1. Welcome Guest! In order to create a new topic or reply to an existing one, you must register first. It is easy and free. Click here to sign up now!.
    Dismiss Notice

Computer gone crazy

Discussion in 'Malware Removal Help' started by jacquefromla, Jul 8, 2016.

Page 2 of 2
  1. starbuck

    starbuck Rest In Peace Pete Administrator

    Joined:
    Sep 26, 2009
    Messages:
    3,830
    Location:
    Midlands, UK
    Operating System:
    Windows 10
    CPU:
    AMD Athlon II x2 250 Processor 3.00GHz
    Memory:
    8gb DDR3
    Hard Drive:
    500gb SATA
    Graphics Card:
    ASUS GeForce GTX 960 2gb
    Power Supply:
    650w PowerCool X-Viper
    Hi jacque

    Actually it's nothing to worry about.
    3 items found ... but those items are in the AdwCleaner quarantine folder, so they are perfectly safe.

    Ok, let MBAM run a scan on your system.
    If you have problems running it, boot into Safe Mode with Networking and then run a scan with MBAM.

    How to Reboot in to 'Safe Mode with Networking'

    Restart your computer.

    When the computer starts you will see your computer's hardware being listed.
    When you see this information start to gently tap the F8 key repeatedly.
    A menu with options will appear;
    Select the Safe Mode with Networking option using the arrow keys on your keyboard.
    Then press the enter key on your keyboard to boot into Safe Mode with Networking.
    When Windows starts you will be at a typical logon screen.
    Logon to your computer as normal.

    Safe Mode with Networking will give you an internet connection whilst in Safe Mode......
    This will enable you to update MBAM if required.

    After the scan is complete reboot your system as normal.
    It's important that the system reboots into normal mode to finish any cleaning.

    Let me have the report that MBAM produces.

    Thanks
     
    starbuck, Jul 25, 2016
    #21
  3. jacquefromla

    jacquefromla Member

    Joined:
    Dec 13, 2009
    Messages:
    142
    My firefox was hijacked today while trying to come back to CHF, so I had to use firefox. I managed to run a MBAM scam and got this log. I will shut down and restart now..
    edit- Sorry Starbuck I never had a chance to read your last post as the browser kept opening new windows till it was impossible to close anything. I did run the scan and here are the results i am restarting now


    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scan Date: 7/26/2016
    Scan Time: 2:24 PM
    Logfile: mbam new.txt
    Administrator: Yes

    Version: 2.2.1.1043
    Malware Database: v2016.07.26.09
    Rootkit Database: v2016.05.27.01
    License: Premium
    Malware Protection: Disabled
    Malicious Website Protection: Disabled
    Self-protection: Disabled

    OS: Windows 7 Service Pack 1
    CPU: x64
    File System: NTFS
    User: JacquesVaio

    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 454952
    Time Elapsed: 37 min, 45 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Enabled
    PUM: Enabled

    Processes: 0
    (No malicious items detected)

    Modules: 0
    (No malicious items detected)

    Registry Keys: 0
    (No malicious items detected)

    Registry Values: 0
    (No malicious items detected)

    Registry Data: 0
    (No malicious items detected)

    Folders: 0
    (No malicious items detected)

    Files: 4
    PUP.Optional.PricePeep, C:\Users\JacquesVaio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, Delete-on-Reboot, [aef3c662a8f2ec4ad7fbbbf535cef907],
    PUP.Optional.PricePeep, C:\Users\JacquesVaio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal, Quarantined, [a3fefb2de0bacb6bf0e2f0c0d72c3bc5],
    PUP.Optional.Yontoo, C:\Users\JacquesVaio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.coupontime00.coupontime.co_0.localstorage, Delete-on-Reboot, [eeb35dcb702ab87ebd67366e48bca15f],
    PUP.Optional.Yontoo, C:\Users\JacquesVaio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.coupontime00.coupontime.co_0.localstorage-journal, Delete-on-Reboot, [227fc4643664b58176ae1a8aaa5ab947],

    Physical Sectors: 0
    (No malicious items detected)


    (end)
     
    jacquefromla, Jul 26, 2016
    #22
  4. starbuck

    starbuck Rest In Peace Pete Administrator

    Joined:
    Sep 26, 2009
    Messages:
    3,830
    Location:
    Midlands, UK
    Operating System:
    Windows 10
    CPU:
    AMD Athlon II x2 250 Processor 3.00GHz
    Memory:
    8gb DDR3
    Hard Drive:
    500gb SATA
    Graphics Card:
    ASUS GeForce GTX 960 2gb
    Power Supply:
    650w PowerCool X-Viper
    Hi jacque

    I think you meant that your Google Chrome was hijacked?
    That is what the MBAM report is showing.

    I recommend that you reset Google Chrome to clear away any leftovers.

    To reset Google Chrome
    • Click the Menu option button at the top right of the Google Chrome screen
    • Select Settings.
    • Click Show advanced settings and find the "Reset browser settings” section.
    • Click Reset browser settings.
    • In the dialogue that appears, click Reset. Note: When the "Help make Google Chrome better by reporting the current settings" tick box is selected you are anonymously sending Google your Chrome settings. Reporting these settings allows us to analyse trends and work to prevent future unwanted settings changes.

    Resetting your browser settings will impact the settings below:

    Default search engine and saved search engines will be reset and to their original defaults.
    Homepage button will be hidden and the URL that you previously set will be removed.
    Default startup tabs will be cleared. The browser will show a new tab when you startup or continue where you left off if you're on a Chromebook.
    New Tab page will be empty unless you have a version of Chrome with an extension that controls it. In that case your page may be preserved.
    Pinned tabs will be unpinned.
    Content settings will be cleared and reset to their installation defaults.
    Cookies and site data will be cleared.
    Extensions and themes will be disabled.

    If you want to really make sure that nothing got carried over, you can also reset Firefox:

    To Reset Firefox
    • At the top of the Firefox window, click the Help menu and select Troubleshooting Information
    • Click the Reset Firefox… button in the upper-right corner of the Troubleshooting Information page.
    • To continue, click Reset Firefox in the confirmation window that opens.
    • Firefox will close and be reset. When it's done, a window will list the information that was imported.
    • Click Finish and Firefox will open.
    Note:
    After the reset is finished, your old Firefox profile information will be placed on your desktop in a folder named "Old Firefox Data." If the reset didn't fix your problem you can restore some of the information not saved by copying files to the new profile that was created.
    If you don't need this folder any longer, you should delete it as it contains sensitive information.

    The reset feature works by creating a new profile folder for you while saving your most important data.

    Firefox will try to keep the following data:
    • Bookmarks
    • Browsing history
    • Passwords
    • Cookies
    • Web form auto-fill information
    • Personal dictionary
     
    starbuck, Jul 26, 2016
    #23
Page 2 of 2

Share This Page