GeekPolice Tech TutorialsLog in

 

Share

descriptionRe: Potential virus/malware on my cousins pc

more_horiz
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7587
# api_version=3.0.2
# EOSSerial=e60091c48d13624fb44dbeaab960c683
# engine=18618
# end=stopped
# remove_checked=false
# archives_checked=false
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-06-08 05:38:06
# local_time=2014-06-08 11:38:06 (-0700, Mountain Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Microsoft Security Essentials'
# compatibility_mode=5895 16777213 100 100 5343144 24279079 0 0
# scanned=29643
# found=0
# cleaned=0
# scan_time=1001
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7587
# api_version=3.0.2
# EOSSerial=e60091c48d13624fb44dbeaab960c683
# engine=18618
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-06-08 06:58:41
# local_time=2014-06-08 12:58:41 (-0700, Mountain Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Microsoft Security Essentials'
# compatibility_mode=5895 16777213 100 100 5347980 24283915 0 0
# scanned=118550
# found=14
# cleaned=14
# scan_time=4755
sh=EF0B8C8D8C3471EC4CA75E25F145EED3B419474E ft=1 fh=89ab8d8ff09d78c1 vn="a variant of Win64/Toolbar.SearchSuite.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Music Toolbar\Datamngr\x64\apcrtldr.dll.vir"
sh=CD22B799743A92BEB237FC65437DCC7811A95A07 ft=1 fh=1877516d08b1fc61 vn="a variant of Win64/Toolbar.SearchSuite.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Music Toolbar\Datamngr\x64\Datamngr.dll.vir"
sh=9140BFAFB716B5500A83E924EF3D7FAD541B51BA ft=1 fh=df719c7aa012ec8d vn="a variant of Win64/Toolbar.SearchSuite.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Music Toolbar\Datamngr\x64\IEBHO.dll.vir"
sh=8CFDC6A6949EC7D220EBDB96929D810F0DBDCF74 ft=1 fh=d40293d09190ed58 vn="a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Music Toolbar\Datamngr\x64\Internet Explorer Settings.exe.vir"
sh=6DA5153938B828F8402494BA1FF018ACA04C5424 ft=1 fh=2c776a3b0d217258 vn="a variant of Win64/Toolbar.SearchSuite.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Music Toolbar\Datamngr\x64\mgrldr.dll.vir"
sh=E15DF75E5B81A209E0E453092C9610C3F8DC7073 ft=1 fh=8918dac93ad3a346 vn="Win32/Toolbar.SearchSuite.M potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wincert\win32cert.dll.vir"
sh=9B56D5787C88CF939DABA1E9273775A1D33EF25F ft=1 fh=8aacdf233e2d6e39 vn="Win32/Toolbar.SearchSuite.M potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wincert\win32prop.dll.vir"
sh=2FA019C3D1CC2BC1905FBD6765DA3CFBE851DD64 ft=1 fh=f275e610e24fd946 vn="Win64/Toolbar.SearchSuite.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wincert\win64cert.dll.vir"
sh=34ABB88310B01A075382292FDE9F2B6E727E5D66 ft=1 fh=1bef8d0f51d0bf3a vn="Win64/Toolbar.SearchSuite.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wincert\win64prop.dll.vir"
sh=CDDEED40804DC12E4B8AD9278FE2243C34DC99AE ft=1 fh=2dfac01ebd5f1b6e vn="a variant of Win32/24x7Help.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Program Files (x86)\OpenDownloaderManager\pcfixspeed.exe"
sh=9F82BB5DC8D4EC6B8B2BB47CB6C329B8AF1C14CE ft=1 fh=c92ed1f3ca58c043 vn="Win32/InstallCore.AZ potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Russ\AppData\Local\Temp\468358541.Uninstall\uninstaller.exe"
sh=9F82BB5DC8D4EC6B8B2BB47CB6C329B8AF1C14CE ft=1 fh=c92ed1f3ca58c043 vn="Win32/InstallCore.AZ potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Russ\AppData\Local\Temp\is357113909\196360067_stp\uninstaller.exe"
sh=9F82BB5DC8D4EC6B8B2BB47CB6C329B8AF1C14CE ft=1 fh=c92ed1f3ca58c043 vn="Win32/InstallCore.AZ potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Russ\AppData\Local\Temp\is357113909\196792802_stp\uninstaller.exe"
sh=9DA71A6943EFC12F4644D301CFB156056C31674E ft=1 fh=e9da6dbc6ee1fe82 vn="Win32/AdWare.GorillaPrice.E application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Russ\Downloads\Setup_ODM.exe"

descriptionRe: Potential virus/malware on my cousins pc

more_horiz
That's good. How's your computer running now? Any other issues before we clean up?

descriptionRe: Potential virus/malware on my cousins pc

more_horiz
It appears to be running normally and None of weird flashes are happening on startup anymore. Anything else left to do?

descriptionRe: Potential virus/malware on my cousins pc

more_horiz
Just a bit of cleanup. You may keep MBAM and AdwCleaner on your computer, if you wish. Update them and run them on a regular basis.

Click Start> Computer> right click the C Drive and choose Properties> enter
Click Disk Cleanup from there.



Click OK on the Disk Cleanup Screen.
Click Yes on the Confirmation screen.



This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)
*******************************************************
To set a new Restore Point.

Click Start button , click Control Panel, click System and Maintenance, and then clicking System. In the left pane, click System Protection. If you are prompted for an administrator password or confirmation, type the password or provide confirmation. To turn off System Protection for a hard disk, clear the check box next to the disk, and then click OK. Reboot to Normal Mode.
Click the Start button , click Control Panel, click System and Maintenance, and then click System.
In the left pane, click System Protection. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
To turn on System Protection for a hard disk, select the check box next to the disk, and then click OK.
This will give you a new, clean Restore Point.
*******************************************************
Go to Microsoft Windows Update and get all critical updates.

I suggest using WOT - Web of Trust . WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!

descriptionRe: Potential virus/malware on my cousins pc

more_horiz
Ok I will run those when I get home. Thanks for all the help Dave Big Grin
Permissions in this forum:
You cannot reply to topics in this forum