Main Forum > General Computer Support
Should TCP Viewer show my system BLOWING UP? Malware, Spyware & Hijacked, OH MY!
JohnVanDaal:
You said you didn't recognize some of the apps/programs so I came back to mention that a couple of the tools folders I renamed so they wouldn't get deleted, but they're basically similar to the original name, but I remembered something else that might possibly factor into some of this.
The VPN I'm using is CyberGhost and it has features to protect IP and also to protect from website tracking, including masking the OS & Browser type/model.
The only thing is for some reason it's not letting me pull up the UI right now so I'm unable to copy exactly what the features are and VPN is pretty new to me, like everything else actually. I know I don't have the OS/Browser hide checked, but I'm sure I have the tracking protect features checked. I'll try to get to the UI as soon as possible if you think it's a need-to-know type thing.
Boggin:
Can you open the admin cmd prompt again and either enter or copy & paste -
findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log\ >"%userprofile%\Desktop\sfcdetails.txt" and that will output to your desktop just the files it has scanned as the CBS log is quite large when it details all of its operations.
While this tutorial for sfc /scannow is given for Win 7, it pre-dates Win 8 but is still good to use. http://www.sevenforums.com/tutorials/1538-sfc-scannow-command-system-file-checker.html
You can also use these DISM commands in Win 8.1 http://technet.microsoft.com/en-gb/library/hh824869.aspx and use the Refresh option method of recovery should the sfc /scannow or CheckHealth cmds find anything that requires attention.
The Refresh option in Win 8.1 is pretty much like a Repair Install in Win 7 where it just repairs the OS without wiping everything else out.
You could use Win 8.1's Windows Defender supplemented with Avast Free as the latter doesn't have its own firewall and will run with any other active AV program because of that - but if you decide to go that route, check that WD is turned on.
The 1/50 VirusTotal.coms are nothing to worry about and it probably snagged AdwCleaner because of its intrusive capabilities.
Instead of Browser Guard, try HitmanPro.Alert which I know doesn't cause a conflict - I'm running that with Norton 360 in Win 7 x64 HP.
http://www.surfright.nl/en/cryptoguard
I Googled the McAfee LifeSafe and SafeKey but it's up to you if you want to keep them - don't think they would cause any conflicts but I don't like any Toolbars on my laptop - least of al anything from McAfee.
I think MBAM Anti-Exploit should be okay - I just have the free version of MBAM installed.
To eliminate any possible security program conflicts, it's probably just to go back to basics for the purpose of troubleshooting and then you can decide what you want to add/change later.
JohnVanDaal:
Thanks for the links. Not only are computers speaking a different language, they're in a totally different dimension, but with the right information it's not so bad.
As of right now I'm getting this with the Admin Cmd Prompt
FINDSTR: Cannot open C:\Windows\Logs\CBS\Cbs.log\
The file is still there, I checked. Is there a different route to take on this one? I tried using GMP for higher elevation but no deal.
JohnVanDaal:
It looks like something was getting lost in the translation, I copied the text from the http://www.sevenforums.com/tutorials/1538-sfc-scannow-command-system-file-checker.html page and it worked just fine.
[Edit: Here is the above text copied and pasted findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log\ >"%userprofile%\Desktop\sfcdetails.txt"
and here is the text directly from the website findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfcdetails.txt"
See it?]
Here it goes:
jraju:
Hi, Since you mentioned there are loss of SR Points, i think that some PUP or rootkit would have messed up the things. I think that you have done all the test and the results show needed and not known details to locate the exact problem.
I do not mean that you got this virus or rootkit from suspicious sites, but nowadays everything is bundled in to the genuine downloads.
Please there is a way to limit the sfc details txt to only know the problematic area which is given in sevenfourm links. If i remember i will enclose the link. SFC only scans about system integrity files and copies the missing essential files from the storage the installation drive the computer has. I think that your problem needs Shanes deep look in to the logs.
Applying many tools in my case has made my some system files deleted which has to be replaced. I would therefore request you to send the problematic log files from sfc details.txt and await Shanes advice
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version