Think I am being attacked by malware

[AaronBelfast]

Hello guys I think my computer has been hacked or is infected by something I keep getting pop up windows clicking on websites even know I have addblocker on and a while ago I was getting bsod but that has stopped, I need to know if I reinstall windows 7 will this all go away, thanks in advance for your help

 

[VistaKing]

AaronBelfast welcome to SevenForums

AdwCleaner

Click here AdwCleaner

:ar: Click on Download Now button

:ar: Save to the Desktop

:ar: Right-click on AdwCleaner.exe and choose

:ar: Click the Scan button


:ar: Upload the AdwCleaner[Rn].txt in your reply.

   Note

The log file is at C:\AdwCleaner

Once you have clicked on Scan click on the Clean button

 

[AaronBelfast]

Thank you mate I will try this out now

 

[VistaKing]

Upload the logs when you're done . They will be located in C:\AdwCleaner folder .

 

[AaronBelfast]

When I try to download it says its not safe I am running norton

 

[VistaKing]

Disable Norton for a moment . Then retry to download . Personally I think Norton is horrible .

 

[AaronBelfast]

I don't know what is going on I have disabled norton and when I finish download it pops up again saying not safe, See if I just reinstall windows will everything not be back to normal also what anti virus do you recommend thanks in advance

 

[VistaKing]

Everyone here recommends MSE . Do you have another PC that you could download from use a USB Flash Drive and transfer the app from the USB to the Desktop of the infected PC ?

 

[AaronBelfast]

I only have the one, I will be able to get my hands on one in a couple of days but need computer fixed asap

 

[VistaKing]

Can you take a screen shot of the error message you're getting

 

[madcratebuilder]

Listen to VistaKing, get Norton off your system. MSE is going to be the least resource intensive antivir you can use with W7. IMHO many of the so called anti virus programs that are popular with many users are more like ad ware then anti virus. I refuse to use anything that installs a tool bar on my web browser. I decide what goes on my OS not some software manufacturer.

Avira is a good antivir and I used it for years until I tried MSE, now it's MSE real time and MBAM/SASW once a week.

Keep working at getting AdwCleaner, it does the job. Much less work than installing a fresh OS.

 

[AaronBelfast]

Hello sorry for taking so long to reply I have downloaded and run that program I think my computer might be fixed cheers mate, here is my logs

 

[VistaKing]

Run these please

Junkware Removal Toolkit

Click here Junkware Removal Tool to download

Drag the JRT.exe from the Downloads folder to your Desktop

Right click JRT.exe and choose

Once done upload the JRT.txt file

Farbar Recovery Scan Tool


64-Bit Version OS Farbar Recovery Scan Tool x64 <===== Download Link

Drag the FRST64.exe from the Downloads folder to your Desktop

Right click on FRST64.exe and choose

When the tool opens click Yes on the disclaimer window .

Press Scan button.

FRST will let you know when the scan is complete and has written the FRST.txt to file

   Note

The first time Farbar Recovery Scan Tool is run, it makes also another log Addition.txt

Please upload both logs in your reply.(FRST.txt and Addition.txt)

:note: FRST.txt and Addition.txt will be on the Desktop :note:

Upload a File
Click on the Go Advanced button under the Message box . Scroll down to Additional Options then click on Manage Attachments in the Attach Files sections . Click the Browse button locate the file then click on the Open button . In the Upload File from your Computer section click on the Upload button . Wait until it finishes uploading then close the window . Then click Submit Reply .

 

[AaronBelfast]

Here you go mate

 

[VistaKing]

Download

HitManPro

64-Bit Version OS :ar: HitmanPro_x64

32-Bit Version OS :ar: HitmanPro

:ar: Save to the Desktop

:ar: Right click on HitmanPro.exe and choose

:ar: When HitmanPro opens up click on Settings uncheck Scan for tracking cookies . Click on OK . Then click on the Next button

:ar: Click on No, I only want to perform a one-time scan to check this computer on the Setup page . Click Next once done .

:ar: Let it scan the PC once its done Click Next

:ar: Click Activate free license to start the free 30 days trial and remove all the malicious files from your computer then click Next

Upload the log . Locate in C:\ ProgramData\Hitman Pro\Logs

Then run

Malwarebytes


Update the definitions and do a full scan

:ar: On the Scanner tab:
Make sure the "Perform Full Scan" option is selected.
Then click on the Scan button.
:ar: If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
:ar: The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
:ar: When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
:ar: Click OK to close the message box and continue with the removal process.
:ar: Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.
:ar: Make sure that everything is checked, and click Remove Selected.
:ar: When removal is completed, a log report will open in Notepad.
:ar: The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
:ar: Copy and paste the contents of that report in your next reply and exit MBAM.

Log looks like this : mbam-log-yyyy-mm-dd

Log located : C:\Users\{Your UserName}\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs or C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs

 

[AaronBelfast]

Malwarebytes Anti-Malware 1.75.0.1300
Malwarebytes : Free anti-malware download

Database version: v2013.08.22.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
User :: USER-PC [administrator]

23/08/2013 23:00:38
mbam-log-2013-08-23 (23-00-38).txt

Scan type: Full scan (C:\|D:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 344431
Time elapsed: 36 minute(s), 40 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\Users\User\Downloads\setup(1).exe (Adware.Linkular) -> Quarantined and deleted successfully.
C:\Users\User\Downloads\setup(2).exe (Adware.Linkular) -> Quarantined and deleted successfully.
C:\Users\User\Downloads\setup.exe (Adware.Linkular) -> Quarantined and deleted successfully.

(end)

 

[AaronBelfast]

hitman

 

[VistaKing]

Inside Firefox

Tools > Options > Advanced : Network : Connection

then select No Proxy

Click Ok

 

[VistaKing]

Scan on one Browser . Either

or on

or

On

Hold down Control and click on ESET Online Scanner to open ESET OnlineScan in a new window
Click the

button
Check YES, I accept the Terms of Use.
Click the Start button.
Accept any security warnings from your browser.
Under scan settings, check "Scan Archives" and "Remove found threats"
Click Advanced settings and select the following:
° Scan potentially unwanted applications
° Scan for potentially unsafe applications
° Enable Anti-Stealth technology
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
When the scan completes, click List Threats
Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
Click the Back button.
Click the Finish button.


On

or

Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
Right click on

choose

on your desktop
Check YES, I accept the Terms of Use.
Click the Start button.
Accept any security warnings from your browser.
Under scan settings, check "Scan Archives" and "Remove found threats"
Click Advanced settings and select the following:
° Scan potentially unwanted applications
° Scan for potentially unsafe applications
° Enable Anti-Stealth technology
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
When the scan completes, click List Threats
Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
Click the Back button.
Click the Finish button.

 

[AaronBelfast]

Done