Main Forum > General Computer Support

Windows 7 Ult 64 bit trapped by BSD and can not get out.

<< < (57/71) > >>

FreeCat:
OK, Boggin,

I will keep Malware bytes on your suggestion.

Speaking of which there were threats discovered overnight, below; I quarantined them.
Can you tell me how it works.  License is not activated and yet it did a scan without my asking overnight.  So, that must means it works in real time, maybe?

Is there a way to stop the nagging update message?  I remember once before I did subscribe (prolly on another machine) and it began nagging about all kinds of other products they have --- about 5 different things.  It never stopped so I un-installed it.
So, what it the difference between a malicious item and a threat?

So, we should quarantine both --- all the time?  When not to do that.

BTW, I stopped using IE many years ago.  IE let so much bad stuff on my other machine.  Nagging me, etc.  At least once a virus which messed up my machine.  It was a new machine and Dell fixed it and told me not to use it.  There were many articles about IE being bad, so I stopped all togehr using it in all machine.

But, now, some program will call it up even though I have Opera as my default.  I never had trouble with Opera and it is faster.

I had problems similar to IE with Firefox also, but I use it as my alternate only when some broadcast program like TOTOMEETING  does not work with Opera.  What about Safari?  How is that.  I do not like Chrome due to the nature of the Google corporation.  IMO, a bad company that does things behind your back.

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 4/5/18
Scan Time: 2:16 AM
Log File: e44b2086-3898-11e8-9311-00ff83c10af3.json
Administrator: Yes

-Software Information-
Version: 3.4.5.2467
Components Version: 1.0.342
Update Package Version: 1.0.4624
License: Trial

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: System

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 807301
Threats Detected: 12
Threats Quarantined: 0
(No malicious items detected)
Time Elapsed: 25 min, 36 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 1
PUP.Optional.FindWide, HKU\S-1-5-21-2396228472-3482715812-2186985281-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E8307B89-5F41-4591-83AE-91CC210327DF}, No Action By User, [314], [238383],1.0.4624

Registry Value: 4
PUP.Optional.FindWide, HKU\S-1-5-21-2396228472-3482715812-2186985281-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E8307B89-5F41-4591-83AE-91CC210327DF}|DISPLAYNAME, No Action By User, [314], [238383],1.0.4624
PUP.Optional.TNT, HKU\S-1-5-21-2396228472-3482715812-2186985281-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E8307B89-5F41-4591-83AE-91CC210327DF}|OSDFILEURL, No Action By User, [6697], [244085],1.0.4624
PUP.Optional.FindWide, HKU\S-1-5-21-2396228472-3482715812-2186985281-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E8307B89-5F41-4591-83AE-91CC210327DF}|FAVICONURL, No Action By User, [314], [238383],1.0.4624
PUP.Optional.FindWide, HKU\S-1-5-21-2396228472-3482715812-2186985281-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E8307B89-5F41-4591-83AE-91CC210327DF}|URL, No Action By User, [314], [238383],1.0.4624

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 3
PUP.Optional.FastestTube, C:\Users\Morgan Pierce Parker\AppData\Roaming\Opera Software\Opera Stable\Extensions\phahnhbgfdhgobenebnjbgmacgpbfaag\2.4.0.19_0\_metadata, No Action By User, [1228], [373186],1.0.4624
PUP.Optional.FastestTube, C:\Users\Morgan Pierce Parker\AppData\Roaming\Opera Software\Opera Stable\Extensions\phahnhbgfdhgobenebnjbgmacgpbfaag\2.4.0.19_0, No Action By User, [1228], [373186],1.0.4624
PUP.Optional.FastestTube, C:\USERS\MORGAN PIERCE PARKER\APPDATA\ROAMING\OPERA SOFTWARE\OPERA STABLE\EXTENSIONS\PHAHNHBGFDHGOBENEBNJBGMACGPBFAAG, No Action By User, [1228], [373186],1.0.4624

