SVChost.exe

That's good.. We are making progress...
How's it doing now?

There are still a few little things that I would like to clear up for you. I see you have an old version of MBAM. Do you have the lifetime license for it? If so you can update to the new Ver 2 and your license will work ok on it.

And a few other things but first:
Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.

• Right-click on icon and select Run as Administrator to start the tool.
  
• This time make sure that Addition option is checked.
• Press Scan button and wait.
• The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.

Please attach the logs to your next reply.

2oG

 

I haven't had the virus notice come up, so headway there. The comp seems to be responding much faster, as well.

 

First, uninstall the following (skip lines that cannot be uninstalled)
To do so:

• Press the + R on your keyboard at the same time. Type appwiz.cpl and click OK.
• Search for the program, right-click the entry and click Uninstall.

Advanced SystemCare 6
Java(TM) 6 Update 24
Java Auto Updater
Spybot - Search & Destroy <- see note

note: SpyBot S&D is no longer recommend due to very poor testing results. See here -> MVPS.org (scroll down and read under Freeware Antispyware Products).
My advice is to get rid of this program. This is optional, but please consider it.

I recommend leaving Java off your PC - you really don't need it and it's a magnet for Exploits.
If you ever have a program that needs it, you will be asked to install it. Also optional, your choice..
Latest versions of Java available here --> Java
Make sure to uncheck optional offers.

After completing uninstalls, please manually reboot your machine!


- - - - next - - - -



Fix with Farbar Recovery Scan Tool

This fix was created for this user for use on that particular machine.
Running it on another one may cause damage and render the system unstable. ​

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

• Right-click on icon and select Run as Administrator to start the tool.
  
• Press the Fix button just once and wait.
• If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
• When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.

Let me know how's the PC now and were you able to get MBAM V2?

2oG

 

I have the free version of MBAM, so no upgrades. I can't afford to buy the version. Very fixed income.

 

Fixlog finished very quickly.

 

Now Alryss, I didn't just get off the banana boat... lol The free version is not a real time scanner and doesn't give pop-up notifications.....

If you have a cracked version, it probably won't update but, if it has a key, from say a key gen, it would probably update OK........ and I know nothing! It would be better that an old version.

How is it doing now???

If you will run some fresh FRST Logs, I'll look them over and give you a release....

Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.

• Right-click on icon and select Run as Administrator to start the tool.
• This time make sure that Addition option is checked.
• Press Scan button and wait.
• The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.

Please attach the logs to your next reply.

2oG

 

Seriously, when I downloaded the program, I downloaded the free edition. I've never used a hack on it and it keeps updating itself. Here are the latest scan reports.

 

I guess you're just lucky, mine didn't grant me that much privilege.

Well, you are as clean as an old maids parlor so stay safe.....

Post-cleanup procedures:

Download DelFix by Xplode and save it to your desktop.

• To run the tool right click on the icon and Run as administrator option.
• Make sure that these are checked:
  • Remove disinfection tools
  • Purge system restore
  • Reset system settings
• Click Run and wait until the tool completes.
• All tools we used should be gone. Tool will create an report for you (C:\DelFix.txt)

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.

You and Heather have a Happy.. and anytime you get a bug, just give me a shout...
2oG

 

Thank you, very much. It was quite annoying. You have been very helpful. God bless.

 

God bless and Good Night.

 

you can also try adwcleaner

 

Come on ddp, this is a 30 post thread and that was way back at post #19. If you read a whole thread before posting to it, that would be like walking past an electric fence without stopping to pee on it... LMAO

 

you are right guys. sorry!

ADWCleaner is amazing and it worth mention it twice. It is a quick way to get rid off most theats before trying a malware bytes full scan

 

Don't be sorry, sotris, we were just having a little fun. AdwCleaner is good and I highly recommend it..

Surf Safely!
2oG

 

I used MBAM to clean up 4 threats. It cleaned them up, but suddenly I am getting a message "This copy of Windows is not genuine." I've been using this for 5 years. Why would it suddenly be not geuine? Also, my personal themes have gone dark and I can't seem to access them to re-install them. It lets me change to some of the older ones, but not my custom ones. This is all confusing. Thanks.

 

Hi Alryss,

You should not have had any malware this soon...

That is why I was questioning you about the MBAM that you had installed.
You said:

The Free version does not have realtime scanning and will not notify of out going connections.
Free version does not update its self..

Do what ddp said and uninstall that MBAM It could have a rootkit. Then post some FRST logs and I'll look for a rootkit and maybe a trojan hiding there.

Scan with Farbar Recovery Scan Tool

Please download Farbar Recovery Scan Tool x64 and save it to your Desktop.

• Right-click on icon and select Run as Administrator to start the tool.
  
• When the tool opens click Yes to disclaimer.
• Make sure that Addition option is checked.
• Press Scan button and wait.
• The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.

Please attach their content into your next reply.

 

RemoveWGA tells me "Notification Tool is not currently active on your system. Running Farbar now.

 

Here are the results.