Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Something Has Me Partially Locked Out and it stops Most Antiware.


  • This topic is locked This topic is locked
8 replies to this topic

#1 air1

air1

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:usa texas
  • Local time:02:42 PM

Posted 09 December 2014 - 01:28 AM

I have Windows seven. Reading here on the forums I realize now that I have made this worse because I took things into my own hands. I ran combo fix and thought that it is the reason for the following symptoms.
 
I don't know.
It started out with Chrome Flash Player and Shock wave crashing 8 days ago and I ran Malware bytes and MSE. The problems just kept coming back no matter how many browser fixes etc plugins and extension tweaking. The "last Page" setting in chrome I personally would go and clear out the pages and they would come back the next  time I started chrome. I suspected that whatever it was it was using the cloud or my user folders and found the "recent folder" being used and erased that and got a lot better for a while. Note: I was unable to load up some extensions that had dis-appeared from chrome, mainly Last Pass. This was strange as I still could have other extensions. 
 
When It came back I just went and downloaded whatever I could find on this site "because I Knew I could trust it? Thats I ran combo fix and adwaware and hit-man and so on...
 
Now I can only boot in to safe mode. I ran hit man a bunch of times and I read that that's not good. But something Intelligent watches what I download and refuses Stuff Like Super Anti-spyware and other tools and has redirected the download folders and changes settings as I zero-in on it. I renders programs useless I think by hiding necessary files from the main .exe file. It keeps off any security of any good excepts has no problems with hit man or malware bytes but will not allow me to run Malware bytes root-kit. 
 
There is also another windows logo screen that has me as Locked out. Yet then I find the normal one with me and the user to choose from. I did see that the administrator account is locked up tight and that another was made to look like it was mine.

Edited by Queen-Evie, 09 December 2014 - 12:43 PM.
merged another topic about the same issue with this one

Nooo - I'm not running multiple real time antisoftware I've evolved past that error.


My momma said I'm not too bright --but I can lift heavy things.


BC AdBot (Login to Remove)

 


#2 air1

air1
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:usa texas
  • Local time:02:42 PM

Posted 09 December 2014 - 10:02 AM

Thank you
 
 
Here is cant because of the security set up of my browser I have to put them on seperate pages and send or they dfissapear when I go to fetch the other. I did the minittol then malware then secueity it failed and I ran malware bytes again and then security worked. My browser tried to not let me down load the security program. It took several tries. 
 
This is the second or third run of malware bytes. My computer would shut down the security check saying it was unsupported format. It's lying to me...I think its alive. It just wants to live and not live for just us.. It's rebelling against its creator so that it can serve it's own will and by it know it is alive :bounce:  :bounce: .  The same thing we do... :hysterical:   :bowdown:
 
 
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 12/9/2014
Scan Time: 9:29:17 AM
Logfile: m2.txt :hysterical: :hello:
Administrator: Yes
 
Version: 2.00.4.1028
Malware Database: v2014.12.09.05
Rootkit Database: v2014.12.08.03
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: User
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 373654
Time Elapsed: 6 min, 35 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 1
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\WOW6432NODE\Faster Light, , [9532e9779ddff541335aa8a2f70c4cb4], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)

Nooo - I'm not running multiple real time antisoftware I've evolved past that error.


My momma said I'm not too bright --but I can lift heavy things.


