and the bottom toolbar is frozen so I can't get into chrome since the desktop icon won't respond

#11 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 04:53 PM

It's saying windows is not responding the program may respond again if you wait and asks if I want to end the process or wait
And that just went away but it's still not responding

#12 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 04:55 PM

And the window asking me toned the process or wait is back

#13 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 05:02 PM

Should I put windows in a safe mode if so which one

#14 Starbuck

Starbuck

    'r Brudiwr


  • Malware Response Team
  • 4,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midlands, UK
  • Local time:03:24 AM

Posted 18 May 2014 - 05:12 PM

Was the update you mentioned... for the latest version of Firefox?
If so.... i stopped using it after the update because of problems.

Have you tried rebooting the system?
If it's still frozen you may have to perform a hard shut down.

BBPP6nz.png


#15 themike1

themike1
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:07:24 PM

Posted 18 May 2014 - 05:20 PM

The update just happened today a and I've been doing hard shut down as I can't get it through the start button should I go to safe mode would that help it




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users