Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Problem after Removing Xvidly Browser Hijacker
Message
<blockquote data-quote="Dezbot" data-source="post: 133605" data-attributes="member: 11183"><p>Here are the first two. Eset is attached as a file (that scan took over 10 hours, yikes!), but it wouldn't let me attach the HitmanPro file, so here is the copy & paste (see note about Kapersky after the HitmanPro info):</p><p></p><p>[code]</p><p>HitmanPro 3.7.7.203</p><p>www.hitmanpro.com</p><p></p><p> Computer name . . . . : HOME-PC</p><p> Windows . . . . . . . : 5.1.3.2600.X86/2</p><p> User name . . . . . . : HOME-PC\Desiree</p><p> License . . . . . . . : Trial (10 days left)</p><p></p><p> Scan date . . . . . . : 2013-08-27 13:53:04</p><p> Scan mode . . . . . . : Normal</p><p> Scan duration . . . . : 27m 29s</p><p> Disk access mode . . : Direct disk access (SRB)</p><p> Cloud . . . . . . . . : Internet</p><p> Reboot . . . . . . . : No</p><p></p><p> Threats . . . . . . . : 0</p><p> Traces . . . . . . . : 327</p><p></p><p> Objects scanned . . . : 1,050,800</p><p> Files scanned . . . . : 39,285</p><p> Remnants scanned . . : 420,113 files / 591,402 keys</p><p></p><p>Potential Unwanted Programs _________________________________________________</p><p></p><p> HKLM\SOFTWARE\Classes\c\ (Claro) -> Deleted</p><p></p><p>Cookies _____________________________________________________________________</p><p></p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ad.360yield.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ad.auditude.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ad.mlnadvertising.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ads.glispa.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ads.p161.net</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ads.pubmatic.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ads.undertone.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:adtechus.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:advertising.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:apmebf.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ar.atwola.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:at.atwola.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:atdmt.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:atwola.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:bs.serving-sys.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:collective-media.net</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:doubleclick.net</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:interclick.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:invitemedia.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:media6degrees.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:revsci.net</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ru4.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:serving-sys.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:statcounter.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:stats.paypal.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:tacoda.at.atwola.com</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:track.adform.net</p><p> C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:www.googleadservices.com</p><p> C:\Documents and Settings\Desiree\Cookies\4P43E8OC.txt</p><p> C:\Documents and Settings\Desiree\Cookies\8JLBJ5PT.txt</p><p> C:\Documents and Settings\Desiree\Cookies\BCK28MI4.txt</p><p> C:\Documents and Settings\Desiree\Cookies\D7331ZG6.txt</p><p> C:\Documents and Settings\Desiree\Cookies\FPX078LS.txt</p><p> C:\Documents and Settings\Desiree\Cookies\NPF0EL0D.txt</p><p> C:\Documents and Settings\Desiree\Cookies\NTS9S0TD.txt</p><p> C:\Documents and Settings\Desiree\Cookies\PCWBFR2X.txt</p><p> C:\Documents and Settings\Desiree\Cookies\PULRB65L.txt</p><p> C:\Documents and Settings\Desiree\Cookies\TL69T7ST.txt</p><p> C:\Documents and Settings\Desiree\Cookies\UQDTFY5Q.txt</p><p> C:\Documents and Settings\Desiree\Cookies\VKOYHXX3.txt</p><p></p><p></p><p>[/code]</p><p></p><p>--------------------------------------</p><p>When I tried to run Kapersky, my firewall (Zone Alarm) prevented it from setting "GrpCnv" (I think that was the name) to run on start-up and also prevented it from accessing the internet. I then got an error message that the installation failed and then my computer abruptly rebooted. Microsoft reports that it was a "blue screen" error:</p><p></p><p>>>Stop (blue screen) error caused by a device or driver</p><p></p><p>You received this message because a hardware device, its driver, or related software has caused a stop error, also called a blue screen error. This type of error means the computer has shut down abruptly to protect itself from potential data corruption or loss. In this case, we were unable to detect the specific device or driver that caused the problem. <<</p><p></p><p>What should I do? A friend came by this weekend and did extensive tests on the hard drive to see why it takes 20 minutes to boot fully (we got it down to 14 minutes now, yeesh), and the hard drive tests showed that the drive is in good shape and operating normally. He suggested a clean install and start from scratch, as apparently, my hard drive is churning away and something's constantly running, but he couldn't find what it was (we're assuming it's my anti-virus and firewall). As you can see from the number of files I have, that is a daunting prospect! OTOH, I would be rid of all malware <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /> Thank you for your assistance and any advice you have on this.</p></blockquote><p></p>