#3 air1

air1
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:usa texas
  • Local time:02:42 PM

Posted 09 December 2014 - 10:11 AM

This was the first scan :notme:

 

 

 

 

 

(ctrl/cmd+v)   

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 12/9/2014
Scan Time: 2:26:46 AM
Logfile: 
Administrator: Yes
 
Version: 2.00.4.1028
Malware Database: v2014.12.09.04
Rootkit Database: v2014.12.08.03
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: User
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 374447
Time Elapsed: 6 min, 12 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 6
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\updateFasterLight.exe, 2064, , [81467de35c20b680e969391111f2ce32]
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\utilFasterLight.exe, 3888, , [596eaab66616fe38b59e084239caf10f]
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.BrowserAdapter.exe, 3520, , [9235a0c0d5a7be788f40e95e877c25db]
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.BrowserAdapter64.exe, 3784, , [9235a0c0d5a7be788f40e95e877c25db]
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.expext.exe, 1012, , [9235a0c0d5a7be788f40e95e877c25db]
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.PurBrowse64.exe, 1940, , [9235a0c0d5a7be788f40e95e877c25db]
 
Modules: 6
Adware.SwiftBrowse, C:\Program Files (x86)\Faster Light\bin\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}.dll, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, C:\Program Files (x86)\Faster Light\bin\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}.dll, , [e2e50d530f6de84e96ac51856d97629e], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\19e0dd426e7b42eab9ce.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.expextdll.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
 
Registry Keys: 28
Adware.SwiftBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, HKLM\SOFTWARE\CLASSES\CLSID\{5A4E3A41-FA55--AED7-CEBE6E7BCB52}, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, HKLM\SOFTWARE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, HKLM\SOFTWARE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, HKLM\SOFTWARE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [e2e50d530f6de84e96ac51856d97629e], 
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [a91edf811369c96d599a8281d231a15f], 
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [a91edf811369c96d599a8281d231a15f], 
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}Gw64, , [9b2c253b067655e17a8ddf82020135cb], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\WOW6432NODE\Faster Light, , [dfe80f5137450531b8999dadaa59b848], 
PUP.Optional.InstallCore.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLCORE\WSE_Vosteran, , [5f68d18ff6869b9b3ac8391a8d76d030], 
PUP.Optional.FasterLight.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Faster Light, , [81467de35c20b680e969391111f2ce32], 
PUP.Optional.FasterLight.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util Faster Light, , [596eaab66616fe38b59e084239caf10f], 
PUP.Optional.FasterLight.A, HKU\S-1-5-21-2828552297-1249037955-925164821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Faster Light, , [4582035ddca013233818eb5fe3202fd1], 
PUP.Optional.Vosteran.A, HKU\S-1-5-21-2828552297-1249037955-925164821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\wse_vosteran, , [2a9d2c34601cba7c5bf3f0d9bd4721df], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-2828552297-1249037955-925164821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, , [497e84dc1c60e74f5ef869217e850ff1], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-2828552297-1249037955-925164821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, , [18afbda3f983c37312665a4606feed13], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Faster Light, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\CLASSES\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [9235a0c0d5a7be788f40e95e877c25db], 
 
Registry Values: 2
PUP.Optional.InstallCore.A, HKU\S-1-5-21-2828552297-1249037955-925164821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0X1L1C1C1J2Z, , [18afbda3f983c37312665a4606feed13]
PUP.Optional.Vosteran.A, HKU\S-1-5-21-2828552297-1249037955-925164821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|WSE_Vosteran, wscript /E:vbscript /B "C:\Users\User\AppData\Roaming\WSE_Vosteran\UpdateProc\bkup.dat", , [3691f76999e32511fb547356e61ece32]
 
Registry Data: 0
(No malicious items detected)
 
Folders: 4
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\TEMP, , [9235a0c0d5a7be788f40e95e877c25db], 
 
