Help With Issues

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by kdunc31, Nov 23, 2017.

  1. kdunc31

    kdunc31 Private E-2

    About 2-3 weeks ago my computer started resetting things, screen resolution, desktop, never homepages on my browsers. My cursor/pointer has a working circle next to it most of the time when it appears nothing is going on, help please. I have ran the scans and attached all the reports, hopefully I did everything correctly. Its been 3-4 years since I have used your help, and you guys have always been there to help in the past.
     

    Attached Files:

    kdunc31, Nov 23, 2017
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Download ZHPCleanerto your desktop.

    Close all applications (including your web browsers and antivirus)
    Double-click on ZHPCleaner to run the tool.
    If you are using Windows Vista, 7/8/10; instead of double-clicking, right-mouse click ZHPCleaner and select "Run as Administrator".
    Please click the "J'accepte/I agree" button.
    First press the "Scanner" button. Be patient, the scan may take some time.
    Do NOT fix/repair anything yet! Please upload that logfile also with your next reply.
     
    TimW, Nov 23, 2017
    #2
  3. kdunc31

    kdunc31 Private E-2

    i had to switch browsers after that scan, not sure if thats the problem but im using chrome instead of mozilla. After I logged into MG.com if would freeze up and give me this warning, Warning: unresponsive plugin, may e busy, or it may have stopped. you can stop the plugin now, or you can continue to see if the plugin will complete. Ive chosen both option, neither work, so here i am on chrome. I have attached the zhpscan.
     

    Attached Files:

    kdunc31, Nov 23, 2017
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Have ZHP clean everything it found. Then go to start/run/ and type in %temp% and clean out all it finds. Then I suggest you run CCleaner and run both the cleaner and the reg scan ( making the backup when prompted).

    Reset Firefox to Defaults

    Let me know how things are running.
     
    TimW, Nov 23, 2017
    #4
  5. kdunc31

    kdunc31 Private E-2

    Things are better, thanks for your help. Boot time was faster, the working curser is gone, that was the one that was annoying me the most. I could never tell if the dang thing was just spinning for no reason or if it was shwoing me it was working. Hitman, CCleaner, and Malwarebytes are showing to be running in my task bar, should they be?
     
    kdunc31, Nov 24, 2017
    #5
  6. kdunc31

    kdunc31 Private E-2

    i spoke too soon, the working/spinning icon on my curser is back.
     
    kdunc31, Nov 24, 2017
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please rerun RogueKiller and have it remove these items:
    ¤¤¤ Registry : 2 ¤¤¤
    [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-2891297401-1037396207-2603818493-1000\Software\IM -> Found
    [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-2891297401-1037396207-2603818493-1000\Software\IM -> Found

    Now rerun Hitman and have it remove these items:
    Potential Unwanted Programs _________________________________________________

    HKU\S-1-5-21-2891297401-1037396207-2603818493-1000\Software\IM\ (Sweetpacks)
    HKU\S-1-5-21-2891297401-1037396207-2603818493-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{54739D49-AC03-4C57-9264-C5195596B3A1} (Linkey)

    Next, please uninstall your Java. Run CCleaner again ( both cleaner and reg).

    Reboot and rescan with RogueKiller and Hitman and attach the logs.

    Now download and install:
     
    TimW, Nov 24, 2017
    #7
  8. kdunc31

    kdunc31 Private E-2

    here you go.
     

    Attached Files:

    kdunc31, Nov 24, 2017
    #8
  9. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your logs are clean. If you continue to have issues with your pointer, I suggest you post in the software forum.

    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Re-enable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    3. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    4. If running Vista, Win 7 or Win 8 or 10, it is time to make sure you have re-enabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Now go to the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 or 10 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    7. After doing the above, you should work thru the below link:
     
    TimW, Nov 24, 2017
    #9

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds