CarolAnn830
-
Content Count
5 -
Joined
-
Last visited
Content Type
Profiles
Forums
Calendar
Posts posted by CarolAnn830
-
-
# AdwCleaner 7.0.2.1 - Logfile created on Thu Sep 07 04:16:43 2017
# Updated on 2017/29/08 by Malwarebytes
# Database: 09-01-2017.2
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support***** [ Services ] *****
PUP.Optional.ByteFence, ByteFenceService
PUP.Optional.Linkury.ACMB1, rtop
PUP.Optional.AdvancedPCCare, AppApcVerifier
***** [ Folders ] *****PUP.Optional.ByteFence, C:\ProgramData\ByteFence
PUP.Optional.ByteFence, C:\ProgramData\Application Data\ByteFence
PUP.Optional.ByteFence, C:\Program Files\ByteFence
PUP.Optional.ByteFence, C:\Users\All Users\ByteFence
PUP.Optional.ByteFence, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
PUP.Optional.Solvusoft, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft
PUP.Optional.WebBar, C:\Windows\System32\config\systemprofile\AppData\Local\WebDiscoverBrowser
PUP.Optional.WebBar, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\WebDiscoverBrowser
PUP.Optional.AdvancedPCCare, C:\ProgramData\AppApcVerifier
PUP.Optional.AdvancedPCCare, C:\ProgramData\Application Data\AppApcVerifier
PUP.Optional.AdvancedPCCare, C:\Users\All Users\AppApcVerifier
PUP.Adware.Heuristic, C:\Program Files (x86)\6e2949619769aa5a979245bbf48fd68b
***** [ Files ] *****PUP.Optional.Legacy, C:\Users\carol\Downloads\ReimageRepair.exe
PUP.Optional.Reimage, C:\Windows\Temp\reimage.log
PUP.Optional.Reimage, C:\Users\carol\AppData\Local\Temp\reimage.log
PUP.Optional.Reimage, C:\Users\carol\AppData\Local\Temp\ReimagePackage.exe
PUP.Optional.WinYahoo, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
PUP.Optional.BestYouTubeDownloader, C:\Users\All Users\Desktop\Free YouTube Downloader.lnk
PUP.Optional.BestYouTubeDownloader, C:\Users\carol\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free YouTube Downloader.lnk
PUP.Optional.BestYouTubeDownloader, C:\Users\Public\Desktop\Free YouTube Downloader.lnk
***** [ DLL ] *****No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Optional.Legacy, ByteFence Scan
PUP.Optional.ByteFence, ByteFence
***** [ Registry ] *****PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\WebDiscoverBrowser
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2237075321-751328073-2885487634-1001\Software\WebDiscoverBrowser
PUP.Optional.Legacy, [Key] - HKCU\Software\WebDiscoverBrowser
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FileViewPro_is1
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\pcv-var
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80107F16-CB2E-42AB-AB9D-6C11540D5A8B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\61F70108E2BCBA24BAD9C61145D0A5B8
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\Features\61F70108E2BCBA24BAD9C61145D0A5B8
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\Products\61F70108E2BCBA24BAD9C61145D0A5B8
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | WebDiscoverBrowser
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run | CommonToolkitTray_Solvusoft
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Directory\shell\ByteFence Folder Scan
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Applications\WinThrusterSetup.exe
PUP.Optional.Reimage, [Key] - HKU\S-1-5-21-2237075321-751328073-2885487634-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
PUP.Optional.Reimage, [Key] - HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
PUP.Optional.Reimage, [Key] - HKLM\SOFTWARE\Reimage
PUP.Optional.Reimage, [Key] - HKU\S-1-5-21-2237075321-751328073-2885487634-1001\Software\Reimage
PUP.Optional.Reimage, [Key] - HKCU\Software\Reimage
PUP.Optional.ByteFence, [Key] - HKLM\SOFTWARE\ByteFence
PUP.Optional.ByteFence, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence
PUP.Optional.ByteFence, [Key] - HKU\.DEFAULT\Software\ByteFence
PUP.Optional.ByteFence, [Key] - HKU\S-1-5-21-2237075321-751328073-2885487634-1001\Software\ByteFence
PUP.Optional.ByteFence, [Key] - HKU\S-1-5-18\Software\ByteFence
PUP.Optional.ByteFence, [Key] - HKCU\Software\ByteFence
PUP.Optional.ByteFence, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
PUP.Optional.ByteFence, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
PUP.Optional.Solvusoft, [Key] - HKLM\SOFTWARE\Solvusoft
PUP.Optional.Solvusoft, [Key] - HKU\S-1-5-21-2237075321-751328073-2885487634-1001\Software\Solvusoft
PUP.Optional.Solvusoft, [Key] - HKCU\Software\Solvusoft
PUP.Optional.Solvusoft, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster
PUP.Optional.Solvusoft, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WinThruster.exe
PUP.Optional.Solvusoft, [Key] - HKLM\SOFTWARE\CLASSES\APPLICATIONS\SolvusoftTray.exe
PUP.Optional.AdvancedPCCare, [Key] - HKLM\SOFTWARE\AppApcVerifier
PUP.Optional.AdvancedPCCare, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
PUP.Optional.AdvancedPCCare, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-2237075321-751328073-2885487634-1001\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-2237075321-751328073-2885487634-1001\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP
***** [ Firefox (and derivatives) ] *****No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
PUP.Optional.SearchInMe, Plugin found: Search In Tabs -
/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271
************************* -
I have a fairly new HP Envy Laptop with Win10 that I have started to use more often in the last 2 months. I have noticed that there are alot of applications that I never added, files I can't access because I don't have the permission, there seems to be ALOT of user accounts and I only set up myself with an Administrator account when it was purchased new from Best Buy at the end of January. There is now a 2nd Administrator Account but I don't even see it listed on the user accounts page in settings. I have seen event logs that show remote connections but I have NEVER set up anything like that. I also have a ridiculous amount of storage being used considering I haven't saved that much info to my computer. And recently it seems all kinds of new devices have been added to my laptop that I don't recognize and the only thing I have ever added other than my phones, are printers and a wireless mouse. I feel like someone is monitoring my computer and uploading files (video and picture especially) to storage outside my computer. I don't know if it is being done by someone I know, or in my home with access to my computer or someone I don't know who somehow gained access through the network I use. This problem extends to ALL of the other devices I have used, like phones and tablets - they have all been connected to this laptop and have all used the network at one time or another. Another issue that may have contributed to this problem is that my Google accounts have been previously compromised by someone who actually deleted one of the accounts entirely. I don't know what to do, I have tried to add additional security software, cleaning tools, etc to my laptop; I have opened every file I have access to using a variety of file readers (I have only download programs I can get from either Microsoft or CNet), I have deleted and created new accounts, changed my passwords on external accounts like Microsoft, Samsung & Google. I have only one new (email account that hasn't had any problems which is through Protonmail. Someone please help me figure this out - It is so bad now that I don't trust ANYONE at all and I am worried there may be pictures or worse videos from my devices (and life) out on the internet somewhere being viewed by just whoever.