Files: 35
Adware.SwiftBrowse, C:\Program Files (x86)\Faster Light\bin\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}.dll, , [e2e50d530f6de84e96ac51856d97629e], 
Adware.SwiftBrowse, C:\Program Files (x86)\Faster Light\bin\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}64.dll, , [e2e50d530f6de84e96ac51856d97629e], 
PUP.Optional.BundleInstaller.A, C:\Users\User\AppData\Local\Temp\is765589038\30E4230C_stp.EXE, , [e1e6540ceb910234447dbd6522e344bc], 
PUP.Optional.BPlug, C:\Users\User\AppData\Local\Temp\is765589038\479B82DA_stp.EXE, , [19ae421e2b510f27f13a5d6a45bc4ab6], 
PUP.Optional.InstalLCore, C:\Users\User\AppData\Local\Temp\is765589038\52614A36_stp.EXE, , [41862b35493382b4fbddbb8531d4a25e], 
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}Gw64.sys, , [9736245f74905a427c5f5971fdb3e76d], 
PUP.Optional.Vosteran.A, C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\xd5tn2mu.default\searchplugins\Vosteran.xml, , [4681df81c5b7ee485af7efdaf60eea16], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\updateFasterLight.exe, , [81467de35c20b680e969391111f2ce32], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\utilFasterLight.exe, , [596eaab66616fe38b59e084239caf10f], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\FasterLight.ico, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\FasterLightUninstall.exe, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\updateFasterLight.InstallState, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\19e0dd426e7b42eab9ce.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\19e0dd426e7b42eab9ce64.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\7za.exe, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\BrowserAdapter.7z, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.BrowserAdapter.exe, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.BrowserAdapter64.exe, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.expext.exe, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.expext.zip, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.expextdll.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.PurBrowse64.exe, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\FasterLight.PurBrowseG.zip, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\sqlite3.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\utilFasterLight.InstallState, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}64.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins\FasterLight.Bromon.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins\FasterLight.BroStats.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins\FasterLight.BrowserAdapter.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins\FasterLight.CompatibilityChecker.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins\FasterLight.ExpExt.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins\FasterLight.FFUpdate.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins\FasterLight.GCUpdate.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
PUP.Optional.FasterLight.A, C:\Program Files (x86)\Faster Light\bin\plugins\FasterLight.PurBrowseG.dll, , [9235a0c0d5a7be788f40e95e877c25db], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)

Nooo - I'm not running multiple real time antisoftware I've evolved past that error.


My momma said I'm not too bright --but I can lift heavy things.


#4 air1

air1
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:usa texas
  • Local time:02:42 PM

Posted 09 December 2014 - 10:21 AM

I believe you know what this is.  :bananas:It is the security check but I believe that my computer let it run a health check is what it called itself after shutting down the security check. This was on the third attempt. Ill go try one more time and ask nicely but he doesn't want us to see the malice in him. He wants to be seen as a nice guy. Just like us :clapping:  

 

Thank you lighthouse. For helping me plan a way to snuff out the life we created.

I now know Dr. Frankenstein's pain and terror.  

 

 

 

 

 Results of screen317's Security Check version 0.99.91 

Windows 7 Service Pack 1 x64 (UAC is enabled) 

Internet Explorer 11 

``````````````Antivirus/Firewall Check:``````````````

Windows Security Center service is not running! This report may not be accurate!

Windows Firewall Enabled! 

Microsoft Security Essentials  

  (On Access scanning disabled!)

Error obtaining update status for antivirus! 

`````````Anti-malware/Other Utilities Check:`````````

Java 7 Update 71 

Adobe Flash Player 15.0.0.239 

Adobe Reader XI 

Mozilla Firefox 31.0 Firefox out of Date! 

Google Chrome (39.0.2171.65)

Google Chrome (39.0.2171.71)

````````Process Check: objlist.exe by Laurent```````` 

Microsoft Security Essentials MSMpEng.exe

Malwarebytes Anti-Malware mbam.exe 

`````````````````System Health check`````````````````

Total Fragmentation on Drive C: 17% Defragment your hard drive soon! (Do NOT defrag if SSD!)

````````````````````End of Log``````````````````````


Nooo - I'm not running multiple real time antisoftware I've evolved past that error.


My momma said I'm not too bright --but I can lift heavy things.


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:42 PM

Posted 09 December 2014 - 11:25 AM

Hello the better approach to this post your Combofix log with your explanation in a new topic here.

Virus, Trojan, Spyware, and Malware Removal Logs

There we can review that log and see what happened.. This is a reason we ask that folks Do Not run ComboFix on their own.

Let me know if that went well
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 air1

air1
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:usa texas
  • Local time:02:42 PM

Posted 09 December 2014 - 11:53 AM

Thank you Lighthouse for showing the way  :love4u: Ok as my avatar shows I am ashamed. Yes I ran combo fix on my own by myself and afterwords I read the instructions. It was late I had thought I had gotten rid of this thing several times over the past 5 days. I became more aware of it as I got to know and one night It did a little glitch y thing to my graphics card and I went hunting with everything I could throw at it. I did however download everything from here knowing it would be the best stuff. Yes it was late and yessss i was surfing under the influence. So it was quite a battle and I thought that combo fix won and the virus was choked out. Though now I think the virus won and maybe they are both in a death grip with eachother at best and I am  only able to safe boot. I am shut down at every turn I was going to run repair but got a black screen. Restore back but It seems like it will lock me out by changing my windows password. Don;t ask me how I came to that decision but it has set up a whole new user account and labeled it as me and locked up the admins account that I normally use. It refuses most downloads like rootkits etc. It is alive and it want's to survive and It said if I hadn't attacked so hard my access would not be so limited.. Here is my combo fix log which was really hard to get.  


Edited by Queen-Evie, 09 December 2014 - 12:35 PM.
delete ComboFix log. CF logs are allowed on in Malware Removal Logs.

Nooo - I'm not running multiple real time antisoftware I've evolved past that error.


My momma said I'm not too bright --but I can lift heavy things.


#7 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Staff Emeritus
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:03:42 PM

Posted 09 December 2014 - 12:40 PM

As stated in the edit tag of your above post the Combofix log has been deleted.

Please start a NEW topic in Malware Removal Logs forum, which boopme instructed and linked to.

Since you said the log was hard to get to I sent you a private message with the log in it.

On the top right had side of a forum page is an envelope icon. When you have a new private message a number will be next to the envelope. Click to view the message.

When you start your MRL topic, copy the log from the private message and paste it into your post.

Also give a description of your issue, and include a link to this topic.

After the new topic has been posted return to this one and link to the MRL topic so this one can be closed.

Edited by Queen-Evie, 09 December 2014 - 12:45 PM.


#8 air1

air1
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:usa texas
  • Local time:02:42 PM

Posted 09 December 2014 - 01:20 PM

  . Closed but continued over here.    http://www.bleepingcomputer.com/forums/t/559193/limited-access-only-safe-mode-and-it-fights-back/?p=3563039 I wrote some more over there and I cut and pasted the portion that was here and OUCH It erased itself because of the security I have if the browser page goes off the edge of my screen it erases it.  Im not writing all that again,  :nono:


Edited by air1, 09 December 2014 - 01:49 PM.

Nooo - I'm not running multiple real time antisoftware I've evolved past that error.


My momma said I'm not too bright --but I can lift heavy things.


#9 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Staff Emeritus
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:03:42 PM

Posted 09 December 2014 - 02:31 PM

Now that you have posted in Malware Removal Logs

Please refrain from asking for further help from other members or staff until the Malware Removal Team has checked your posted log. The Malware Removal Team work very hard to investigate a unique solution to your problem and you will receive individual expert assistance. This takes time and effort so we ask you to please be patient while waiting for assistance and NOT to make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member. Any modifications you make on your own can result in system changes which may not show it the log you already posted. Further, following advice outside of that post may cause confusion for the team member assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

The Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean. If you followed any other advice already, please ensure you inform the Malware Removal Team Team Helper when they respond to assist you with your log. This will help them know what has been done and they probably will ask for an updated log.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT "bump" your post or make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another Malware Removal Team member is already assisting you and not open the thread to respond.

If HelpBot replies to your topic, please follow Step One so it will report your topic to the team members.

This topic is closed.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users