My scan logs

Hi,

I just completed all the steps in Read and Run ME thread and am still having issues with whatever is infecting my computer. Attached are the logs from the scans.

December 21, very early in the morning I was playing a game and they offer to give you free currency for that game if you just complete one of their offers. These offers are not monitored by the company. Choices were for example to complete a survey or download and install a program. And that's exactly what I did. I downloaded and installed some free media player and afterward Google Chrome (my default browser) was not going to any other pages. I closed it and reopened it but it would not reopen. Internet Explorer is also not working. I'm able to surf the web with TorBrowser. Also, any game clients i've downloaded are still full functional and i dont notice a slow down. Spotify and Yahoo Messenger also work for me. Netflix App does not work.

Thank you.

 

Sorry. I neglected to explain the situation very well. tried editing first post but couldnt.

December 21, very early in the morning I was playing a game and they offer to give you free currency for that game if you just complete one of their offers. These offers are not monitored by the company. Choices were for example to complete a survey or download and install a program. And that's exactly what I did. I downloaded and installed some free media player.

After I installed the software the offer asked me to install, ZoneAlarm popped up saying it had to do an advanced disinfected because it found malicious malware and needed to reboot. so I did. Afterward Google Chrome (my default browser) was not reopening. Internet Explorer is also not working. It opens but I cant go to any other webpages. I'm able to surf the web with TorBrowser. Also, any game clients I've downloaded are still full functional and i don't notice a slow down. Spotify and Yahoo Messenger also work for me. The Netflix App does not work.

So I proceeded to have ZoneAlarm run a full scan with Archive files included. It found 1 so I told it to delete it. And it supposedly did. Afterward, I downloaded Malwarebytes and ran a scan. It found some malicious software though I'm not sure of the exact number. I believe it was 8. I had Malwarebytes delete them. I then uninstalled Malwarebytes, thus losing whatever log was created when it did that scan. I then uninstalled Chrome and tried to reinstall it but it would get stuck on "connecting to the internet" even though I was. So i did a system restore to 2 days before (December 19th) and Chrome was still not opening.

I called my mom up, told her the situation, and she suggested me to run Norman Malware Cleaner and then follow the MajorGeeks Malware removal (why didn't I think of that before?). Norman found 11 different instances of Malware. One of them is from a game galled PerfectWorld and its a .dll file which I'm almost certain is benign. It said it supposedly cleaned those files. 2 of them having to do with Google Chrome and 2 having to do with Internet Explorer. I tried opening them and still they were not working. After I tried all this, then I went ahead and did everything suggested in the READ AND RUN ME thread. I will attach the Norman log in the 2nd post.

Thank you for your time.

 

Right. There you go. my bad. I thought I had uploaded all 5. Pardon the late response.

 

All right so I'm sending you the JRK log and the 2 logs from Farbar Recovery. The fixME.reg file was successful. I was asked for confirmation to excute it when i double-clicked it and a confirmation saying it was successful. I ran ADW after I ran JRK, got the log, clicked "clean" then I received a log. I then rebooted like I was told to and when I rebooted, I received the log with files were deleted. I accidently closed that log without confirming that it had saved it to my desktop. Should I run the scan again?

 

Oops. found it. Attached is the AdwCleaner log AFTER I ran the scan and cleaned the files.

 

I have done as requested and attached the 3 logs you asked for.

 

Google Chrome still closes as soon as I open it. The window doesn't even come up. just the highlighted icon on my taskbar because i have it pinned to it. Task Manager says I have 5 Google Installer processes going, 2 Google crash handler processes going, one being (32bit).

Internet Explorer window opens up but is unable to load the Google homepage. So I take it to runescape.com and it loads just fine. I take it to the game through the website and i get a white screen trying to load it. Loading the game client I have downloaded, I notice no delay and it runs fine. I then try to go to Netflix through Internet Explorer and I have the perpetual white screen after I click. I try to go to Facebook. Same result. The Netflix App is also perpetually stuck trying to load.

As far as the rest of my computer processes, I don't notice any slowdowns. Boot time is slow as always even though this is a new computer (bought in May) because of its HDD. Like I said, what seems to be affected are my browsers and trying to go to the above-mentioned websites.

I appreciate your time by the way.

