Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malwarebytes can't update and doesn't finish scan


  • Please log in to reply
24 replies to this topic

#1 algy40

algy40

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 01 September 2015 - 02:38 PM

Hi all,

a few days ago I did the usual and clicked update on malwarebytes ... it told me it couldn't connect to the server .... as I have an intermittent intenet connection I ignored that for a couple of days but recently scanned using malwarebytes and what normally takes 20 mins and scans 10s of 1000s of files took 30 secs and scanned just 4000 files ... It seems the not connecting to the server isn't to do with an internet connection as I can connect using firefox etc, it's just malwarebytes that can't.

 

I have various anti virus software on my computer which may be cuasing problems including AVG free and Sophos (possibly others), each of which occassionaly tells me its stopped me from being infected so I've been reluctant to remove any of them ...

 

?? what's up??

 

Please help ...



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,320 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:29 AM

Posted 01 September 2015 - 05:59 PM

Stop all security programs from running except MBAM and one antivirus. You should actually uninstall them....not just stop them from running in the background.

You don't mention but 3 programs so if you have Spybot installed definitely uninstall it as it can interfere with scans and removals.

 

MBAM may be corrupted, too. But before reinstalling run the programs below.

 

Use these programs to cleanup the computer.

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 

Download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 algy40

algy40
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 02 September 2015 - 04:14 AM

Hi ... not finished the above yet as I can't find out how to disable Sophos. (it's in red so I guess it's important!) 

The only other anti virus I had on was an old version of McCaffee which I uninstalled before starting the whole process.

Sophos was installed at my old workplace (where I got the computer from) ...

It has anti tamper protection (which is greyed out in the control section) .. I can see that "On-access scanning" is enabled but I can't see any way of disabling ?? are you familiar with this ??

 

Thanks

 

Alan



#4 algy40

algy40
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 02 September 2015 - 04:21 AM

FYI below are the 2x text files from adwcleaner I found in the c drive

 

1st is the text file adwCleaner

2nd is the content of the "Quarantine.log"

 

# AdwCleaner v5.005 - Logfile created 02/09/2015 at 09:48:55
# Updated 31/08/2015 by Xplode
# Database : 2015-08-31.2 [Server]
# Operating system : Windows Vista ™ Business Service Pack 2 (x86)
# Username : Gilly.Cohen - DESK-0807
# Running from : C:\Users\gilly.cohen\Downloads\AdwCleaner.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

Folder Found : C:\Program Files\GreenTree Applications
Folder Found : C:\ProgramData\ytd video downloader
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader

***** [ Files ] *****

File Found : C:\END
File Found : C:\Users\Gilly.Cohen\AppData\Roaming\Mozilla\Firefox\Profiles\jzquvo41.default\user.js

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A2970C7C-8392-4E6F-8B51-B763CF38E13C}
Key Found : HKCU\Software\Search Extensions
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}

***** [ Web browsers ] *****


########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1446 bytes] ##########

 

 

--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
THE BELOW IS THE CONTENT OF THE QUARANTINE LOG

 

