hi i need help fixing a alg.exe problem

Welcome to Major Geeks!

We cannot help you until you attach the 5 requested logs.

 

Please remember no inline logs!!


You are way out of date with your version of Malwarebytes and also SUPERAntiSpyware is out of date.

• Please uninstall your current version (this is necessary).
• Then download this SUPERAntiSpyware
• Install this new version. It may tell you that you need to reboot to complete the installation. You must reboot at this time.
• After the reboot, run SUPERAntiSpyware and immediately click the Check for Updates button to get more updates for the database.
• Now run a new full scan of your system. And attach this new log.

Now run Malwarebytes and click the Update tab. Then click the Check for Updates button so you update to the current version of the program and database. Then run a new scan with it too. Make sure you fix the problems found before saving a log. Attach the new log.

 

You are also using MSconfig to control startups see step 4 of the READ & RUN ME and put your PC into normal startup mode. Then reboot and rerun MGtools and attach a new log.

 

I don't know what this means! Are you sure about this error message? If you are trying to say you could not update it online then you should have used the instructions we gave you in the READ & RUN ME for performing manual updates The below link was given:

Malwarebytes' Anti-Malware Database

No did not!

• You did not update Malwarebytes properly to the current database
• you did not run the new version of SUPERAntiSpyware and attach the requested log.
• And your PC is still not in normal startup mode. You still have ZoneAlarm Client disabled with MSconfig. It is not a good idea to have your firewall disabled.

However the partially updated Malwarebytes appears to have removed your false alg.exe problem.

 

Where's the new log?

Also where is the new log from SUPERAntiSpyware and also MGtools after you properly put your PC into Normal Starup mode as requested a few times now. I cannot help you if you don't follow instructions.

What error? You need to give exact word for word details. Remember we cannot see your PC and we are not mind readers.

I don't know what you are talking about.

 

You need to provide the exact word for word message! This is not a known error and it sounds like you are leaving out details. And this happens everytime you reboot your PC?

 

Okay then we will see if we can fix this.

Since it is stuck in MSconfig part of it is not running as required at startup. I suggest that you uninstall it. Then reboot. After reboot, reinstall it.

You cannot attach the same old logs. You need to run new scans before you attach the logs again. Did you update Malwarbytes using the manual procedure? Did you run a new scan?

 

Excuse me but what the heck is the below??????????

Have you read the below sticky?

Warning about Porn, Keygens, Cracks, and other Illegal Software

 

You really don't think the below name of the file alone tells you it is a crack???

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

R3 - URLSearchHook: (no name) - *{03402f96-3dc7-4285-bc50-9e81fefafe43} - (no file)
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)

After clicking Fix, exit HJT.

Please download OTM by Old Timer and save it to your Desktop.

• Right-click OTM.exe and select Run as administrator to run it.
• Copy the lines from the below codebox to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy): Do not include the word Code: which is just a title line of the code box

Code:

:Files
C:\ProgramData\Kaspersky Lab Setup Files
C:\ProgramData\McAfee
C:\Windows\TEMP\0949a6e6-0c17-4026-b520-849b7f85cf91.tmp
C:\Windows\TEMP\0ef4847b-5387-4743-a838-39545a3800f2.tmp
C:\Windows\TEMP\0f9428b7-17fb-48fa-b52d-3d51384c2702.tmp
C:\Windows\TEMP\18aacf83-f136-4e9d-b9de-f066f3b0bf6d.tmp
C:\Windows\TEMP\1a55651f-9fc6-4df0-8f8b-3da6582aee29.tmp
C:\Windows\TEMP\256e851c-b406-43f2-920b-42a93c5ce53a.tmp
C:\Windows\TEMP\329f99da-be8c-4e27-83f9-69511e9b295f.tmp
C:\Windows\TEMP\37ae3741-e69d-461d-8372-7084d42d750f.tmp
C:\Windows\TEMP\3c6c50bf-d265-4366-aa3b-dda205b44c0a.tmp
C:\Windows\TEMP\401b1014-14df-4821-8adc-f281109d7db6.tmp
C:\Windows\TEMP\434dcce7-83d9-48d3-9b3c-9d2053702b3a.tmp
C:\Windows\TEMP\474a7ab1-662c-4bbc-bf6e-27ddceb30a62.tmp
C:\Windows\TEMP\5dc17ebe-0bac-4c00-aad9-39054d1f998a.tmp
C:\Windows\TEMP\6238667f-392d-467f-8b80-45359dedd159.tmp
C:\Windows\TEMP\6441f275-dbcb-48d7-8618-716b1e1047f1.tmp
C:\Windows\TEMP\68443641-274f-4987-a899-bf8e0bc822d8.tmp
C:\Windows\TEMP\78a88263-65a0-4963-953d-37618c44e45b.tmp
C:\Windows\TEMP\839ea5fd-62d9-40e9-b5d7-0e05ff617401.tmp
C:\Windows\TEMP\87b24aae-ac20-4dc0-8897-df9c5a30abb4.tmp
C:\Windows\TEMP\89fc6d6c-6e97-4cdd-be7f-be6c133402b8.tmp
C:\Windows\TEMP\96c49c5d-efa8-4e0e-b508-e7b4c41f9af3.tmp
C:\Windows\TEMP\eadf03fe-8483-4473-bfc2-72ea9a359068.tmp
C:\Windows\TEMP\fe7bea5a-8294-4ca9-970c-60f821c5adea.tmp
C:\Windows\TEMP\UDD25CE.tmp
C:\Windows\TEMP\UDDF49C.tmp
C:\Users\connor\Local Settings\TEMP\022210191612
C:\Users\connor\Local Settings\TEMP\8sCr1dvW.exe.part
C:\Users\connor\Local Settings\TEMP\ks_2k6wv.cmdline
C:\Users\connor\Local Settings\TEMP\~DF36A462ECFCF0947A.TMP
C:\Users\connor\Local Settings\TEMP\~DF5A949252B9DBB73B.TMP
 
:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ZoneAlarm Client]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state]
"services"=dword:00000000
"bootini"=dword:00000000
"startup"=dword:00000000
:Commands
[purity]
[createrestorepoint]
[clearallrestorepoints] [B][COLOR=purple]<<< don't use this unless all finished with malware removal[/COLOR][/B]
[EmptyTemp]
[start explorer]
[Reboot]

• Return to OTM, right click in the Paste List of Files/Folders to Move window (under the yellow bar) and choose Paste.
• Now click the large http://forums.majorgeeks.com/chaslang/images/MoveIt!.png button.
• If OTM asks to reboot your computer, allow it to do so. The report should appear in Notepad after the reboot.
• Close OTM.

Now navigate to the C:\_OTM\MovedFiles folder ( assuming your Windows drive is C). This is where your log will be saved in the form of Date and Time mmddyyyy_hhmmss.log. Just look for the most recent .log file. Attach this log file to your next message.

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

• the C:\_OTM\MovedFiles log
• C:\MGlogs.zip

Make sure you tell me how things are working now!