Jump to content

lubo4444

Members
  • Posts

    18
  • Joined

  • Last visited

Reputation

0 Neutral

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Hello @AdvancedSetup, Here attached is the KpRm log. I guess we don't have to do a modified Farbar FIX just to see if it will complete if it is not necessary. I do have one last question. Regarding the "Trojan:Win64/Rootkit!MSR", I tried to "Quarantine" it and also to "Remove" it when Windows Defender found it before I started the thread on here but every time when I clicked the "Quarantine" and "Remove" button, it did not remove it. The "Trojan:Win64/Rootkit!MSR" kept popping up on Windows Defender and next to the name it said that it was still "Active". Couple of days ago, The "Trojan:Win64/Rootkit!MSR" malware/virus disappeared from Windows Defender and it does not show anymore under "Active threats". Also it does not show up anymore under the "Protection History" tab as well. Do you know if the "Trojan/Win64/Rootkit!MSR" was auto deleted by Windows Defender or maybe it was a false positive and once I updated again my Windows Defender with the latest update, it probably went away? You've mentioned that it was removed with the clean up that we did but I did not see the "Trojan:Win64/Rootkit!MSR" malware/virus anywhere on any of the logs. Thank you for the additional information that you have provided to me. I will go ahead and read everything and definitely use it. Thank you, kprm-20230805155713.txt
  2. The computer actually runs pretty good. I do have around ten questions/concerns and I will really appreciate the help if you can answer them. 1. Can you please tell me if the "Trojan:Win64/Rootkit!MSR" (please see screenshot below) is a real malware/virus or was it a false positive? When I started the thread here, Windows Defender kept showing that I had it but few days ago it does not show it anymore. 2. Can you please tell me if the "Trojan:Win32/Wacatac.H!ml" (please see screenshot) is an actual malware/virus or a false positive? Windows Defender did automatically block it though. 3. On Windows Defender, I don't currently see the "Trojan:Win64/Rootkit!MSR" and the "Trojan:Win32/Wacatac.H!ml" anymore. I did go to "Active threats" and to the "Protection history" settings but the are not on there anymore. How did they disappear from Windows Defender? Should I be worried? 3. If the following malware/viruses are real, what kind of harm "Trojan:Win64/Rootkit!MSR", "Trojan:Win32/Wacatac.H!ml", "Trojan.MalPack.VMP" and "Generic.Malware.AI.DDS" did they cause to my computer? What exactly those malware/viruses do? The last two items were found on the first Malwarebytes log that I uploaded on here but Malwarebytes successfully quarantined them. 4. Regarding the Farbar Fix that did not complete successfully, did it cause any harm to my computer since that it partially completed and it did not complete successfully? 5. Regarding the Farbar Fix again, is it possible that it did not complete successfully due to having real-time protection on on Windows Defender? 6. Is there a way to successfully run the Farbar Fix? 7. What is the best way to uninstall Malwarebytes and reinstall it again? I am asking this because I've had Malwarebytes few times in the past and i did uninstall and reinstall it again but would like to delete every trace of it and do a clean reinstall of it. I did see on the Malwarebytes Support Tool that there is an option to uninstall Malwarebytes and reinstall it again. I know in the past Malwarebytes had a tool that when you ran it, it did completely remove Malwarebytes and then you could reinstall it again but I don't see that tool anymore. 7. Do I need to change my passwords on all of my accounts or that is not necessary? 8. Is my system clean now? 9. Do I need to run any additional malware/virus scans? Thank you,
  3. Hello @AdvancedSetup, Here attached is the Dr. Web CureIt! log. Thank you, cureit.log
  4. Hello @AdvancedSetup, Here attached is the Microsoft Scanner log. Did the full scan completed successfully? How are the results? Thank you, msert.log
  5. Hello @AdvancedSetup, Do you know why the fix did not finish? I did manually reboot the computer and a disk scan started and it completed successfully. However, after the manual restart, the fix did not automatically start. I will run the Microsoft Scanner when I come from work today and post those logs. Thank you!
  6. Hello @AdvancedSetup, I tried running the modified fix again but for some reason the Farbar disappeared again after around hour and a half and I'm not sure if the fix completed successfully. I did wait for probably around 5 hours to see if anything will pop up on the screen but nothing did. Also, the computer did not automatically restart and I did not see a message saying the fix completed successfully. I did upload on here the latest "fixlog.txt" log. Fixlog.txt