C:\Program Files\GreenTree Applications\YTD Video Downloader\COPYING.Apachev2->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\COPYING.Apachev2.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\COPYING.LGPLv2->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\COPYING.LGPLv2.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\COPYING.LGPLv3->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\COPYING.LGPLv3.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\FFMPEG.EXE->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\FFMPEG.EXE.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\librtmp.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\librtmp.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\libvlc.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\libvlc.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\libvlccore.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\libvlccore.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\LICENSE->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\LICENSE.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\manual.bat->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\manual.bat.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\scripts.yds->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\scripts.yds.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Uninstall.exe->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Uninstall.exe.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\ytd.exe->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\ytd.exe.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\plugins.dat->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\plugins.dat.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\libdirect3d_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\libdirect3d_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\libdrawable_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\libdrawable_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\libvmem_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\libvmem_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\libwingdi_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\libwingdi_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\all-wcprops->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\all-wcprops.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\entries->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\entries.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\libdirect3d_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\libdirect3d_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\libdrawable_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\libdrawable_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\libvmem_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\libvmem_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\libwingdi_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\libwingdi_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\libdirect3d_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\libdirect3d_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\libdrawable_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\libdrawable_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\libvmem_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\libvmem_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\libwingdi_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\libwingdi_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\libswscale_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\libswscale_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\all-wcprops->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\all-wcprops.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\entries->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\entries.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\text-base\libswscale_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\text-base\libswscale_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\prop-base\libswscale_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\prop-base\libswscale_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\libavcodec_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\libavcodec_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\all-wcprops->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\all-wcprops.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\entries->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\entries.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\text-base\libavcodec_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\text-base\libavcodec_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\prop-base\libavcodec_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\prop-base\libavcodec_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\libdirectsound_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\libdirectsound_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\all-wcprops->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\all-wcprops.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\entries->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\entries.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\text-base\libdirectsound_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\text-base\libdirectsound_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\prop-base\libdirectsound_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\prop-base\libdirectsound_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\libfloat_mixer_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\libfloat_mixer_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\libinteger_mixer_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\libinteger_mixer_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\all-wcprops->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\all-wcprops.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\entries->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\entries.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\text-base\libfloat_mixer_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\text-base\libfloat_mixer_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\text-base\libinteger_mixer_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\text-base\libinteger_mixer_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\prop-base\libfloat_mixer_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\prop-base\libfloat_mixer_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\prop-base\libinteger_mixer_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\prop-base\libinteger_mixer_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\libaudio_format_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\libaudio_format_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\libugly_resampler_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\libugly_resampler_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\all-wcprops->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\all-wcprops.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\entries->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\entries.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\libaudio_format_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\libaudio_format_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\libtrivial_channel_mixer_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\libtrivial_channel_mixer_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\libugly_resampler_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\libugly_resampler_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\libaudio_format_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\libaudio_format_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\libtrivial_channel_mixer_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\libtrivial_channel_mixer_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\libugly_resampler_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\libugly_resampler_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\libfilesystem_plugin.dll->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\libfilesystem_plugin.dll.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\all-wcprops->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\all-wcprops.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\entries->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\entries.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\text-base\libfilesystem_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\text-base\libfilesystem_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\prop-base\libfilesystem_plugin.dll.svn-base->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\prop-base\libfilesystem_plugin.dll.svn-base.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1025.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1025.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1026.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1026.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1029.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1029.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1030.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1030.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1031.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1031.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1032.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1032.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1033.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1033.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1034.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1034.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1035.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1035.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1036.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1036.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1038.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1038.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1040.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1040.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1043.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1043.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1044.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1044.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1045.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1045.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1048.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1048.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1049.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1049.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1050.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1050.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1051.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1051.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1052.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1052.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1053.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1053.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1055.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1055.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1059.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1059.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1060.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1060.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1061.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res1061.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res2052.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res2052.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res2070.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res2070.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res2074.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res2074.ini.vir
C:\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res9999.ini->C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\Lang\res9999.ini.vir
C:\ProgramData\ytd video downloader\savedItems.ysi->C:\AdwCleaner\Quarantine\C\ProgramData\ytd video downloader\savedItems.ysi.vir
C:\ProgramData\ytd video downloader\scripts0.yds->C:\AdwCleaner\Quarantine\C\ProgramData\ytd video downloader\scripts0.yds.vir
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader\Uninstall.lnk->C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader\Uninstall.lnk.vir
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader\Web site.url->C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader\Web site.url.vir
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader\YTD Video Downloader.lnk->C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader\YTD Video Downloader.lnk.vir
C:\END->C:\AdwCleaner\Quarantine\C\END.vir
C:\Users\Gilly.Cohen\AppData\Roaming\Mozilla\Firefox\Profiles\jzquvo41.default\user.js->C:\AdwCleaner\Quarantine\C\Users\Gilly.Cohen\AppData\Roaming\Mozilla\Firefox\Profiles\jzquvo41.default\user.js.vir
 



#5 buddy215

buddy215

  • Moderator
  • 13,320 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:29 AM

Posted 02 September 2015 - 04:48 AM

Is Sophos updating daily? Does it ask for a password to access its settings? If it does, can you get the password or have the password?

Before disabling the software, you must first disable the tamper protection. See How to Turn off Sophos Anti-Virus | eHow

 

Uninstall AVG....that you should be able to do since you installed it.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#6 algy40

algy40
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 02 September 2015 - 05:10 AM

I've never seen it up date so no it doesn't ask for a password but looking at the update log it does it every day.....

 

I thought I had AVG but I don't ... just McAffee which I've uninstalled ...

 

tried the advice on the link you sent but tamper protection is greyed out ......