 

I uninstalled Java from Programs, though I was always told uninstalling it from CCleaner was better. I saved the quoted text to fixMe.reg and the changes were successful.

I reset Internet Explorer. It asked me it needed to do a reboot of the computer so I did that. I then tried google.com and facebook.com and instead of getting the white screen, there was a blip and it stayed firmly on the msn homepage. Though when i type in runescape.com, it goes there without delay.

I was unable to reset Google Chrome because I can't even open the browser window. I will be attaching a debug log I found in the Google Chrome folder C:\Program Files (x86)\Google\Chrome\Application.

I did not install Sun Java just yet or run the Farbar scan to await further instructions.

 

So I had the idea to boot into Safe Mode with Networking to see what if any results I might see. Internet Explorer loaded up fine with the MSN home page showing up. I type in google.com and it took me straight to it. I didn't do a Google search, though probably should have. Next I try facebook.com. it takes me straight to it. I log in and am able to interact with it as usual. I try netflix.com and it loads perfectly. I sign in and pick a random show to watch and it gets stuck on loading it. After, I go to runescape.com, which loaded fine as well as expected. Going to play the game through the browser did not work as I had guessed because it needs Java to run. The game client does not.

I then try the Netflix app. It does not let me due to the fact that i'm using the "built-in administrator account" if my memory serves me well.

I then try running Google Chrome as Administator. Nothing. I load it normal just by left-clicking it and I get a message. I took a screenshot which I will provide attached.

 

It's all 1 program. And yes it is freeware. ZoneAlarm was recommended to me but I am willing to switch because I'm told it's no longer as good as it once was. Ran the OTL scan as instructed. Here are the results.

Also Merry Christmas hope you had a wonderful Christmas eve and Christmas.

 

Done as requested above. Awaiting further instruction.

 

Apologies for my late reply. Thank you for your prompt one.

I did as requested to uninstall Chrome, reboot, and reinstall. When I uninstalled it, I rebooted the computer in safe mode FIRST and uninstalled from CCLeaner. I then rebooted into safe mode with networking.

I did this because before I even contacted Major Geeks about this, I had uninstalled, did not reboot, but tried to install again from the download file I already had. But the installation process couldn't even begin because the window Chrome opened, in a grayish box said "connecting to the internet" perpetually.

So I redownloaded the file from the google website. I search "google chrome" from google.com and click the first link right below the ad. I install it and Google Chrome opens for me to sign into it. But it doesn't load properly. So I open up another tab and from the "open menu" button to the right of the address bar and select "sign in to chrome" and was able to do it that way. I am unable to type in "google.com" and go there. I am unable to go to "youtube.com", every time if i don't interfere it says the connection times out. I am unable to go to Facebook either. I even try going to the Major Geeks website and only the top ribbon with the links to different parts of the website shows up. It says its still loading but it gets stuck right there. I go to "runescape.com" and it loads fine. I go to a news article that contains a youtube video element attached, the element doesn't load. another website I frequent "runescape.wikia.com" and the page loads fine, but the picture elements do not load. I try to go to "notdoppler.com" and it doesn't load. the connection times out. the only websites that seemed to load without delay were runescape.com and runescape.wikia.com. "amazon.com" loads fine for me.

Something else to note, and I don't know if it's because I downloaded a Chrome look-a-like or this is simply 1 of their new features. To the left of the first opened tab, it shows a little outline of a person. I right click it and it says "first user" next to that figure. below it is another "person" with the name "Shady". With either one, i'm given the option to sign into Chrome. The version of Chrome i'm running is Version39.0.2171.95 m.

So essentially, I still have very limited browser function. Also, Internet Explorer will not let me go to Google or Youtube, from the MSN homepage. it loads as if it go to the page but then stays on MSN. I still have internet access but not through the browsers, which I find strange to me. I can access game clients on my desktop. I can load and play Spotify.

2 days ago, I was trying to connect my computer to the first time through HDMI to my Samsung SmartTV and I was messing with the resolutions to try to make it fit well, I was also trying to figure out how to get the sound to come out of my tv instead but after searching, I was able to just reboot with my computer already connected to the tv and sound came. The reason I mention this is because after I disconnected my computer from the tv I notice my taskbar, window borders, icons, and all essentially "blown up" to be oversized. I checked all my settings, especially resolution, and it was at it's native 1600x900 for my laptop screen. So I don't know what could be going on. I was going to use the Refresh option that's available on Windows 8, but did not want to mess up anything you've had me do. Also its alot of data to get back. having to re-install programs and game clients and such.

