Maurice Naggar

Moderators
  • Content count

    16,525
  • Joined

  • Last visited

1 Follower

About Maurice Naggar

  • Rank
    Staff

Profile Information

  • Location
    USA
  • Interests
    Security, Windows, Windows Update, malware prevention

Recent Profile Visitors

69,135 profile views
  1. Bravo. Good. Delete the following files in the Downloads folder: FRST64.exe FRST.txt Addition.txt Fixlist.txt Fixlog.txt I am glad to have helped you. Cheers.
  2. I am sorry, but I have to say, you are not being clear about what you mean by << help i cant log in my account again >> ! What account is that ? What do you mean ? or do you mean this is about the Malwarebytes Anti-Malware program ? and that you had something set on it ? Please describe what you mean in detail. Is it some other program? maybe you mean some website? Having good details is so important. also, I need to see a fresh report: This tool will collect some information on the installation of Malwarebytes and create a report I need to review: NOTE: You may need to temporarily turn off your antivirus if it interferes with this tool. Download mbam-check.exe and save it to your desktop "from this link" http://downloads.malwarebytes.org/file/mbam_check On Windows 7, Right-click on mbam-check-2.3.2.0.exe & select Run as Administrator & allow to Run when prompted by User Account Control. Do have patience while the tool runs. It may take a while, and will flash a command prompt window. And then it will start your text editor ( default is typically NOTEPAD). It should then open a log file CheckResults.txt. Just do a File >> Exit in NOTEPAD. You should attach the CheckResults.txt file located on your desktop so that I can review.
  3. You need to unpatch that "patch". Apply the methods described on this article. How can I reset the Hosts file back to the default http://support.microsoft.com/kb/972034
  4. The scan report from MBAM shows no malware. As to your keyboard, it could well be a hardware issue. IF you use a wireless keyboard, switch to a regular one that is connected directly. We cannot help you on keyboard issue. The scan reported no malware. The Checkresults shows a good install of our program, and that you are running it in Trial mode of the Premium.
  5. Hello Im_salty. Looking at the reports. Can you tell us why the Hosts file has the following entries 127.0.0.1 keystone.mwbsys.com 127.0.0.1 bactem.mwbsys.com 127.0.0.1 sirius.mwbsys.com See the note at the top of the forum
  6. Ok. That is great. Please let me know the status after say, another 24-hours.
  7. Hello Suratkecil. I will be guiding you as we go forward. I do need to see diagnostic information from this system. I would like to ask that you always attach any report or file I ask for, from time to time. Before we proceed further, please read all of the following instructions carefully. If there is anything that you do not understand kindly ask before proceeding. If needed, please print out these instructions. Please do not post logs using CODE, QUOTE, or FONT tags. Just always attach files / reports. Please enable your system to show hidden files: How to see hidden files in Windows Make sure you're subscribed to this topic: Click on the Follow This Topic Button (at the top right of this page), make sure that the Receive notification box is checked and that it is set to Instantly Removing malware can be unpredictable, it is unlikely, but things can go wrong! Please make sure you Backup all files that cannot be replaced if something were to happen. You can copy them to a CD/DVD, external drive or a pen / flash drive Please don't run any other scans, download, install or uninstall any programs unless requested by me while I'm working with you. The removal of malware is not instantaneous; please be patient. Often we are also in a different Time Zone. Perform everything in the correct order. Sometimes one step requires the previous one. If you have any problems while following my instructions, Stop there and tell me the exact nature of the issue. You can check here if you're not sure if your computer is 32-bit or 64-bit As we go along, from time to time, Windows User Account Control ( U A C ) will prompt whether to allow a tool or procedure to proceed forward. Approve the Windows’ UAC prompt on by clicking on Continue or Yes. When we are done, I'll give you instructions on how to clean up all the tools and logs Please stick with me until I give you the "all clear" and Please don't waste my time by leaving before that. Your topic will be closed if you haven't replied within 3 days. Please download Farbar Recovery Scan Tool and save it to your desktop. You may wind up needing to temporarily turn off your antivirus program IF it interferes with the diagnostic tool-reports listed below. Right-click on *FRST* icon and select *Run as Administrator * to start the tool , and reply *YES* to allow it to proceed and run. _Windows 8 or 10 users will be prompted about Windows *SmartScreen protection* - click line *More info* information on that screen and click button *Run anyway* on next screen._ Click YES when prompted by Windows U A C prompt to allow it to run. Approve the Windows’ UAC prompt on Windows Vista and newer operating systems by clicking on Continue or Yes. Click Yes when the* disclaimer* appears in FRST. The tool may want to update itself - in that case you'll be prompted when the update is completed and ready to use. Press Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply. The first time the tool is run, it also makes another log (Addition.txt). Please attach FRST.txt & Addition.txt along your next reply.