#7 buddy215

buddy215

  • Moderator
  • 13,320 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:29 AM

Posted 02 September 2015 - 05:48 AM

Can you ask for help from whoever installed Sophos? Actually, since so many employers these days install keyloggers and remote access to their

computers, you may want to do a clean reinstall of Windows. Does the computer have a recovery partition with the original software intact?


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#8 algy40

algy40
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 02 September 2015 - 05:58 AM

I very much doubt all of the above ..... I'll check and get back



#9 algy40

algy40
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 03 September 2015 - 09:46 AM

Hi ..

I managed to get Sophos turned off temporarily ...

 

Below are the 2 files

1st is contents of jrt.txt

2nd is adwCleaner (I reran it after getting Sophos sorted) 

 

Can I ask do I need to be able to understand the files in order for them to be useful, or do they actually do the cleaning? I ask because my 2 daughters computers are no doubt full of junk and I'd like to run these programmes on their laptops ...

 

Thanks again for this ..

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.0 (08.31.2015:1)
OS: Windows Vista ™ Business x86
Ran by Gilly.Cohen on 03/09/2015 at 15:41:29.29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] C:\ProgramData\instashare
Successfully deleted: [Folder] C:\Users\gilly.cohen\Appdata\Local\instashare



~~~ FireFox

Emptied folder: C:\Users\gilly.cohen\AppData\Roaming\mozilla\firefox\profiles\jzquvo41.default\minidumps [255 files]



~~~ Chrome


[C:\Users\gilly.cohen\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\gilly.cohen\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\gilly.cohen\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\gilly.cohen\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03/09/2015 at 15:48:29.25
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

ADW CLEANER LOG

 

# AdwCleaner v5.005 - Logfile created 03/09/2015 at 15:31:13
# Updated 31/08/2015 by Xplode
# Database : 2015-08-31.2 [Local]
# Operating system : Windows Vista ™ Business Service Pack 2 (x86)
# Username : Gilly.Cohen - DESK-0807
# Running from : c:\Users\gilly.cohen\Downloads\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[-] [C:\Users\gilly.cohen\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : uk.ask.com
[-] [C:\Users\gilly.cohen\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : uk.ask.com

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [884 bytes] ##########


 


Edited by algy40, 03 September 2015 - 09:49 AM.


#10 buddy215

buddy215

  • Moderator
  • 13,320 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:29 AM

Posted 03 September 2015 - 11:11 AM

I have no qualms with using MBAM, AdwCleaner, JRT, CCleaner and Eset Online scan and allowing them to remove whatever they find. False positives and the deletion of 

something useful is rare. They are a very good combo for dealing with adware and malware.

 

Post the three lists mentioned below using CCleaner:

 

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.

 

Now that you can disable Sophos, run an Eset online scan....

 

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

 

 


Edited by buddy215, 03 September 2015 - 11:14 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#11 algy40

algy40
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 03 September 2015 - 11:50 AM

Thanks ..

below are the txt files ....

 

The computer I've been trying to fix I've kept offline while I do all this ... Do I need to put it back online when I do the Eset scan? or should I download the programme from your link onto another computer, copy it across and run whilst offline?

 

Sorry for naivety !

 

Windows file from CCleaner

 

