Possible malware, firefox sloooow

Discussion in 'Malware Help (A Specialist Will Reply)' started by Love3angle, Dec 22, 2013.

  1. Love3angle

    Love3angle Private E-2

    Hello & Happy Holidays!

    My system is an ASUS about 6months old, 64bit, 4gb RAM, running windows 8. As soon as I bought it I went on your page on protecting myself and I run Avast free antivir, MalwareBytes Pro paid version, Comodo firewall, Spybot S&D (no tea timer), and Spyware Blaster.

    The system was fast at first but seemed to slow down each time there was a Windows update. :-\ but it really started crawling and firefox temporarily not responding after my daughter used it for a school project googling pages and researching on Egypt. I told her to click "no" for any cookie permissions that popped up, and she says she did. Now it takes a long time for pages to load, and sometimes the whole thing gets stuck in an endless loop of Comodo asking me how to treat permissions and firefox asking me to allow/disallow cookies and the page never loads.

    I have followed the Read Me pages and have attached my logs below. Thank you for your help!
     

    Attached Files:

    Love3angle, Dec 22, 2013
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    It does not look like you are having malware problems because your logs are clean. Let's try a couple things.

    Now please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
    • The tool will open and start scanning your system.
    • Note: That JRT may reset your home page to a google default so you will need to restore your home page setting if this happens.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Attach JRT.txt to your next message.


    Now uninstall whatever Comodo Software that you have installed and reboot your PC. See how things are working now.
     
    chaslang, Dec 22, 2013
    #2
  3. Love3angle

    Love3angle Private E-2

    Ok, I disabled Comodo firewall, Avast AV, MalwareBytes, spyware blaster and Sbybot. And ran Junkware removeal Tool.

    Question: When I was running the scans from the read-me page, it looked like Hitman found something. That wasn't anything important?

    I've attached the junkware log here. Also removed Comodo firewall. What would you recommend I use as a firewall? Any other recommendations for what I'm currently using?
     

    Attached Files:

    • JRT.txt
      File size:
      759 bytes
      Views:
      1
    Love3angle, Dec 22, 2013
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Your Hitman log did not show anything.

    Comodo Firewall is fine. My point about uninstalling Comodo was to see how things work after uninstalling what you had. It look like more than a firewall was installed.
     
    chaslang, Dec 22, 2013
    #4
  5. Love3angle

    Love3angle Private E-2

    Sorry, my bad. It was in teh RKreport. it turned up some registry keys it didn't like:
    ¤¤¤ Registry Entries : 8 ¤¤¤
    [HJ POL][PUM] HKLM\[...]\System : DisableTaskMgr (0) -> FOUND
    [HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
    [HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
    [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableTaskMgr (0) -> FOUND
    [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND
    [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
    [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
    [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

    As for the firewall, I thought I only installed that, but may have accepted more. I'd prefer one that's easier to use. Everything is moving much faster without it, even with all the AV stuff turned back on, but I can't go firewall-less. Suggestions?
     
    Love3angle, Dec 23, 2013
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Last edited: Dec 23, 2013
    chaslang, Dec 23, 2013
    #6
  7. Love3angle

    Love3angle Private E-2

    Thanks! I've reinstalled COMODO and paid closer attention to unchecking extra boxes, and turned off Windows firewall. so we'll see if it goes better this time. If not, I'll try another.

    Thanks for the help! You're always awesome!
     
    Love3angle, Dec 23, 2013
    #7
  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome.

    Since you are not having malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    3. Renable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    4. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    5. If running Vista, Win 7 or Win 8, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    6. Now goto the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    8. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    10. After doing the above, you should work thru the below link:
     
    chaslang, Dec 23, 2013
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds