sky_yoshi

Members
  • Content Count

    7
  • Joined

  • Last visited

Community Reputation

0 Neutral

About sky_yoshi

  • Rank
    Newbie
  1. Hi, sorry for the late reply! Ad-Aware normal installer download "finishes" instantly on the XP computer. I'll try to download it from another computer when I get thr chance. C:\AdwCleaner\Quarantine\C\Program Files (x86)\DNS Unlocker\ConsoleApplication1.dll.vir a variant of Win32/Adware.CloudGuard.B application C:\AdwCleaner\Quarantine\C\Program Files (x86)\DNS Unlocker\dnsvincentown.exe.vir a variant of MSIL/Adware.CloudGuard.C application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe.vir Win32/AlteredSoftware.C potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe.vir Win32/AlteredSoftware.A potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe.vir Win32/AlteredSoftware.C potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe.vir a variant of Win32/AlteredSoftware.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe.vir a variant of Win32/AlteredSoftware.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir a variant of Win32/AlteredSoftware.A potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir a variant of Win32/AlteredSoftware.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll.vir Win32/AlteredSoftware.A potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir a variant of Win32/AlteredSoftware.G potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir a variant of Win32/AlteredSoftware.G potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\2bad8455-4dce-4b8c-8aff-c6879663cf02.dll.vir a variant of Win64/Toolbar.Crossrider.P potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\73eae394-6752-4acc-a546-d0da937a0b47.dll.vir a variant of Win32/Toolbar.CrossRider.CG potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\a31a59b7-cbe5-4e46-9305-3cbeb0aa3c10-1-6.exe.vir a variant of Win32/Toolbar.CrossRider.AV potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\a31a59b7-cbe5-4e46-9305-3cbeb0aa3c10-1-7.exe.vir a variant of Win32/Toolbar.CrossRider.CD potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\a31a59b7-cbe5-4e46-9305-3cbeb0aa3c10-10.exe.vir a variant of Win32/Toolbar.CrossRider.CD potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\a31a59b7-cbe5-4e46-9305-3cbeb0aa3c10-5.exe.vir a variant of Win32/Toolbar.CrossRider.CC potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\a31a59b7-cbe5-4e46-9305-3cbeb0aa3c10-6.exe.vir a variant of Win32/Toolbar.CrossRider.BZ potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\a31a59b7-cbe5-4e46-9305-3cbeb0aa3c10-64.exe.vir a variant of Win64/Toolbar.Crossrider.N potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\a31a59b7-cbe5-4e46-9305-3cbeb0aa3c10-7.exe.vir a variant of Win32/Toolbar.CrossRider.CD potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\Uninstall.exe.vir a variant of Win32/Toolbar.CrossRider.CU potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\UninstallBrw.exe.vir a variant of Win32/Toolbar.CrossRider.CD potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\utils.exe.vir Win32/Packed.VMDetector.I potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\Super Optimizer\SupOptSmartScan.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AG application C:\AdwCleaner\Quarantine\C\ProgramData\{0291ac04-4064-0}\BITB876.tmp.vir a variant of Win32/Adware.Adposhel.E application C:\AdwCleaner\Quarantine\C\ProgramData\{10614b8e-5064-0}\BIT62D.tmp.vir a variant of Win32/Adware.Adposhel.E application C:\AdwCleaner\Quarantine\C\ProgramData\{e1b6d413-c7fa-45ad-e1b6-6d413c7f504f}\hqghumeaylnlf.exe.vir a variant of Win32/Adware.SpeedingUpMyPC.AP application C:\AdwCleaner\Quarantine\C\Users\MarcosDaniel\AppData\Roaming\Systweak\ssd\SSDPTstub.exe.vir Win32/Systweak.G potentially unwanted application C:\AdwCleaner\Quarantine\C\WINDOWS\System32\roboot64.exe.vir a variant of Win64/Systweak.A potentially unwanted application C:\AdwCleaner\Quarantine\C\WINDOWS\System32\drivers\{0782648b-1717-4fef-ac58-8cb3ce03adb3}Gw64.sys.vir a variant of Win64/BrowseFox.BV potentially unwanted application C:\AdwCleaner\Quarantine\C\WINDOWS\System32\drivers\{0782648b-1717-4fef-ac58-8cb3ce03adb3}w64.sys.vir a variant of Win64/BrowseFox.BV potentially unwanted application C:\Users\MarcosDaniel\AppData\Local\Temp\Temp1_di-sp260.zip\di-sp26.rar a variant of Win32/Keygen.HU potentially unsafe application C:\Users\MarcosDaniel\AppData\Local\Temp\Temp2_di-sp260.zip\di-sp26.rar a variant of Win32/Keygen.HU potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\cracks\(Varios Sonic Foundry - FUNCIONA, ABRIR KEYGEN.EXE) sonysoundforgev7.0keygenssg.zip a variant of Win32/Keygen.AQ potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\cracks\Sony-All-Products-Incl-Multi-Keygen-And-Patch-v2.6-Update.rar a variant of Win32/Keygen.HU potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\cracks\Sony.All.KeyMaker.rar a variant of Win32/Keygen.AQ potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\cracks\(Varios Sonic Foundry - FUNCIONA, ABRIR KEYGEN.EXE) sonysoundforgev7.0keygenssg\keygen.rar a variant of Win32/Keygen.AQ potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\cracks\Sony-All-Products-Incl-Multi-Keygen-And-Patch-v2.6-Update\Sony All Products Incl Multi Keygen And Patch v2.6 Update\di-sp260.zip a variant of Win32/Keygen.HU potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\Drivers\JCAM driver CD.iso a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\Games\smbx13.exe Win32/OpenCandy potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\Games\The Sims 3 - Razor1911 Final MAXSPEED\The Sims 3 - Razor1911 MAXSPEED www.torentz.3xforum.ro\The Sims 3 - Razor1911 MAXSPEED www.torentz.3xforum.ro.iso a variant of Win32/Keygen.GU potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\Internet\cbsidlm-cbsi145-Facebook_Messenger-SEO-10964518.exe a variant of Win32/CNETInstaller.B potentially unwanted application C:\Users\MarcosDaniel\Documents\Installers\Music\winamp563_full_emusic-7plus_en-us.exe Win32/OpenCandy potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\Music\FL STUDIO 11 + CRACK\flstudio_11.0.2.exe Win32/OpenCandy potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\Video\ManyCam(v2.5.48).exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\Video\Sony Vegas v6.0C Incl Keygen-Ssg.rar a variant of Win32/Keygen.AQ potentially unsafe application C:\Users\MarcosDaniel\Documents\Installers\Video\Sony Vegas v6.0C Incl Keygen-Ssg\keygen.exe a variant of Win32/Keygen.AQ potentially unsafe application C:\Windows\System32\wpbbin.exe a variant of Win32/CompuTrace.A potentially unsafe application
  2. No, they both have the default application-icon. I also noticed that the installers are not the same filesize everytime I download them, and they're not close to the original reported filesize by the browser (509 MB for the standalone installer). I don't remember having this problem before. I just tried and succeeded to download 293 MB VMware Workstation installer, while the Ad-Aware standalone installer stops at at most 73 MB. I also tried to download Ad-Aware from another computer (Desktop Windows XP SP 3.0 PC, same household, same user, mostly same software and extensions installed), but the download also "finishes" before completing its full filesize.
  3. I still get the "This app can't run on your PC" message, even from the sandalone installer (I re-downloaded it with different filename)
  4. Fix result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01 Ran by MarcosDaniel (2016-03-19 10:49:05) Run:1 Running from C:\Users\MarcosDaniel\Documents\Installers\Anti malware Loaded Profiles: MarcosDaniel (Available Profiles: MarcosDaniel & Invitado) Boot Mode: Normal ============================================== fixlist content: ***************** CreateRestorePoint: CloseProcesses: CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION Tcpip\..\Interfaces\{4AE8C5E3-F06C-4EEB-9756-3E61E2594D8E}: [DhcpNameServer] 82.163.142.6 Tcpip\..\Interfaces\{E607AF11-3DF5-4320-8AFA-FCD0EA84B4AE}: [DhcpNameServer] 82.163.142.6 CHR HomePage: Default -> hxxp://www.v9.com/?utm_source=b&utm_medium=pbc&from=pbc&uid=ST380011A_5MR409QD&ts=1352164866 CHR Extension: (Bing Translate To English) - C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hogdcbncicoifbkfdofpejkkckgkbjig [2015-04-09] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION CHR Extension: (F1 News) - C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jchepaljijgokkoflakjioknkfolenbk [2015-06-21] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION CHR Extension: (Chrome Hotword Shared Module) - C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-03] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION CHR Extension: (Google Wallet) - C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-03] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION CHR Extension: (oaeofonahpollpigknepbpnabhgbpcjc) - C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oaeofonahpollpigknepbpnabhgbpcjc [2015-03-11] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION CMD: ipconfig /flushdns Reboot: ***************** Restore point was successfully created. Processes closed successfully. "HKLM\SOFTWARE\Policies\Google" => key removed successfully HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4AE8C5E3-F06C-4EEB-9756-3E61E2594D8E}\\DhcpNameServer => value removed successfully HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{E607AF11-3DF5-4320-8AFA-FCD0EA84B4AE}\\DhcpNameServer => value removed successfully Chrome HomePage => removed successfully C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hogdcbncicoifbkfdofpejkkckgkbjig <==== ATTENTION => not found C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jchepaljijgokkoflakjioknkfolenbk <==== ATTENTION => not found C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg <==== ATTENTION => not found C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda <==== ATTENTION => not found C:\Users\MarcosDaniel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oaeofonahpollpigknepbpnabhgbpcjc <==== ATTENTION => not found ========= ipconfig /flushdns ========= Configuraci�n IP de Windows Se vaci� correctamente la cach� de resoluci�n de DNS. ========= End of CMD: ========= The system needed a reboot. ==== End of Fixlog 10:49:44 ==== After running FRST, I tried re-downloading (with a different filename) the Ad-Aware Free Antivirus installer, with the same results. Edit: how do you recommend me to identify which (if any) of my Chrome extensions is installing adware/malware?
  5. I'm not sure about this part, I'm not very instructed in this topic. The only thing I can think of, is the Facetalk Google Chrome extension, which asked me to install a host app (executable file). I wish to keep using Facetalk, and I don't know if that is what caused the changes you mention. Otherwise, there's no other reason I can think of for these changes. Let's use FRST, please On a side note, I checked Google Chrome settings, and the home page seems set (and acts) as expected. However, I've had trouble with v9.com before, so it's a good idea to fix it anyway. I'll remove (not only disable) them all for a while. Then I'll slowly install the most important ones one by one. Most likely adware. I dont recognize the domain, or any of the first 4 extensions. I don't think the 5th extension is legit either. Thanks for the heads-ups! My first plan is to uninstall both MBAM and AVG, and use Ad-Aware only. Those are exactly my sympthoms! Thank you again for your attention
  6. Hi, Cecilia! Thank you for your soon and thoughtful answer! I've already installed another anti-adware application and solved my original problem. However, I'm still interested in installing Lavasoft's Ad-Aware, since I've had good experiences with it in the past. I'll attach to this post the reports as asked in the post you mentioned. Maybe something's related to my inhability to install Ad-Aware? Thank you again for your help FRST log files.zip
  7. Hi, I'm having adware problems (popups on Google Chrome, the only web browser I use), so i decided to install the free version of Ad-Aware 11. I downloaded the installer (edit: I also tried the standalone installer at http://www.lavasoft.com/mylavasoft/support/supportcenter/run_on_a_frozen_pc/ad-aware-standalone-installer with no success), but as soon as I double click on it, it says: (rough translation: This application cannot be executed in this computer. To search for a version for your computer, contact the software editor") I´m using 64-bit Windows 8.1 on a laptop. Thank you in advance for your answer System Info.zip