Yes    HKCU:Run    \\SIRIUS-HPD003\EPSON Stylus Photo R360 Series    SEIKO EPSON CORPORATION    C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBOE.EXE /FU "C:\Users\AMANDA~1.POR\AppData\Local\Temp\E_SD780.tmp" /EF "HKCU"
Yes    HKCU:Run    \\SIRIUS-RANA\EPSON Stylus Photo R360 Series    SEIKO EPSON CORPORATION    C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBOE.EXE /FU "C:\Users\AMANDA~1.POR\AppData\Local\Temp\E_S6173.tmp" /EF "HKCU"
Yes    HKCU:Run    AdobeBridge        
Yes    HKCU:Run    AmazonMP3DownloaderHelper    Amazon Services LLC    C:\Users\gilly.cohen\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
Yes    HKCU:Run    CCleaner Monitoring    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
Yes    HKCU:Run    Dropbox Update    Dropbox, Inc.    "C:\Users\gilly.cohen\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
Yes    HKCU:Run    Google Update    Google Inc.    "C:\Users\gilly.cohen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
Yes    HKCU:Run    instanteyedropper        "C:\Program Files\InstantEyedropper\InstantEyedropper.exe"
Yes    HKCU:Run    Sidebar    Microsoft Corporation    C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
Yes    HKCU:Run    Spotify    Spotify Ltd    "C:\Users\gilly.cohen\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
Yes    HKCU:Run    Spotify Web Helper    Spotify Ltd    "C:\Users\gilly.cohen\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
Yes    HKCU:Run    swg    Google Inc.    "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
Yes    HKCU:Run    YouSendIt.exe        C:\Program Files\YouSendIt\Express\YouSendIt.exe -ui none
Yes    HKLM:Run    AdobeCS4ServiceManager    Adobe Systems Incorporated    "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
Yes    HKLM:Run    APSDaemon    Apple Inc.    "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes    HKLM:Run    CanonMyPrinter    CANON INC.    C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
Yes    HKLM:Run    CanonSolutionMenuEx    CANON INC.    C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
Yes    HKLM:Run    Excel Reverse Order Of Rows & Columns Software.exe        
Yes    HKLM:Run    HOSTS Anti-Adware_PUPs        C:\Program Files\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe
Yes    HKLM:Run    HotKeysCmds    Intel Corporation    C:\Windows\system32\hkcmd.exe
Yes    HKLM:Run    IgfxTray    Intel Corporation    C:\Windows\system32\igfxtray.exe
Yes    HKLM:Run    iTunesHelper    Apple Inc.    "C:\Program Files\iTunes\iTunesHelper.exe"
Yes    HKLM:Run    LogMeIn GUI        "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
Yes    HKLM:Run    PAC7302_Monitor    PixArt Imaging Incorporation    C:\Windows\PixArt\PAC7302\Monitor.exe
Yes    HKLM:Run    PDF Complete    PDF Complete Inc    "C:\Program Files\PDF Complete\pdfsty.exe"
Yes    HKLM:Run    Persistence    Intel Corporation    C:\Windows\system32\igfxpers.exe
Yes    HKLM:Run    QuickTime Task    Apple Inc.    "C:\Program Files\QuickTime\QTTask.exe" -atboottime
Yes    HKLM:Run    RtHDVCpl    Realtek Semiconductor    RtHDVCpl.exe
Yes    HKLM:Run    SetRefresh    Hewlett-Packard Company    C:\Program Files\HP\SetRefresh\SetRefresh.exe
Yes    HKLM:Run    Sophos AutoUpdate Monitor    Sophos Limited    C:\Program Files\Sophos\AutoUpdate\almon.exe
Yes    HKLM:Run    SunJavaUpdateSched    Oracle Corporation    "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
Yes    HKLM:Run    Windows Defender    Microsoft Corporation    %ProgramFiles%\Windows Defender\MSASCui.exe -hide
Yes    HKLM:RunOnce    ST Recovery Launcher    soft thinks    %WINDIR%\SMINST\launcher.exe
Yes    Startup Common    NETGEAR WNDA3100v2 Smart Wizard.lnk    NETGEAR    C:\Program Files\NETGEAR\WNDA3100v2\WNDA3100v2.exe
Yes    Startup Common    SpyderUtility.lnk         C:\Program Files\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe
Yes    Startup User    Dropbox.lnk    Dropbox, Inc.    C:\Users\gilly.cohen\AppData\Roaming\Dropbox\bin\Dropbox.exe
Yes    Startup User    OpenOffice.org 3.1.lnk        C:\Program Files\OpenOffice.org 3\program\quickstart.exe

 

Scheduled Tasks from CCleaner

 

Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes    Task    CreateChoiceProcessTask    Microsoft Corporation    C:\windows\System32\browserchoice.exe /launch
Yes    Task    DropboxUpdateTaskUserS-1-5-21-1645522239-926492609-682003330-2153Core    Dropbox, Inc.    C:\Users\gilly.cohen\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
Yes    Task    DropboxUpdateTaskUserS-1-5-21-1645522239-926492609-682003330-2153UA    Dropbox, Inc.    C:\Users\gilly.cohen\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
Yes    Task    Google Software Updater    Google    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe scheduled_start
Yes    Task    GoogleUpdateTaskMachineCore    Google Inc.    C:\Program Files\Google\Update\GoogleUpdate.exe /c
Yes    Task    GoogleUpdateTaskMachineUA    Google Inc.    C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes    Task    GoogleUpdateTaskUserS-1-5-21-1645522239-926492609-682003330-2153Core    Google Inc.    C:\Users\gilly.cohen\AppData\Local\Google\Update\GoogleUpdate.exe /c
Yes    Task    GoogleUpdateTaskUserS-1-5-21-1645522239-926492609-682003330-2153UA    Google Inc.    C:\Users\gilly.cohen\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
 

Uninstall list

 

2007 Microsoft Office system    Microsoft Corporation    28/03/2012    524 MB    12.0.6612.1000
Activation Assistant for the 2007 Microsoft Office suites    Microsoft Corporation    22/07/2007    13.5 MB    
Adobe AIR    Adobe Systems Incorporated    26/06/2013    37.5 MB    3.7.0.2090
Adobe Color - Photoshop Specific CS4        21/07/2007        
Adobe Flash Player 18 ActiveX    Adobe Systems Incorporated    11/08/2015        18.0.0.232
Adobe Flash Player 18 NPAPI    Adobe Systems Incorporated    12/08/2015    2.94 MB    18.0.0.232
Adobe Media Player    Adobe Systems Incorporated    28/10/2012    2.94 MB    1.1
Adobe Photoshop CS4    Adobe Systems Incorporated    28/10/2012        11.0
Adobe Reader X (10.1.15)    Adobe Systems Incorporated    15/07/2015    115 MB    10.1.15
Amazon MP3 Downloader 1.0.18    Amazon Services LLC    16/06/2013    7.02 MB    1.0.18
Apple Application Support (32-bit)    Apple Inc.    01/05/2015    95.4 MB    3.1.3
Apple Mobile Device Support    Apple Inc.    15/03/2015    22.5 MB    8.1.1.3
Apple Software Update    Apple Inc.    15/01/2012    2.38 MB    2.1.3.127
Audacity 2.0    Audacity Team    17/06/2012    44.0 MB    
Aunsoft MTS Converter Ver 1.3.6.3571        31/07/2012    105 MB    
Avid Codecs LE    Avid Technology, Inc.    28/05/2012    11.2 MB    2.2.1
Bitnami WordPress Stack    Bitnami    07/02/2015    442 MB    4.1-0
Bonjour    Apple Inc.    15/01/2012    938 KB    3.0.0.10
Calibrated{Q} XD Decode    Calibrated Software, Inc.    14/08/2012    9.77 MB    1.9.4
Camtasia Studio 7    TechSmith Corporation    07/03/2012    225 MB    7.1.0
Canon Easy-PhotoPrint EX        21/07/2012    265 MB    
Canon Easy-WebPrint EX        21/07/2012    6.77 MB    
Canon iP4900 series On-screen Manual        21/07/2012    12.4 MB    
Canon iP4900 series Printer Driver        21/07/2012    312 MB    
Canon iP4900 series User Registration        21/07/2012    2.30 MB    
Canon My Printer        21/07/2012    5.59 MB    
Canon Solution Menu EX        21/07/2012    16.4 MB    
CCleaner    Piriform    02/09/2015    5.78 MB    5.09
CD-LabelPrint        12/06/2012    11.5 MB    
doPDF 7.3 printer    Softland    28/06/2012    5.00 MB    
Dropbox    Dropbox, Inc.    27/08/2015    28.2 MB    3.8.8
Duplicate Finder    Ashisoft    03/06/2013    1.84 MB    4.2.1.0
DVMP Pro 5.5 DEMO (remove only)    DVMP    10/01/2014    3.45 MB    5.5
Excel Reverse Order Of Rows & Columns Software    Sobolsoft    26/03/2015    17.3 MB    
Express Zip File Compression Software    NCH Software    18/06/2012    3.83 MB    
Free YouTube Download version 3.2.35.514    DVDVideoSoft Ltd.    22/05/2014    10.7 MB    3.2.35.514
Google Chrome    Google Inc.    25/09/2012    219 MB    45.0.2454.85
Google Drive    Google, Inc.    21/08/2015    31.1 MB    1.24.9931.5480
Google Gears    Google    05/03/2010    9.05 MB    0.5.3600
Google Toolbar for Internet Explorer    Google Inc.    17/07/2015    8.31 MB    7.5.6710.2136
Google Updater    Google Inc.    05/09/2011    3.59 MB    2.4.2432.1652
HFSExplorer 0.21    Catacombae Software    28/05/2012    2.83 MB    0.21
HP Backup & Recovery Manager    Hewlett-Packard Company    21/07/2007    14.9 GB    4.1.4 enhanced
Instant Eyedropper 1.75        15/09/2012    1.04 MB    
Intel® Graphics Media Accelerator Driver        22/07/2007        
InterVideo WinDVD    InterVideo Inc.    22/07/2007    46.0 MB    5.0-B11.1145
iTunes    Apple Inc.    01/05/2015    221 MB    12.1.2.27
Java 7 Update 51    Oracle    18/08/2013    129 MB    7.0.510
join.me    LogMeIn, Inc.    04/07/2012    9.90 MB    1.3.1.431
LAME v3.99.3 (for Windows)        17/06/2012    1.55 MB    
MainConcept ShowCase    MainConcept GmbH    10/01/2014    35.3 MB    2.8.0.0