  8. This run was very good. There ought now be no further re-occurence of the original issue. But tell me, How is the situation now ?
  9. Please be careful where you surf ! Do take pro-active steps to tighten up your web browsers. Look and apply all these tips. Go into the Options ( settings) of Internet Explorer ( and any other web browser you have). Make sure that the POPUP blocker is ON. Set the option on for rejecting (decline) 3rd-party cookies. And in addition to all that: Use a good browser extension ( add on) ad blocker. If your pc has no ad blocker add-on for your browser(s), I would suggest uBlock Origin. For Mozilla Firefox, use the Mozilla page at this link https://addons.mozilla.org/addon/ublock-origin/ For Google Chrome, see https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm For Internet Explorer browser: https://adblockplus.org/en/internet-explorer For Opera browser, see https://addons.opera.com/en-gb/extensions/details/ublock/ *ALSO this too* To help totally block these types of "popups" I would recommend to *only use Firefox browser* that also has the addon for *NoScript Suite Lite.* and just only use that when surfing the web. Tips and how to's for Noscript suite are on this page link http://mybrowseraddon.com/noscript-lite.html We have a free version Malwarebytes Anti-Exploit (MBAE) that protects against exploit attacks in your browsers and Java, and a paid version that also protects additional applications such as MS Office. https://downloads.malwarebytes.org/file/mbae_current/ I would recommend you install the Anti-Exploit in free use mode. ( that is, if you do not have it from before). I wish you well.
  10. Hello. How are things now ?
  11. On the first screen when you have the "automatic repair", lets have you click on CANCEL. and lets see what other options are then offered. Note, I dont know why you have the snapshot showing DDS. That requires Windows in order to run properly. At this point, lets put DDS aside; we are after just a stable normal Windows. As to the last screens, as long as the dotted circle is going round and round, simply have infinite ( endless) patience and let the machine have all the time it needs to try loading. Let it go and go take a break away from it. It may even go like that for an hour. Personnaly, I would not give up on it as long as the dotted circles are moving. and also in addition, you may want to move the mouse around just to see if it gets something displayed. and also try pressing the ESCape key to see if that gets something moving.
  12. No, our software cannot be run in a command prompt window. We have to rely on a working Windows o.s. being up and running. Beyond what I suggested before, I only have generic ( standard) ways to get to Safe mode. But having Windows 10, one of the best other options is a REFRESH operation ( which is supposed to leave your documents and installed programs as is).
  13. Sorry, but we need to repeat the procedure. First, delete the old copy on the machine named FIXLIST.txt. Instead you would use the one attached on this reply. Close all your open work ( if any) before starting this next run. This run will do a reboot at the end. And see about possibly turning off the Avast antivirus before proceeding ( just in case if it interferes.) I am sending a Fix script which is going to be used by the FRST64 tool. They will both work together as a pair. Please RIGHT-click the FIXLIST and select SAVE AS and save it directly ( as is) in the same general location as where you have FRST64 save to DOWNLOADS folder. Make sure it is not auto-opened in any word processor. NOTE: Both FRST64.exe and the fixlist.txt must be in the same location or the fix will not work. Double click FRST to run the tool. If the tool warns you the version is outdated, please download and run the updated version. Click the Fix button just once, and wait. If you receive a message that a reboot is required, please make sure you allow it to restart normally. The tool will complete its run after restart. When finished, the tool will make a log (Fixlog.txt) in the same location from where it was run. Please attach the Fixlog.txt in your reply. There is just one task on this machine that autostarts powershell. After this run it will be gone. If you turned off Avast, when all is done, turn it back on. Sorry, we have to repeat the previous procedure. But with the new file I am sending with this reply. First, locate the FIXLIST.txt on your system and delete the old copy. Fixlist.txt
  14. Sorry, but it is simply not possible to get that last report. Please just then Copy and paste the contents of the Checkresults.txt report. Other point, I still do not follow, as to what website you are wanting to "login" to. Can you tell me which one ?
  15. Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!