[QUOTE="Dezbot, post: 133605, member: 11183"] Here are the first two. Eset is attached as a file (that scan took over 10 hours, yikes!), but it wouldn't let me attach the HitmanPro file, so here is the copy & paste (see note about Kapersky after the HitmanPro info): [code] HitmanPro 3.7.7.203 www.hitmanpro.com Computer name . . . . : HOME-PC Windows . . . . . . . : 5.1.3.2600.X86/2 User name . . . . . . : HOME-PC\Desiree License . . . . . . . : Trial (10 days left) Scan date . . . . . . : 2013-08-27 13:53:04 Scan mode . . . . . . : Normal Scan duration . . . . : 27m 29s Disk access mode . . : Direct disk access (SRB) Cloud . . . . . . . . : Internet Reboot . . . . . . . : No Threats . . . . . . . : 0 Traces . . . . . . . : 327 Objects scanned . . . : 1,050,800 Files scanned . . . . : 39,285 Remnants scanned . . : 420,113 files / 591,402 keys Potential Unwanted Programs _________________________________________________ HKLM\SOFTWARE\Classes\c\ (Claro) -> Deleted Cookies _____________________________________________________________________ C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ad.360yield.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ad.auditude.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ad.mlnadvertising.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ads.glispa.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ads.p161.net C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ads.pubmatic.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ads.undertone.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:adtechus.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:advertising.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:apmebf.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ar.atwola.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:at.atwola.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:atdmt.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:atwola.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:bs.serving-sys.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:collective-media.net C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:doubleclick.net C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:interclick.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:invitemedia.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:media6degrees.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:revsci.net C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:ru4.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:serving-sys.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:statcounter.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:stats.paypal.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:tacoda.at.atwola.com C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:track.adform.net C:\Documents and Settings\Desiree\Application Data\Mozilla\Firefox\Profiles\gob53kom.default-1375844361031\cookies.sqlite:www.googleadservices.com C:\Documents and Settings\Desiree\Cookies\4P43E8OC.txt C:\Documents and Settings\Desiree\Cookies\8JLBJ5PT.txt C:\Documents and Settings\Desiree\Cookies\BCK28MI4.txt C:\Documents and Settings\Desiree\Cookies\D7331ZG6.txt C:\Documents and Settings\Desiree\Cookies\FPX078LS.txt C:\Documents and Settings\Desiree\Cookies\NPF0EL0D.txt C:\Documents and Settings\Desiree\Cookies\NTS9S0TD.txt C:\Documents and Settings\Desiree\Cookies\PCWBFR2X.txt C:\Documents and Settings\Desiree\Cookies\PULRB65L.txt C:\Documents and Settings\Desiree\Cookies\TL69T7ST.txt C:\Documents and Settings\Desiree\Cookies\UQDTFY5Q.txt C:\Documents and Settings\Desiree\Cookies\VKOYHXX3.txt [/code] -------------------------------------- When I tried to run Kapersky, my firewall (Zone Alarm) prevented it from setting "GrpCnv" (I think that was the name) to run on start-up and also prevented it from accessing the internet. I then got an error message that the installation failed and then my computer abruptly rebooted. Microsoft reports that it was a "blue screen" error: >>Stop (blue screen) error caused by a device or driver You received this message because a hardware device, its driver, or related software has caused a stop error, also called a blue screen error. This type of error means the computer has shut down abruptly to protect itself from potential data corruption or loss. In this case, we were unable to detect the specific device or driver that caused the problem. << What should I do? A friend came by this weekend and did extensive tests on the hard drive to see why it takes 20 minutes to boot fully (we got it down to 14 minutes now, yeesh), and the hard drive tests showed that the drive is in good shape and operating normally. He suggested a clean install and start from scratch, as apparently, my hard drive is churning away and something's constantly running, but he couldn't find what it was (we're assuming it's my anti-virus and firewall). As you can see from the number of files I have, that is a daunting prospect! OTOH, I would be rid of all malware :-) Thank you for your assistance and any advice you have on this. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
