Jump to content

Lunatic

Honorary Members
  • Posts

    24
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Kevin, thanks for all your help, I finally just gave up and backed up my important stuff and did a complete restore. I really appreciate your time and effort, but after doing a bunch of research over the last few days, the only way people were fixing this issue was a factory restore. That and my wife complaining at me over the last week while I've been trying to get this fixed. She was afraid even after all of this some things might still be on the computer. Since I have bank info, and multiple computers connected on a network, I had to wipe it clean. Thanks again for all your time and effort! I appreciate it a ton. Once I get my paypal passwords changed I will shoot you a little money!
  2. I'm still getting the same error I was getting from the start. Can I ask is using my recovery disk that I made when I bought the computer something that will clean this mess up? I read on windows 7 forums that was the only way people could get the error to go away. Any ideas/suggestions?
  3. Results of screen317's Security Check version 0.99.77 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 Out of date! ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! AVG AntiVirus Free Edition 2014 Antivirus out of date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.75.0.1300 Java 7 Update 45 Adobe Flash Player 11.9.900.117 Mozilla Firefox (4.0.1) Google Chrome 31.0.1650.57 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe AVG avgwdsvc.exe Malwarebytes' Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 0% ````````````````````End of Log``````````````````````
  4. Ok buddy thanks for your help go to bed, tomorrow is another day! Do you see anything else I should be concerned with? Any kind of checks I can run to make sure everything is gone?
  5. ========== FILES ========== File/Folder C:\Users\Josh\desktop\IObit\GBV3contextmenu.dll not found. C:\Users\Josh\desktop\IObit\Game Booster folder moved successfully. C:\Users\Josh\desktop\IObit folder moved successfully. OTM by OldTimer - Version 3.1.21.0 log created on 12022013_185125
  6. if I do ctrl+alt+del to get to task manager. I will reboot again.
  7. OTM asked me to reboot, when I did the computer rebooted started windows, and now all I have is a black screen with my white arrow. It's not doing anything.
  8. All processes killed ========== FILES ========== C:\Users\Josh\Desktop\htcsupertoolv3\root\zergRush moved successfully. C:\Users\Josh\Downloads\avira_free_antivirus_en.exe moved successfully. C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1VNGV73W\ApnIC[1].0 moved successfully. C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5O8F0Q71\ApnIC[1].0 moved successfully. File/Folder C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1VNGV73W\ApnIC[1].0 not found. File/Folder C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5O8F0Q71\ApnIC[1].0 not found. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->Flash cache emptied: 57472 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Josh ->Temp folder emptied: 16547663 bytes ->Temporary Internet Files folder emptied: 11270026 bytes ->Java cache emptied: 3175724 bytes ->FireFox cache emptied: 45123636 bytes
  9. I deleted everything that was in the folder except for that file. It is on my desktop now. What's odd is that the file is GBV3contextmenu.dll, but when I move the Adwcleaner over it to google search it shows the file is called AcroRD32.exe. So the file is on my desktop what's the next step?
  10. Ok not sure if I should proceed yet. I cannot get rid of this IObit folder. There is a file in there that it won't let me delete. GBV3contextmenu.dll No matter what program I use, it will not remove the file. Any suggestions? And is this file harmful. I would assume it is, or it easily delete correct?
  11. Ok, I used the "hunter" part of Revo. I moved the IObit folder to the desktop and deleted it that way. Then found 866 registry items left over and deleted all of them. I will have to do the OTM thing later today when I get home for work.
  12. Tried searching for the IObit program. Revo couldn't find it. The only thing I could find relating to it was "Game Booster" so I uninstalled that program with Revo. When I did a search for IObit, there is still a folder left that it is telling me I can't delete because the folder is open in another program. BTW, thanks so much for all your help so far!!
