Help please

Re: help me to remove download.pysme.fc

You need to attach the log from ComboFix as was requested in the READ & RUN ME. Also MGtools did not run properly. Did you notice any error messages when you ran it? Try running C:\MGtools\GetLogs.bat by double clicking on it. Watch for error messages as noted on the MGtools.exe download page. Let me know if you see any errors. If it appears to run properly, attach the new C:\MGlogs.zip file that will be created.

In your first message you said

There is no such program. I assume you meant AVG Anti-Spyware.

I suggest that you flush your FireFox and Internet Explorer caches.

 

That message was explained on the Using MGtools download page and you need to apply the fix that was given. This is a Windows problem not a problem with MGtools. This fix could also help resolve your issues with ComboFix. You should not be trying to do anything with ComboFix except what was requested in the READ & RUN ME.

YOU MUST NOT WORK in multiple forums. If you wish to continue in another forum, that is fine. But do not continue to work here if you are going to be following any instructions given in another forum.

 

You are not having malware problems. Those detections by AVG AS are just related to forms and html pages on websites you are accessing (probably http://www.arsenal.com/ ) In addition running the scan removed them anyway. However if you access this website again, the same files will appear in your browser cache again. You can just flush your browser caches to remove all this junk. They are not problems.

You do have issues though and they are not malware. Your issues are your over use of realtime antispyware protection when there should be only one. You have all of the below running:

• Windows Defender
• AVG Anti-Spyware <-- yes this was installed via the READ ME & after the trial period will not be a blocker
• Comodo BOClean
• SpybotSD TeaTimer <-- the READ ME even stated not to run this
• Spyware Doctor

Disable Teatimer and then uninstall all but one of the others.

And multiple popup blockers when you only need one. You have the below running:

• Ad Muncher
• CleanMyPC Popup Blocker

 

Is your copy of Spyware Doctor a paid version or free trial?

Are you still referring to the thigs that show up as psyme? If so, it does not look like it is from hotmail. It is from when you open your browser. Your home page is set to http://www.arsenal.com/ which appears to related to those detections, but I don't know that this is 100% the reason. All I can say is it appears to be related to where you are surfing and appears to be related to something where forms are filled in.

 

Then keep it and uninstall all of the below.

• Windows Defender
• AVG Anti-Spyware
• Comodo BOClean

Also Disable Spybot's TeaTimer as requested in the READ & RUN ME

• Run Spybot and click Mode
• Select Advanced Mode.
• Then click Tools and select Resident.
• Now in the right window pane, uncheck TeaTimer.
• Also while this is open, in the left column now select IE Tweaks
• and then in the right pane make sure all the Miscellaneous locks are unchecked.
• Now quit Spybot!

I doubt it! You will have to research this in the Software Forum.

Whatever web pages you are going to are the cause of what you are seeing in your AVG Antispyware log. Uninstall AVG AS as requested above and stop worrying about this. You can just flush your IE cache at any time to remove junk from it.

To flush your Internet Explorer Cache:

• click Tools
• Internet Options
• Now on the General tab and click Delete Files and select Delete all Offline content too
• Click OK.
• When it finishes Click OK.

To flush your FireFox Cache:

• click Tools
• select Options
• select Privacy
• in the section labeled Private Data click Clear Now

Now complete the below steps and make sure that you do not skip the part in the How to protect yourself thread that mentions getting your Windows Updates.

1. If we used Pocket Killbox during your cleanup, do the below
   • Run Pocket Killbox and select File, Cleanup, Delete All Backups
2. If we used ComboFix then UNINSTALL COMBOFIX (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
   • Click START then RUN
   • Now type combofix /u in the runbox and click OK.
   • Note: The space between the X and the /U, it must be there.
3. If we user SDFix you can delete all the SDFix related files and folders from your Desktop or whereever you installed it.
4. If we used SmitFraudFix, you can delete all files and folders related to it now including the c:\rapport.txt log.
5. If we used VundoFix, you can delete the VundoFix.exe file and the C:\VundoFix Backups folder and C:\vundofix.txt log that was created.
6. If we had your run FixWareOut, you can delete the Fixwareout.exe file and the C:\fixwareout folder.
7. If we had you run Avenger, you can delete all files related to Avenger now.
8. If we had you run RenV.exe, you can delete it and the Log.txt file on your Desktop.
9. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
10. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
11. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
12. If you are running Windows XP or Windows ME, do the below:
    • Refer to the cleaning steps in the READ ME for your Window version and see the steps to Disable System Restore which will flush your Restore Points.
    • Then reboot and Enable System Restore to create a new clean Restore Point.
13. After doing the above, you should work thru the below link:
    • How to Protect yourself from malware!

 

This is not a topic for this forum! Please post in the Software Forum.

 

I have explained to you multiple times that you are not really having a problem with psyme. I also said you can just flush your cache and these will all be gone. Those items appearing in your TIF are due to websites that your are accessing and they are not really problems. I also said you should uninstall AVG Antispyware since it is the only thing giving you these reports that appear to be false. If you don't wish to believe me then there is nothing I can do for you.

 

You're welcome. Surf safely.