Malwarebytes Anti-Malware version 2.1.8.1057    Malwarebytes Corporation    01/07/2015    53.5 MB    2.1.8.1057
Microsoft .NET Framework 3.5 SP1    Microsoft Corporation    11/08/2009    27.8 MB    
Microsoft .NET Framework 4.5.2    Microsoft Corporation    20/03/2015    255 MB    4.5.51209
Microsoft Office 2003 Web Components    Microsoft Corporation    13/12/2012    26.8 MB    11.0.8173.0
Microsoft Office 2007 Primary Interop Assemblies    Microsoft Corporation    15/12/2011    17.9 MB    12.0.4518.1014
Microsoft Office File Validation Add-In    Microsoft Corporation    15/05/2014    11.2 MB    14.0.5130.5003
Microsoft Office Professional Edition 2003    Microsoft Corporation    13/04/2014    756 MB    11.0.8173.0
Microsoft Office Small Business Connectivity Components    Microsoft Corporation    21/07/2007    158 KB    2.0.7024.0
Microsoft Silverlight    Microsoft Corporation    13/08/2015    22.5 MB    5.1.40728.0
Microsoft Visual C++ 2005 Redistributable    Microsoft Corporation    08/05/2012    293 KB    8.0.61001
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022    Microsoft Corporation    24/05/2012    2.36 MB    9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17    Microsoft Corporation    29/10/2012    230 KB    9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161    Microsoft Corporation    26/05/2012    594 KB    9.0.30729.6161
Mozilla Firefox 39.0 (x86 en-GB)    Mozilla    03/08/2015    93.6 MB    39.0
Mozilla Maintenance Service    Mozilla    11/06/2015    216 KB    38.0.5
MSXML 4.0 SP2 (KB954430)    Microsoft Corporation    11/02/2009    1.27 MB    4.20.9870.0
MSXML 4.0 SP2 (KB973688)    Microsoft Corporation    25/11/2009    1.33 MB    4.20.9876.0
NETGEAR WNDA3100v2 wireless USB 2.0 adapter    NETGEAR    07/05/2012    32.3 MB    1.03.000
OpenOffice.org 3.1    OpenOffice.org    20/10/2014    355 MB    3.1.9399
PC VGA Camer@ Plus    Aecotech    04/07/2012    160 KB    1.0.0.19
PDF Complete        22/07/2007    24.7 MB    
Power Packet Utility     Atheros    30/04/2012    1.48 MB    6.0.0
QuickTime 7    Apple Inc.    15/03/2015    70.3 MB    7.76.80.95
QuickTime MPEG2    Apple Inc.    26/05/2012    428 KB    7.60.92.0
Realtek High Definition Audio Driver    Realtek Semiconductor Corp.    21/07/2007    9.62 MB    6.0.1.5322
SketchUp 2013    Trimble Navigation Limited    03/06/2013    174 MB    13.0.3689
Skype Click to Call    Skype Technologies S.A.    09/01/2014    18.8 MB    6.13.13771
Skype™ 7.0    Skype Technologies S.A.    15/04/2015    47.7 MB    7.0.102
SmartSound Common Data    SmartSound Software Inc.    14/03/2012    4.37 MB    1.0.5
SmartSound Sonicfire Pro 5    SmartSound Software Inc.    21/03/2012    29.8 MB    5.7.3
Sophos Anti-Virus    Sophos Limited    21/08/2015    30.0 MB    10.3.15
Sophos AutoUpdate    Sophos Limited    27/07/2015    20.4 MB    4.3.10.27
Spotify    Spotify AB    27/08/2015    141 MB    1.0.12.161.g64b0797c
Spyder4Elite        27/11/2014    226 MB    
TreeSize Free V3.3.2    JAM Software    04/04/2015    3.66 MB    3.3.2
Trusteer Endpoint Protection    Trusteer    27/08/2015    325 MB    3.5.1507.63
Vimeo Uploader    UNKNOWN    13/03/2011    1.16 MB    0.9.5.4
VLC media player    VideoLAN    01/02/2015    93.1 MB    2.1.5
Wacom    Wacom Technology Corp.    31/07/2013    29.7 MB    5.3.2-1
WebTablet FB Plugin 32 bit    Wacom Technology Corp.    31/07/2013        2.1.0.2
WebTablet IE Plugin    Wacom Technology Corp.    18/11/2012        1.1.0.7
WebTablet Netscape Plugin    Wacom Technology Corp.    18/11/2012    836 KB    1.1.0.5
WinPcap 4.1.1    CACE Technologies    30/04/2012    240 KB    4.1.0.1753
XDCAMBrowser    Sony Corporation    07/08/2012    183 MB    2.1.0.303
ZillaTube 3.1    ZillaTube, Inc.    17/02/2009    22.6 MB    3.1
 