  7. Hello @AdvancedSetup, I did not have the chance to run the fix today but will run it tomorrow and post the log as requested. I do have couple of questions before I run the fix: 1. In your last reply to me, is this the modified fix that you want me to download and run? 2. When I start the fix, will the computer restart/reboot by itself? If yes, after the restart/reboot of the computer, do I have to start the fix again or it will start by itself and continue running? 3. How many times will the computer restart/reboot when I run the fix? 3. After the fix is done, will a message display on the screen saying something like the fix completed successfully? 4. Do I have to be in front of the computer during the whole time when the fix is running or I can just leave the fix to run and come back at a later point? I'm asking this because my computer is a bit older and it will probably take a bit longer than the 55 minutes time that you've mentioned that will take for the fix to run on your reply to me. Thank you,
  8. Hello @AdvancedSetup As per your last request: 1. I will keep the uTorrent at the moment for P2P. 2. I did block the push notification that I had somehow enabled. I don't usually enable any push notifications. 3. For the Farbar Fix, I would like to give you a step by step of what I did just in case if you can tell me if I did it right. I did attach the "fixlog.txt" file as requested. When I downloaded the Farbar software for our first scan, it was downloaded to my "Downloads" folder. I did move it to the "Desktop" as per your instructions to do the first scan that we did. On your next instructions, you told me to run a custom fix with Farbar and to save the attached "fixlist.txt" file to "C:\Users\Lyubomir\Downloads\". I did that as requested but I also moved the "frxt64.exe" file to the "Downloads" folder as well just in case because I had it on my "Desktop" for our first Farbar scan that we did. I ran the Farbar Fix with Admin rights as requested and I left the real-time protection on on both Windows Defender and Malwarebytes. On your instructions you said that the Farbar fix will run for around 55 minutes but on my computer ran for around 2 hours. I left the Farbar fix to run on my computer and I did few tasks at my house in order to leave the Farbar fix to run. Once I came back to the computer, the Farbar window was not on the desktop anymore. I thought that the Farbar fix will restart the computer as well but it did not restart the computer. I did restart the computer manually and a Disk checkup started, which completed successfully. Also, I did notice on your reply that the Farbar fix will also delete cookies and history on my browsers but I do still see my history on it. Also, I did not get a message that Farbar completed successfully or anything like that. I'm not sure if that is the way that it was supposed to do it. Also on the "fixlog.txt" file at the end it says "Fixing is terminated due to reaching maximum fixing time of 60 minutes. <==== ATTENTION". I'm not sure if the Farbar software terminated or it completed the scan successfully. I gave the explanation above just to be sure that I did everything right. My question really is, did the Farbar fix complete successfully because I did not get any message saying that it completed successfully or do I need to run it again? Here attached is the "fixlog.txt" file. Thank you, Fixlog.txt
  9. Hello AdvancedSetup, I apologize but I was called at work for an emergency that we have and will post the log and follow the rest of the instructions on Saturday. I will definitely run the fix and get back to you. I should be available Saturday and Sunday most of the time in order to work on the issue. Just to be sure, so I can just leave both the Windows Defender and Malwarebytes on right without turning anything off on them when I run the fix? I will not be using the computer till I post those logs on Saturday on here. Thank you,
  10. Hello Porthos, 1. Yes, I do see that I have "FRSTEnglish.exe" in the "Downloads" folder. Which way is better, to save it to the "Downloads" folder or to the Desktop? 2. Should I try to run with real-time protection on on both Windows Defender and Malwarebytes or should I wait for AdvancedSetup to reply back? I just want to make sure that I'm doing everything correctly and not cause any issues. Thank you,
  11. Hello AdvancedSetup, Two quick questions before I run the Farbar fix as requested: 1. I do only use Windows Defender and Malwarebytes. How do I turn their real-time protection off the proper way in order to run the Farbar fix or I should be able to run Farbar with real-protection on? 2. For the Farbar fix, you've mentioned to save the "Fixlist.txt" to C:\Users\Lyubomir\Downloads\. Once I downloaded Farbar for the first scan that you wanted me to do, on your instructions it said to save it to the Desktop. Do I still need to have "Fixlist.txt" saved to C:\Users\Lyubomir\Downloads\ or it should be saved to the Desktop? Thank you,
  12. Hello AdvancedSetup, Is it possible to keep the programs that you want me to uninstall? Do they pose a threat? I am only asking this because I might use them in the near future even though they are outdated. I will update them once I use them though. I did successfully create a restore point as per your instructions. Also, I did run the Farbar Recovery Scan Tool. The Microsoft Defender SmartScreen told me that the software might be dangerous but I did select "More Info" and then "Run Anyways". The Farbar Recovery Scan Tool froze probably like 20-30 times during the scan and a message popped up saying "Not responding" but the message went away and it kept scanning. Do I need to re-run the scan with the Farbar Recovery Scan Tool just in case if the logs are not complete due to the freezing issues or that is normal? At the end of the scan a message popped up that said something like "Scan completed successfully" though but not sure if the logs are complete due to the freezing issues. I did attach the "FRST.txt" log and the "Addition.txt" log though if a new scan is not required due to the freezing issues. FRST.txt Addition.txt
  13. Hello AdvancedSetup, I do apologize for the late reply but we had a thunderstorm passing by my town and had to turn off the computer just in case of any power surges. I do have two quick questions: 1. I did not disable the antivirus real-time protection due to not being sure how to do it exactly. I do only use Windows Defender and Malwarebytes. During the Malwarebytes Support Tool Scan, my Windows Defender showed up the threats below. Please see screenshot. Are those real threats or just a false positives coming up from the Malwarebytes Support Tool? I can expand them if needed to provide more details. 2. If those threats below came from the Malwarebytes Support Tool, should I disable the antivirus real-time protection and then run the Malwarebytes Support Tool again just in case if Windows Defender interfered with the Malwarebytes Support Tool or are the uploaded logs successfully complete as required? I also did not disable the Microsoft SmartScreen because you've mentioned only to disable it if I'm unable to run any of the software that you wanted me to run. All softwares that you wanted me to run were able to run successfully. Here attached are the Malwarebytes Threat Scan logs, AdwCleaner logs and also the Malwarebytes Support Tool logs. Thank you, Malwarebytes Log File.txt AdwCleaner[C05].txt mbst-grab-results.zip
  14. Hello, Windows Defender usually scans my computer every day as a scheduled scan and it did find the malware/virus below. I did hit the "Quarantine" button on it but for some reason it keeps appearing and I'm not sure if Windows Defender took any action on it. In the next couple of days I did run Windows Defender again and it says that "No threats found" but this malware/virus below still pops up in "Current threats". I'm not sure if Windows Defender is acting right. I did read online that many people had issues with Windows Defender but I'm not an expert on it. When I go to "Protection History", I do see the following malware/viruses below. Also, I did scan with Malwarebytes as well and I did a full "Custom scan" with "Scan for Rootkits" enabled. The scan took a long time and it did not complete because I had to cancel it due to that it kept scanning for days. However, it did find 5 malware/viruses and I did upload the Malwarebytes log on here as well. I did read that the "Scan for rootkits" option takes a long time to scan so I did a "Quick Scan" and also a full "Custom Scan" by selecting all of my drives and files except the "Scan for rootkits" option. This time both scans completed successfully and the Malwarebytes logs were clean. I can upload them if requested. I only ran Windows Defender and Malwarebytes. I'm not sure if my computer is clean from malware/viruses and I will really appreciate your help if you can see if I have any malware/viruses and help me clean them. If anything is requested by me to do such as scans or other procedures, I will be active on the forum around 6:30 PM to 12:00 AM Monday through Friday due to being at work. On Saturdays and Sunday, I will be available on the forum most of the time. Thank you! Malwarebytes Log File.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.