Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - Rick

Pages: 1 [2] 3 4 ... 33
26
General Computer Support / Re: MSE keeps shutting down automatically... "Won't restart automatically"
« on: May 08, 2018, 08:03:14 am »
Download latest MSE engines;
https://support.microsoft.com/en-us/help/14210


27
General Computer Support / Re: MSE keeps shutting down automatically... "Won't restart automatically"
« on: May 08, 2018, 07:23:26 am »
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MsMpSvc]
@=""
"ServiceSidType"=dword:00000001
"RequiredPrivileges"=hex(7):53,00,65,00,4c,00,6f,00,61,00,64,00,44,00,72,00,69,\
  00,76,00,65,00,72,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,\
  00,00,53,00,65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,00,6e,00,61,00,74,\
  00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
  65,00,42,00,61,00,63,00,6b,00,75,00,70,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,52,00,65,00,73,00,74,00,6f,00,72,00,\
  65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,\
  00,44,00,65,00,62,00,75,00,67,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,\
  67,00,65,00,00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,00,65,00,4e,00,6f,\
  00,74,00,69,00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,\
  65,00,00,00,53,00,65,00,53,00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,\
  68,00,75,00,74,00,64,00,6f,00,77,00,6e,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,49,00,6e,00,63,00,72,00,65,00,61,00,\
  73,00,65,00,51,00,75,00,6f,00,74,00,61,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,\
  50,00,72,00,69,00,6d,00,61,00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,54,00,\
  63,00,62,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,\
  00,65,00,53,00,79,00,73,00,74,00,65,00,6d,00,45,00,6e,00,76,00,69,00,72,00,\
  6f,00,6e,00,6d,00,65,00,6e,00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,\
  00,67,00,65,00,00,00,00,00
"Type"=dword:00000010
"Start"=dword:00000002
"ErrorControl"=dword:00000001
"ImagePath"=hex(2):22,00,63,00,3a,00,5c,00,50,00,72,00,6f,00,67,00,72,00,61,00,\
  6d,00,20,00,46,00,69,00,6c,00,65,00,73,00,5c,00,4d,00,69,00,63,00,72,00,6f,\
  00,73,00,6f,00,66,00,74,00,20,00,53,00,65,00,63,00,75,00,72,00,69,00,74,00,\
  79,00,20,00,43,00,6c,00,69,00,65,00,6e,00,74,00,5c,00,4d,00,73,00,4d,00,70,\
  00,45,00,6e,00,67,00,2e,00,65,00,78,00,65,00,22,00,00,00
"DisplayName"="Microsoft Antimalware Service"
"Group"="COM Infrastructure"
"DependOnService"=hex(7):52,00,70,00,63,00,53,00,73,00,00,00,00,00
"ObjectName"="LocalSystem"
"Description"="@c:\\Program Files\\Microsoft Security Client\\MpAsDesc.dll,-240"
"FailureActions"=hex:80,51,01,00,00,00,00,00,01,00,00,00,03,00,00,00,14,00,00,\
  00,03,00,00,00,64,00,00,00,00,00,00,00,64,00,00,00,00,00,00,00,64,00,00,00
"FailureCommand"="C:\\windows\\system32\\mrt.exe /EHB /ServiceFailure \"CAMP=4.10.209.0;approximate-> Engine=1.1.14500.5;AVSIG=1.261.1581.0;ASSIG=1.261.1581.0\" /StartService  /q"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MsMpSvc\Security]
"Security"=hex:01,00,14,80,1c,01,00,00,28,01,00,00,14,00,00,00,30,00,00,00,02,\
  00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
  00,00,02,00,ec,00,08,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,\
  05,20,00,00,00,21,02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,\
  12,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,05,20,00,00,00,20,\
  02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,00,\
  14,00,9d,01,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,ff,01,0f,\
  00,01,06,00,00,00,00,00,05,50,00,00,00,b5,89,fb,38,19,84,c2,cb,5c,6c,23,6d,\
  57,00,77,6e,c0,02,64,87,00,00,28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,\
  00,00,00,3a,3f,54,17,c7,6d,22,66,67,bc,fc,c9,ee,26,9d,63,c9,b0,cf,b1,00,00,\
  28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,00,00,00,6c,5d,d9,28,cc,d7,59,\
  85,5a,0f,5a,55,be,f2,ab,71,4e,43,51,91,01,01,00,00,00,00,00,05,12,00,00,00,\
  01,01,00,00,00,00,00,05,12,00,00,00


28
General Computer Support / Re: MSE keeps shutting down automatically... "Won't restart automatically"
« on: May 08, 2018, 06:31:45 am »
MSE Services is grayed out


29
General Computer Support / Re: MSE keeps shutting down automatically... "Won't restart automatically"
« on: May 08, 2018, 06:20:29 am »
Did find that;

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval"=dword:00000001
"UpdatesDisableNotify"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1"=hex(b):19,0d,da,5d,3f,04,ca,01
"AntiVirusOverride"=dword:00000000
"AntiSpywareOverride"=dword:00000000
"FirewallOverride"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

30
General Computer Support / Re: MSE keeps shutting down automatically... "Won't restart automatically"
« on: May 08, 2018, 05:52:35 am »
Don't need invent problems


31
General Computer Support / Re: MSE keeps shutting down automatically... "Won't restart automatically"
« on: May 08, 2018, 05:41:18 am »
Yes, it was necessary run combofix;

downloaded this tool;
http://www.thewindowsclub.com/repair-microsoft-security-essentials-with-fix-mse-utility
after re-installing MSE,  this program says MSE is not installed;




32
General Computer Support / MSE keeps shutting down automatically... "Won't restart automatically"
« on: May 08, 2018, 05:21:32 am »
Already uninstalled, reinstalled
Combofix
Malware bytes

Image attached

33
General Computer Support / Re: WARNING "CLASS ONE"... and GAME ON!
« on: April 27, 2018, 10:58:22 pm »
Yes,

MWB caught the infection in administrator mode;
BEta testing it for several days to make sure it don't come back

I provide the THE .REG files as some of the sites said to remove the program through normal channels, yet it didn't appear their and .REG keys were locked, could not delete them in ADM mode...

It's time to start the AI reduction act next;

34
General Computer Support / Re: WARNING "CLASS ONE"... and GAME ON!
« on: April 27, 2018, 10:03:23 am »
Everyone knows ad companies looking for ways to avoid being blocked...

They tried with the best, they will fail with the rest!

FYI, .reg files needed to help companies enable clean fixes, including my favorite tweaking site!

Nice day

35
General Computer Support / Re: WARNING "CLASS ONE"... and GAME ON!
« on: April 27, 2018, 05:43:01 am »
Yes,

Will have a try; have a question;

Whats differences between https://toolslib.net/downloads/viewdownload/83-unhackme and "MWB"

"Seems to be hidden in Firefox"
Using Ublock origins, will remove this program to see the effect! "no effect".
Its extremely dangerous as it could capture the password file in firefox!

https://greatis.com/blog/how-to/cut-off-netutils2016-exe-virus.htm
Seems has a new name and can not delete registry values too...

{"ext":"http://jackhopes.com/ext/zl.sild.js","black_list":["google.com","facebook.com","jackhopes.com","ww-searchings.com"],"include_process_list":["spark.exe","chrome.exe","iexplore.exe","MicrosoftEdgeCP.exe","MicrosoftEdgeCP.ex","MicrosoftEdgeCP.e","MicrosoftEdgeCP.","MicrosoftEdgeCP","MicrosoftEdgeC","MicrosoftEdge","firefox.exe","citrio.exe","launcher.exe","crossbrowse.exe","torch.exe","opera.exe","bobrowser.exe","maxthon.exe","browser.exe","ucbrowser.exe","safari.exe","avant.exe","360se.exe","360chrome.exe"],"log":{"inj":false},"locker":{"enable":false,"url":"http://ww-searchings.com/?r=[UID]","target":{"spark.exe":"","chrome.exe":"","iexplore.exe":"","launchwinapp.exe":"","360se.exe":"","MicrosoftEdgeCP.exe":""}},"hosts":{"match":["v9.com","*.v9.com"],"target":"47.89.13.118"},"redirect":{"match":["www-searching.com/*"],"sig":"dir","target":"http://ww-searchings.com/?sig=dir&r=[UID]&f=[URL]"}}

"Note Zip file .reg keys"

Deleted it using "sysinternals" returned the file too;

Can send to MWB or offer solution

TIA

36
General Computer Support / Re: WARNING "CLASS ONE"... and GAME ON!
« on: April 26, 2018, 12:39:11 pm »
Clicking on any web page anywhere brings me to other websites...




37
General Computer Support / WARNING "CLASS ONE"... and GAME ON!
« on: April 24, 2018, 08:59:07 am »


Clicking on links does this;

http://www.reimageplus.com/lp/teg/index.php?tracking=XML&banner=Feed1_Open1_CN_0.1_TEFNMS2_EMPTY&adgroup=www.genome.jp&ads_name=KEGG%20BRITE%20Anatomical%20Therapeutic%20Chemical%20ATC%20Classification&keyword=direct&xml_uuid=A3BE1507-7242-421D-89E4-5052287622B6&nms=2&lpx=tef

Curious how to get rid of this?

38
General Computer Support / Have a question "Spying scale level needs to be leveled"
« on: April 15, 2018, 12:27:44 am »
Is there a way people can kill these services?

https://www.yahoo.com/news/facebook-listen-microphone-track-youre-logged-facts-120451355.html

Poor facebook caught giving foreign countries the upper hand;

How can one sure to delete any facebook services from the registey?


39
General Computer Support / Re: what is proxyfire.net doing under 127.0.0.1
« on: April 15, 2018, 12:24:20 am »
better to know it's safe than sorry;

TIA

40
General Computer Support / Re: what is proxyfire.net doing under 127.0.0.1
« on: April 14, 2018, 12:02:41 am »
Opened that folder, copied the files here for viewing

Let me know anything needs attending

rather busy recently

TIA


41
General Computer Support / Re: what is proxyfire.net doing under 127.0.0.1
« on: April 12, 2018, 06:32:52 pm »
Busy recently with work;

Can you post the command to grab the info?

TIA

42
General Computer Support / what is proxyfire.net doing under 127.0.0.1
« on: April 06, 2018, 07:22:10 pm »
thanks in advance

yes boggin, I googled it before asking;


43
Tweaking.com Support & Help / Re: Boggin, Have a question
« on: March 29, 2018, 11:40:34 pm »
Guess what, almost needed to restore from SCRATCH ....

Be mindful of those programs;

44
General Computer Support / Spies everywhere;
« on: March 29, 2018, 11:39:11 pm »
What is LogTransport2.exe by adobe doing in my system?

logsession.dll

How to delete?

45
Tweaking.com Support & Help / Boggin, Have a question
« on: March 28, 2018, 01:09:37 am »
Bug free / Interactive virtual 360 software

Anywhere to compare?
Pros/Cons/Costs?

We will start to create virtual showroom tours

Thanks in advance

:)

46
General Computer Support / Re: How to view MSE Security Log Text Scan?
« on: March 14, 2018, 02:29:26 am »
Maybe well get lucky and MSFT will update the MSE all detected history to real time...
Might save us all some TIME...

47
General Computer Support / Re: How to view MSE Security Log Text Scan?
« on: March 09, 2018, 09:07:17 pm »
Well, it deletes the programs, but does it fix the registry too when deleting?

And, being able to view the log is as more important than the end result...

48
General Computer Support / Right click options gone from mozilla...
« on: March 09, 2018, 09:05:12 pm »
Is that the new norm?
if so, Mozilla just became an extinct browswer... "oh my, can not check my spelling without it"...

Dumbasses...

Question is; what browser can we switch too?

49
General Computer Support / How to view MSE Security Log Text Scan?
« on: March 08, 2018, 05:21:45 pm »
How to view text log of this report?

Thanks in advance


50
General Computer Support / Apple, Google ?
« on: December 25, 2017, 12:35:35 am »
I'm curious why you don't offer a free VPN for people wanting to buy shit from your site?

Imagine the growth you will see?

If I built a software platform that could only be available in USA, I wouldn't post it on apple

IE; Magic Jack for example is losing 40 percent per year from customers not being able to download or update;

Pages: 1 [2] 3 4 ... 33