File: 4
PUP.Optional.FastestTube, C:\Users\Morgan Pierce Parker\AppData\Roaming\Opera Software\Opera Stable\Extensions\phahnhbgfdhgobenebnjbgmacgpbfaag\2.4.0.19_0\_metadata\computed_hashes.json, No Action By User, [1228], [373186],1.0.4624
PUP.Optional.FastestTube, C:\Users\Morgan Pierce Parker\AppData\Roaming\Opera Software\Opera Stable\Extensions\phahnhbgfdhgobenebnjbgmacgpbfaag\2.4.0.19_0\_metadata\verified_contents.json, No Action By User, [1228], [373186],1.0.4624
PUP.Optional.FindWide, C:\USERS\MORGAN PIERCE PARKER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\DZYGI7OP.DEFAULT\PREFS.JS, No Action By User, [314], [301558],1.0.4624
PUP.Optional.Freshy, C:\USERS\MORGAN PIERCE PARKER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\DZYGI7OP.DEFAULT\PREFS.JS, No Action By User, [277], [301562],1.0.4624

Physical Sector: 0
(No malicious items detected)


(end)

===========

There was one more thing overnight:  Windows update happened and it wants me to reboot to complete now.  I thought I choose "notify me but do not install".  But, it updated anyway.
I have posed the update history below.  Can you have a look to see it all is good with that update?

I will reboot in safe mode and do what you asked in one of you last posts, now.
But I am unsure of how to do this.  Is this permissions repair with the MS WINDOWS7 SP1 release disc:

"Boot up into Safe Mode with Networking and open Windows Repair and run just the Permissions repairs to see if that puts things right.

See if you can still perform a sfc /scannow from the Users cmd prompt after the reboot."


Boggin:
The reason MBAM is doing the scans is because you are running the 14 day Premium free trial.

If you want to revert to just the free version then open MBAM and click on Settings and then on Account Details where you will see a button to end the free trial.

I said to expect some more updates as the machine is catching up on those.

It shouldn't have auto installed them when you have the update settings set to Check for but let me choose - have you checked to see if it's still set to that.

You don't need the install disk to run the Windows Repair program.

If you haven't already have it installed or don't have the latest version then download it from www.tweaking.com

The repairs I want you to run are as in my pic.

Uncheck the top box which will clear the rest then check just the first 4 boxes.

I've always used IE since I bought my first laptop in 2010 and have used Norton since then without my machines becoming infected.

I don't click on unknown links in emails - don't use P2P download sites and don't go looking for what could be dodgy websites.

Do you actually have an antivirus program installed ?

FreeCat:
OK, Boggin,

Ran Tweaking Tool. (BTW, I was very confused when you said run repair tool; I kept looking for some Microsoft thing).  But, I ran Tweaking tools with only first four check as admin.  Machine has doubled in speed.

The setting reverted back to install on Windows Update.  (pic below).  But, can you tell me if the other setting are correct?

Several updates applied them selves and there were several reboots due to this.

But, there are several updated that are "recommended".  So, I wonder should I do these and what is the rule going forward about recommended?

I am running the SFC now, but I had a hard time getting the command prompt as "administrator. 
See the windows it ways administrator at the top.

Boggin:
That's still showing as your Users cmd prompt even though it says Admin in the top bar - I don't understand why that is.

I'm going to ask my Support about that.

As AMD said you could ignore the AMD update then right click on it and select Hide - do the same for KB2952664

I got KB4099950 as an Important one on my Win 7 so install that one and you will have to click on each one of the rest and then on the More info link in the right pane to see what the rest are for.

You probably don't need any that are for Remote Desktop.

FreeCat:
Thanks, Boggin.

OK I did what you said about KB4099950.
But, what about the .NET framework.  I use .NET programs so should I include that?

And the one to Preview of Quality Rollup --- that sounds important.  No?

However after this last reboot, there is a major problem that I can not resolve.

Most web pages (about 35 of 40) that I have tabs open on will  not long open.  They give a message like The webpage at https://email.secureserver.net/login.php?domain=email.mpj.com might be temporarily down or it may have moved permanently to a new web address.

using Firefox, I CAN get to that site.

Also, many desktop shortcuts, etc. no longer work.

Also, VERY IMPORTANT:  VARIOUS DROP DOWN ITEMS NO LONGER WORK:

Send to Zip file, Open with RAR, etc.
machine is vi rurally  unusable for most that i do with it.

How can I fix these things?  thanks in advance.

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version