I've attached the OTL log as requested.

 

Downloaded Chrome and GeekUninstaller from that link. Uninstalled Chrome from GeekUninstaller and rebooted the computer. Found nothing of Chrome except Crash reports under ProgramFiles(86x). I then downloaded Windows repair and I read in that program that it was recommended to run it as soon as I booted the computer, but I had to open up Tor first to access the next set of instructions, and I opened another program as well, but then I closed all available programs, even ZoneAlarm since Windows Repair said it may interfere. I set Windows Repair to reboot after it finished and that's just what I found this morning.

I then went to install Google Chrome from my downloads folder and the white box Chromeupdate.exe opens to connect to the internet, was stuck STILL on "connecting to the internet" i confirmed to see if there was any internet traffic through Task manager, and I wasn't streaming or doing anything else. Send/Receieve were both at 0kbps. I ran Hitman and I've attached the log. Apart from Chrome not wanting to install from normal boot, Internet Explorer still wont go to majorgeeks.com or google.com. So nothing resolved on that front.

One thing to note is after I ran the OTL fix last time you instructed, but before I replied with the log attached, I went to putlocker through Google Chrome which I had installed via Safe mode with networking, and since I was unable to access Chrome extensions, I was unable to re-install Adblocker plus, which I normally have, and it prevents alot of pesky things from popping up on sites like putlocker. Well, when I went to putlocker that day, it opened up a tab to an ad for FVL player for Chrome download. I clicked the "exit tab" button and it downloaded it. I was shocked. but at the same time ZoneAlarm caught it and says it treated it. Just something to note. Does Adblocker really do a good job in keeping me safe from viruses and malware obtained from ads such as those?

Also, I'm not sure what Windows Repair was meant to fix, but I still have oversized windows and taskbar and icons on my desktop. My icons are set to small. and my resolution is native to the screen I use. I don't know what could be the problem.

I'm doing the best I can following your instructions and I still seem to be stuck at square one.

 

So I don't know if you've been following my thread or not much, but do you know if from the perspective of malware, I'm still infected based on the logs? I was told ZoneAlarm is no longer effective as an Antivirus or Firewall. What would you recommend? Also, even when I had exited out of ZoneAlarm, I still couldn't install Chrome from normal boot. Was there perhaps some background process from ZoneAlarm possibly running that prevented me?

I will look into resolving my other issues in the software forums by the way.

Thanks a bunch Chaslang!

 

Attached is MGlogs.zip and the updated OTL log run as specified in post #15.

I received your reply late because by the time I read it, I had already uninstalled ZoneAlarm with the ZoneAlarm clean-up tool provided by MajorGeeks. I had then proceeded to install Private Firewall, and then Avast! Antivirus. While selecting the installation options for Avast! I unchecked the Google toolbar for Internet Explorer but left the "Install and set Google Chrome as the default browser" option checked to see if it would install. And after Avast! finished installing, it installed Chrome. I went to google.com, facebook.com, and youtube.com and they all worked, whereas previously they didn't. I apologize for getting ahead of myself.

I didn't think to check in with you first since we're still in the malware removal process. I hope I didn't mess anything up. The Netflix app which had come pre-installed with my computer was also working again, which prior to me installing Private firewall and Avast! antivirus was not working.

Something to note. Don't know if it has to do with the malware removal process or the culprit to my lowered resolution, but i have 2 files called desktop.ini on my desktop, and I notice they're configuration settings. What are they for?

 

ZAPrivacyService deleted successfully. Completed the final steps though I have a question on what programs it might benefit me to keep. They are

GeekUninstaller​

AdwCleaner​

I already have CCleaner where I by default uninstall programs. Also, what is the purpose of downloading the malware removal/scanning programs? So malware is not able to infect it if it is in a folder?

Thanks again Dr. Moriarty for your help in ridding me of the pesky malware, and Chaslang for buttoning up!

 

I neglected to say, to the desktop. why download to the desktop instead of for example to the downloads folder where the rest are.