 

 

 



#12 buddy215

buddy215

  • Moderator
  • 13,320 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:29 AM

Posted 03 September 2015 - 12:21 PM

I think it is best to go online and download the Eset Scanner and its signature base. Once that is done and you have started scanning you can disconnect from net while scanning.

 

If you wait a few minutes before doing that, I am going to suggest many programs to be disabled from startup and other suggestions based on the lists you just posted that

should allow a much faster startup and scanning.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#13 buddy215

buddy215

  • Moderator
  • 13,320 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:29 AM

Posted 03 September 2015 - 12:59 PM

Disable these Startups: Use CCleaner by clicking on each item and then choosing Disable, Remove or Uninstall on the right.

Yes    HKCU:Run    \\SIRIUS-HPD003\EPSON Stylus Photo R360 Series    SEIKO EPSON CORPORATION    C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBOE.EXE /FU "C:\Users\AMANDA~1.POR\AppData\Local\Temp\E_SD780.tmp" /EF "HKCU"
Yes    HKCU:Run    \\SIRIUS-RANA\EPSON Stylus Photo R360 Series    SEIKO EPSON CORPORATION    C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBOE.EXE /FU "C:\Users\AMANDA~1.POR\AppData\Local\Temp\E_S6173.tmp" /EF "HKCU"
Yes    HKCU:Run    AdobeBridge        
Yes    HKCU:Run    AmazonMP3DownloaderHelper    Amazon Services LLC    C:\Users\gilly.cohen\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
Yes    HKCU:Run    CCleaner Monitoring    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
Yes    HKCU:Run    Dropbox Update    Dropbox, Inc.    "C:\Users\gilly.cohen\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
Yes    HKCU:Run    Google Update    Google Inc.    "C:\Users\gilly.cohen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
Yes    HKCU:Run    instanteyedropper        "C:\Program Files\InstantEyedropper\InstantEyedropper.exe"
Yes    HKCU:Run    Sidebar    Microsoft Corporation    C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
Yes    HKCU:Run    Spotify    Spotify Ltd    "C:\Users\gilly.cohen\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
Yes    HKCU:Run    Spotify Web Helper    Spotify Ltd    "C:\Users\gilly.cohen\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
Yes    HKCU:Run    swg    Google Inc.    "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
Yes    HKCU:Run    YouSendIt.exe        C:\Program Files\YouSendIt\Express\YouSendIt.exe -ui none
Yes    HKLM:Run    AdobeCS4ServiceManager    Adobe Systems Incorporated    "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
Yes    HKLM:Run    APSDaemon    Apple Inc.    "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes    HKLM:Run    CanonMyPrinter    CANON INC.    C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
Yes    HKLM:Run    CanonSolutionMenuEx    CANON INC.    C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
Yes    HKLM:Run    Excel Reverse Order Of Rows & Columns Software.exe        
Yes    HKLM:Run    HOSTS Anti-Adware_PUPs        C:\Program Files\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe

Yes    HKLM:Run    IgfxTray    Intel Corporation    C:\Windows\system32\igfxtray.exe
Yes    HKLM:Run    iTunesHelper    Apple Inc.    "C:\Program Files\iTunes\iTunesHelper.exe"

Yes    HKLM:Run    PDF Complete    PDF Complete Inc    "C:\Program Files\PDF Complete\pdfsty.exe"

Yes    HKLM:Run    QuickTime Task    Apple Inc.    "C:\Program Files\QuickTime\QTTask.exe" -atboottime

