Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infection shown with Unhackme. Nothing else, Trial expired.. Help?


  • Please log in to reply
13 replies to this topic

#1 MorDi33

MorDi33

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:28 PM

Posted 02 July 2017 - 08:23 PM

Hi.

 

I have been getting a slower and slower computer and the other day I accidentally clicked an ad and got infected with a browser ad malware. I got ir removed. But now, the machine is acting weird and I have used: Malwarebytes. Superantispyware.AVG.Avast. Hitman Pro. And tried to remove the "weirdness". 

 

It still seems a bit off and Unhack me reports of 13 infected files. Hitman Pro reported 12 , and I got full access to it after that happened. What was strange was that when I did. The infected files won't show there anymore.

 

I am running a win 7 64 bit (ultimate?) edition I believe.

 

AVG and AVAST will not work in safe mode. They go blank.

 

If anyone can assist with some guidelines as to how to do a more thorough check I would be very happy :)

 

ALL (!) help is greatly appreciated!

 

 

Thanks a lot.



BC AdBot (Login to Remove)

 


#2 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:28 AM

Posted 02 July 2017 - 11:09 PM

Download and run AdwCleaner -

https://www.bleepingcomputer.com/download/adwcleaner/

Download and run the portable version of Zemana Anti-Malware

https://www.zemana.com/en-US/Download

Download and run Junkware Removal Tool -

https://www.bleepingcomputer.com/download/junkware-removal-tool/

Create a System Restore point first.


Edited by jwoods301, 02 July 2017 - 11:17 PM.


#3 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:28 PM

Posted 05 July 2017 - 03:45 PM

Thanks. I have found some issues and cleared them. Are there anymore steps I could take to double check that all is taken care of?

 

Thanks a lot!)



#4 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:28 AM

Posted 05 July 2017 - 04:03 PM

What are the remaining issues?



#5 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:28 PM

Posted 05 July 2017 - 06:14 PM

Hi, just posted but it vanished.

 

 I am left with three files from Avast and AVG 2+1. Cannot see them with windows explorer.

Also I have several Mozilla Firefox & profiles& extensions with long strings of numbers and letters.

And I have 1 notification for client 2 google malware , I assume. clients2.google.com/service/update2/crx  - with a name for extension with a long string of letters.

 

Thanks


I have deleted AVG and Avast for the record. Thanks



#6 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:28 AM

Posted 05 July 2017 - 06:20 PM

The Mozilla stuff is normal.

 

So what are you using for antivirus now?

 

What notified you about "google malware"?



#7 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:28 PM

Posted 05 July 2017 - 06:24 PM

UnhackMe, a program I found way back.

 

When googling the client2.google.com I suspected it was as there are reports of it.

 

I normally use MalwarebytesPro .

And stay safe when browsing. And Superantispyware is also in use from time to time.

When needed or, once in a while I use several programs as i did with your help just now. You guys are really awesome and helpful! 

 

thumbs up


Familiar with UnhackMe?



#8 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:28 PM

Posted 05 July 2017 - 06:26 PM

By the way they were shown as suspicious, not flagged as infections. But from past experience if I don't know what it is I need to find out.

 

 

 

 

----------

 

 

 

Small update: Just ran the Junk Removal Tool from Malwarebytes and it deleted 4 files from c users appdata local microsoft windows temporary internet files content.ie5\20fj0dg6

and 4 from system 32 and temp internet files


Edited by MorDi33, 05 July 2017 - 06:34 PM.


#9 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:28 AM

Posted 05 July 2017 - 06:33 PM

So I checked the URL on VirusTotal.com and it's a clean site.

 

https://www.virustotal.com/en/url/69857d096a4d1d965115e4b88e1c69cdc55d972355f19554a57a33c56c69242c/analysis/1499297508/

 

I think you're fine.



#10 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:28 PM

Posted 05 July 2017 - 06:34 PM

Small update: Just ran the Junk Removal Tool from Malwarebytes and it deleted 4 files from c users appdata local microsoft windows temporary internet files content.ie5\20fj0dg6

and 4 from system 32 and temp internet files


Small update: Just ran the Junk Removal Tool from Malwarebytes and it deleted 4 files from c users appdata local microsoft windows temporary internet files content.ie5\20fj0dg6

and 4 from system 32 and temp internet files



#11 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:28 AM

Posted 05 July 2017 - 06:35 PM

That's fine...doesn't mean it's malware, just leftover junk.

 

I usually run the built-in Windows Disk Cleanup before doing scans.

 

No reason to scan junk.


Edited by jwoods301, 05 July 2017 - 06:36 PM.


#12 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:28 PM

Posted 05 July 2017 - 06:39 PM

Ok, that is what my second option would be) As it's name... Thanks for all your help again Mr Woods ;)

 

Great help, once more.

 

!

 

All the best



#13 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:28 AM

Posted 05 July 2017 - 06:52 PM

Ok, that is what my second option would be) As it's name... Thanks for all your help again Mr Woods ;)

 

Great help, once more.

 

!

 

All the best

Your welcome.

 

BTW, Malwarebytes is anti-malware software.

 

You will also need a real-time (always running and scanning) antivirus program as well.



#14 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:28 AM

Posted 05 July 2017 - 07:10 PM

Regarding UnHackMe...I did not find a lot of love in reviews that I read.

 

This post from @quietman7 in 2010 is not negative, but does give a great overview of anti-rootkit software and suggests other (I would say better) options...

 

https://www.bleepingcomputer.com/forums/t/334074/unhackme-by-greatis-software/?p=1855771


Edited by jwoods301, 05 July 2017 - 07:14 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users