  13. C:\AdwCleaner\Quarantine\C\Program Files (x86)\Search Toolbar\SearchToolbarUpdater.exe.vir Win32/Toolbar.Zugo application C:\Program Files (x86)\IObit\Game Booster\GameBoosterSetup.exe Win32/Toolbar.Widgi application C:\Users\Josh\Desktop\htcsupertoolv3\root\zergRush Android/Exploit.Lotoor.AT trojan C:\Users\Josh\Downloads\avira_free_antivirus_en.exe a variant of Win32/Bundled.Toolbar.Ask.D application C:\Users\Josh\Downloads\ZipOpenerSetup (1).exe Win32/InstallCore.CD application C:\Users\Josh\Downloads\ZipOpenerSetup.exe Win32/InstallCore.CD application C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1VNGV73W\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5O8F0Q71\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1VNGV73W\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5O8F0Q71\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-12-2013 Ran by Josh at 2013-12-01 17:52:29 Run:1 Running from C:\Users\Josh\Desktop\FRST64 Boot Mode: Normal ============================================== Content of fixlist: ***************** Start HKCU\...\Run: [CLink_Installer.Activation] - "C:\Users\Josh\AppData\Local\Temp\CLink_Installer\McciInitializer.exe" <===== ATTENTION C:\Users\Josh\AppData\Local\Temp\CLink_Installer SearchScopes: HKLM - {54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} URL = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpl SearchScopes: HKLM-x32 - {54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} URL = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpl SearchScopes: HKCU - {54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} URL = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpl C:\Users\Josh\AppData\Local\Temp\Quarantine.exe Task: {17FF36AC-E00E-4A6E-A917-7807E4423150} - \DigitalSite No Task File Task: {9BD03E1E-A23D-4DA5-AA12-51586B26E9DC} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster\Autoupdate.exe [2013-06-27] () AlternateDataStreams: C:\ProgramData\Temp:20D3A172 End ***************** HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\CLink_Installer.Activation => Value deleted successfully. "C:\Users\Josh\AppData\Local\Temp\CLink_Installer" => File/Directory not found. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} => Key deleted successfully. HKCR\CLSID\{54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} => Key not found. HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} => Key not found. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} => Key deleted successfully. HKCR\CLSID\{54BFF5CC-4057-4EA2-80FA-1860EBBF9B36} => Key not found. C:\Users\Josh\AppData\Local\Temp\Quarantine.exe => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{17FF36AC-E00E-4A6E-A917-7807E4423150} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{17FF36AC-E00E-4A6E-A917-7807E4423150} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DigitalSite => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9BD03E1E-A23D-4DA5-AA12-51586B26E9DC} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9BD03E1E-A23D-4DA5-AA12-51586B26E9DC} => Key deleted successfully. C:\Windows\System32\Tasks\Game_Booster_AutoUpdate => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Game_Booster_AutoUpdate => Key deleted successfully. C:\ProgramData\Temp => ":20D3A172" ADS removed successfully. ==== End of Fixlog ====
  14. Not sure if you were looking for that part or this part. Ad-Aware 20131201 Agnitum 20131201 AhnLab-V3 20131201 AntiVir 20131201 Antiy-AVL 20131129 Avast 20131201 AVG 20131201 Baidu-International 20131201 BitDefender 20131201 Bkav 20131129 ByteHero 20131127 CAT-QuickHeal 20131201 ClamAV 20131201 Commtouch 20131201 Comodo 20131201 DrWeb 20131201 Emsisoft 20131201 ESET-NOD32 20131201 F-Prot 20131129 F-Secure 20131201 Fortinet 20131201 GData 20131201 Ikarus 20131201 Jiangmin 20131129 K7AntiVirus 20131129 K7GW 20131129 Kaspersky 20131201 Kingsoft 20130829 Malwarebytes 20131201 McAfee 20131201 McAfee-GW-Edition 20131201 Microsoft 20131201 MicroWorld-eScan 20131201 NANO-Antivirus 20131201 Norman 20131201 nProtect 20131201 Panda 20131201 Rising 20131129 Sophos 20131201 SUPERAntiSpyware 20131201 Symantec 20131201 TheHacker 20131129 TotalDefense 20131129 TrendMicro 20131201 TrendMicro-HouseCall 20131201 VBA32 20131128 VIPRE 20131201 ViRobot 20131201
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.