Yes    HKLM:Run    SunJavaUpdateSched    Oracle Corporation    "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

Yes    Startup Common    SpyderUtility.lnk         C:\Program Files\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe
Yes    Startup User    Dropbox.lnk    Dropbox, Inc.    C:\Users\gilly.cohen\AppData\Roaming\Dropbox\bin\Dropbox.exe
Yes    Startup User    OpenOffice.org 3.1.lnk        C:\Program Files\OpenOffice.org 3\program\quickstart.exe

 

Disable all scheduled Tasks listed below:

Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes    Task    CreateChoiceProcessTask    Microsoft Corporation    C:\windows\System32\browserchoice.exe /launch
Yes    Task    DropboxUpdateTaskUserS-1-5-21-1645522239-926492609-682003330-2153Core    Dropbox, Inc.    C:\Users\gilly.cohen\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
Yes    Task    DropboxUpdateTaskUserS-1-5-21-1645522239-926492609-682003330-2153UA    Dropbox, Inc.    C:\Users\gilly.cohen\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
Yes    Task    Google Software Updater    Google    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe scheduled_start
Yes    Task    GoogleUpdateTaskMachineCore    Google Inc.    C:\Program Files\Google\Update\GoogleUpdate.exe /c
Yes    Task    GoogleUpdateTaskMachineUA    Google Inc.    C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes    Task    GoogleUpdateTaskUserS-1-5-21-1645522239-926492609-682003330-2153Core    Google Inc.    C:\Users\gilly.cohen\AppData\Local\Google\Update\GoogleUpdate.exe /c
Yes    Task    GoogleUpdateTaskUserS-1-5-21-1645522239-926492609-682003330-2153UA    Google Inc.    C:\Users\gilly.cohen\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

 

Uninstall These programs:

Adobe AIR    Adobe Systems Incorporated    26/06/2013    37.5 MB    3.7.0.2090

Adobe Media Player    Adobe Systems Incorporated    28/10/2012    2.94 MB    1.1

Google Gears    Google    05/03/2010    9.05 MB    0.5.3600
Google Toolbar for Internet Explorer    Google Inc.    17/07/2015    8.31 MB    7.5.6710.2136
Google Updater    Google Inc.    05/09/2011    3.59 MB    2.4.2432.1652

Java 7 Update 51    Oracle    18/08/2013    129 MB    7.0.510

Mozilla Firefox 39.0 (x86 en-GB)    Mozilla    03/08/2015    93.6 MB    39.0  OR UPDATE

Skype Click to Call    Skype Technologies S.A.    09/01/2014    18.8 MB    6.13.13771 Unless you actually click on phone #s in ads

Vimeo Uploader    UNKNOWN    13/03/2011    1.16 MB    0.9.5.4

WinPcap 4.1.1    CACE Technologies    30/04/2012    240 KB    4.1.0.1753

ZillaTube 3.1    ZillaTube, Inc.    17/02/2009    22.6 MB    3.1
 

 

According to the lists of installed programs, Sophos was installed last month... 21/08/2015....so....did you install it??


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#14 algy40

algy40
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 16 September 2015 - 04:38 PM

Hi BC Advisor,
Been away for a while so back and picking this up again... Have done all of the above but malwarebytes is still not able to reach the server to up date .... Also scanned with malwarebytes again, and once again only 4900 files scanned before it said finished ...
I ran Eset scanner and it said it found 8 files, which it removed and appeared to not leave a log ....

#15 buddy215

buddy215

  • Moderator
  • 13,320 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:29 AM

Posted 17 September 2015 - 09:28 AM

Uninstall MBAM and then reinstall it. Follow the instructions in link below for uninstalling MBAM.

Malwarebytes | How do I uninstall Malwarebytes Anti-Mal...

 

It is important that I see what Eset found and removed. Please post the log.

 

How can I view the ESET Online Scanner log file?
The ESET Online Scanner saves a log file after running, which can be examined or sent in to ESET for further analysis. The path to the log file is "C:\Program Files\EsetOnlineScanner\log.txt". You can view this file by navigating to the directory and double-clicking it in Windows Explorer, or by copying and pasting the path specification above (including the quotation marks) into the Start → Run dialog box from the Start Menu on the desktop.

 

Download Malwarebytes' Anti-Malware from Here 
Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).

  • Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • The scan may take some time to finish,so please be patient.
  • If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.

Edited by buddy215, 17 September 2015 - 09:38 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users