At this point anything that was stolen, copied or whatever is done, I can't change that so I guess I could just use the 'Start Fresh' option and reinstall windows and hopefully not lose any of my existing personal files...but I am so pissed off that I really want to know exactly what happened and with any luck who it is (or at least who it isn't). And of course eventually I would like to be able to just safely use my laptop.
A million thanks in advance to anyone that might have some time to help me...
***I JUST NOTICED TODAY THAT THE ENTIRE HISTORY OF EVENT LOGS ARE GONE!!! THE ONLY ONES SHOWING ARE VERY RECENT AND I HAVE SAVED ALL 4 TO FILES ATTACHED.***
CxMonSvcSource Event Logs.evtx
-
I have a fairly new HP Envy Laptop with Win10 that I have started to use more often in the last 2 months. I have noticed that there are alot of applications that I never added, files I can't access because I don't have the permission, there seems to be ALOT of user accounts and I only set up myself with an Administrator account when it was purchased new from Best Buy at the end of January. There is now a 2nd Administrator Account but I don't even see it listed on the user accounts page in settings. I have seen event logs that show remote connections but I have NEVER set up anything like that. I also have a ridiculous amount of storage being used considering I haven't saved that much info to my computer. And recently it seems all kinds of new devices have been added to my laptop that I don't recognize and the only thing I have ever added other than my phones, are printers and a wireless mouse. I feel like someone is monitoring my computer and uploading files (video and picture especially) to storage outside my computer. I don't know if it is being done by someone I know, or in my home with access to my computer or someone I don't know who somehow gained access through the network I use. This problem extends to ALL of the other devices I have used, like phones and tablets - they have all been connected to this laptop and have all used the network at one time or another. Another issue that may have contributed to this problem is that my Google accounts have been previously compromised by someone who actually deleted one of the accounts entirely. I don't know what to do, I have tried to add additional security software, cleaning tools, etc to my laptop; I have opened every file I have access to using a variety of file readers (I have only download programs I can get from either Microsoft or CNet), I have deleted and created new accounts, changed my passwords on external accounts like Microsoft, Samsung & Google. I have only one new (email account that hasn't had any problems which is through Protonmail. Someone please help me figure this out - It is so bad now that I don't trust ANYONE at all and I am worried there may be pictures or worse videos from my devices (and life) out on the internet somewhere being viewed by just whoever.
At this point anything that was stolen, copied or whatever is done, I can't change that so I guess I could just use the 'Start Fresh' option and reinstall windows and hopefully not lose any of my existing personal files...but I am so pissed off that I really want to know exactly what happened and with any luck who it is (or at least who it isn't). And of course eventually I would like to be able to just safely use my laptop.
A million thanks in advance to anyone that might have some time to help me...
***I JUST NOTICED TODAY THAT THE ENTIRE HISTORY OF EVENT LOGS ARE GONE!!! THE ONLY ONES SHOWING ARE VERY RECENT AND I HAVE SAVED ALL 4 TO FILES ATTACHED.***
CxMonSvcSource Event Logs.evtx
Here u go Flash...HP Envy laptop w Win 10 and Samsung Galaxy S7 Edge hacked???
in Malware Removal
Posted
# AdwCleaner 7.0.2.1 - Logfile created on Thu Sep 07 19:26:24 2017
# Updated on 2017/29/08 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\Program Files (x86)\6e2949619769aa5a979245bbf48fd68b
***** [ Files ] *****
No malicious files deleted.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\WebDiscoverBrowser
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80107F16-CB2E-42AB-AB9D-6C11540D5A8B}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted: [Key] - HKLM\SOFTWARE\ByteFence
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[C0].txt - [6030 B] - [2017/9/7 4:17:37]
C:/AdwCleaner/AdwCleaner[S0].txt - [7114 B] - [2017/9/7 4:16:43]
C:/AdwCleaner/AdwCleaner[S1].txt - [1541 B] - [2017/9/7 19:25:4]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########