It's been some time i think my pc is infected, mainly because my internet is slow only on this pc in my house. I attached both txt, thanks in advance.
↧
Need a check
↧
Renaming the windows defender file
When I try renaming Windows Defender file it shows that this can't be done due to TrustedInstaller
↧
↧
Malwarebytes removed 2 targets, after reboot desktop is black with cmd window open
Hello,
I used malwarebytes to perform a check just in case as I read about a friends malware incident. Using Malwarebytes, it found 2 threats that it quarantined. It informed me that rebooting was necessary to finish the operation. After rebooting, as I log in (I am the only user account), the desktop is black and a cmd prompt is open. I can run programs.
Edit: I thought my malwarebytes was up to date as I updated it before running the scan, but apparently it is version 3.3.1, which seems...
Malwarebytes removed 2 targets, after reboot desktop is black with cmd window open
I used malwarebytes to perform a check just in case as I read about a friends malware incident. Using Malwarebytes, it found 2 threats that it quarantined. It informed me that rebooting was necessary to finish the operation. After rebooting, as I log in (I am the only user account), the desktop is black and a cmd prompt is open. I can run programs.
Edit: I thought my malwarebytes was up to date as I updated it before running the scan, but apparently it is version 3.3.1, which seems...
Malwarebytes removed 2 targets, after reboot desktop is black with cmd window open
↧
Can't get rid of qte search
Hi,
I wonder if anyone could advise me on how to remove qte search/view-search? Its taken over my Microsoft Edge browser and I've tried everything in the Malware tips guide. I've scanned my PC with Hitman Pro, Zemana and Malware Bytes, all of which identified the problem and claimed resolve it but when I use my browser it's still there. I have also used the Emisoft Emergency Kit, but no luck there and I have tried resetting Microsoft Edge. For some reason it seemed to have gone all day...
Can't get rid of qte search
I wonder if anyone could advise me on how to remove qte search/view-search? Its taken over my Microsoft Edge browser and I've tried everything in the Malware tips guide. I've scanned my PC with Hitman Pro, Zemana and Malware Bytes, all of which identified the problem and claimed resolve it but when I use my browser it's still there. I have also used the Emisoft Emergency Kit, but no luck there and I have tried resetting Microsoft Edge. For some reason it seemed to have gone all day...
Can't get rid of qte search
↧
Windows 7 'rundll32.exe' seemingly infected (using 100% of CPU)
Hello, recently, I've noticed that upon opening specific games (downloaded from Steam) on my computer, the rundll32.exe program begins to use around 60% of my CPU, as well as other programs like chrome and NVidia Share shooting from less than 1% to around 20%. At the same time, many games from Steam simply don't open at all, and many work perfectly fine. With malwarebytes open, the CPU usage caps at around 60%, but the moment it's closed, it shoots back up to 100%. Any idea on how this...
Windows 7 'rundll32.exe' seemingly infected (using 100% of CPU)
Windows 7 'rundll32.exe' seemingly infected (using 100% of CPU)
↧
↧
Scorpion Illuminati - Random Apps Can't Be Opened
I keep getting Windows cannot find C:\<Random App>. In this case, I can't even uninstall the app to try to reinstall it. This has been happening for a while now and others have suggested running /SFC which didn't help. At this point, I am starting to think I somehow got infected which is weird cause I am usually very careful about what I do. I am attaching the logs for both malwarebytes and FRSTin hopes someone can help me.
↧
Hollow Process on Svc Host and Hijack at Eternet
Hello,
Using W10. It started with opening random ads pop-ups and then even opening browser with multiple taps.
This virus or pip (whatever it is) wont let me using and antimalware software on windows except Zemana Anti Malware however i started windows in safe mode and scan with malwarebytes and clean everyting it found. Now i have no popups or browser opening but i still cant use antimalware softare or even go their website (computer froze when i try to do that) .
After a scan with zemana...
Hollow Process on Svc Host and Hijack at Eternet
Using W10. It started with opening random ads pop-ups and then even opening browser with multiple taps.
This virus or pip (whatever it is) wont let me using and antimalware software on windows except Zemana Anti Malware however i started windows in safe mode and scan with malwarebytes and clean everyting it found. Now i have no popups or browser opening but i still cant use antimalware softare or even go their website (computer froze when i try to do that) .
After a scan with zemana...
Hollow Process on Svc Host and Hijack at Eternet
↧
CPU usage is 100%
For about 10 days, my CPU usage is 100% sometimes, the problem occurs basically whilst browsing with Chrome. On 2019.06.18, I installed Android Studio and was following an online tutorial. Some minutes later my computer became very slow, so I closed the software. This is also the case with BlueStacks. But unlike BlueStacks, the CPU usage didn't go back to normal (7-40%) after I closed Android Studio and all other programs. So I became afraid, thought my computer has virus, and so uninstalled...
CPU usage is 100%
CPU usage is 100%
↧
Can't remove "YoutubeAdBlock" (virus)
↧
↧
Pop Up COM Surrogate _ E-Mail
Hello,
i have following Problem:
As i start my PC following Window pops up
("There is no email program associated to perform the requested action. Please install an email program or, if one is already installed, create an association in the Default Programs control panel.")
and it shows a COM Surrogate in the Task Manager. Can somebody help ?
![215823]()
![215822]()
i have following Problem:
As i start my PC following Window pops up
("There is no email program associated to perform the requested action. Please install an email program or, if one is already installed, create an association in the Default Programs control panel.")
and it shows a COM Surrogate in the Task Manager. Can somebody help ?


↧
Driver Tonic Won't Uninstall -- Please Help
Hello All -- my first posting ever:
I am usually more cautious than this, but I got sloppy and OK'd installation of Driver Tonic on my laptop (Windows 10) and I cannot install it. The program keeps popping up with messages and I cannot access it at all. It locks me out and says an administrator has blocked my access to the program. The thing is, I AM the administrator and I am logged in to Windows as such.
Any...
Driver Tonic Won't Uninstall -- Please Help
I am usually more cautious than this, but I got sloppy and OK'd installation of Driver Tonic on my laptop (Windows 10) and I cannot install it. The program keeps popping up with messages and I cannot access it at all. It locks me out and says an administrator has blocked my access to the program. The thing is, I AM the administrator and I am logged in to Windows as such.
Any...
Driver Tonic Won't Uninstall -- Please Help
↧
Ransomeware Help
↧
About 20 Services with Weird appended names just started showing up. Have any of you ever seen this?
Below is a self log i keep to myself when i find strange **** on my box:: its like me talkinmg to myself in notes
but then i figured maynbe you may have shook hands with this Virii before so i converted it to a letter
' This service is probably malware
Connected Devices PlatformUser service_21_ad55, will not let me disable or change.
I have 2 of them. but one is appended with _21_ad55
THe name changed, I deleted the service also deleted
cbdhsvc_582f17
ConsentUxUserSvc_582f17...
About 20 Services with Weird appended names just started showing up. Have any of you ever seen this?
but then i figured maynbe you may have shook hands with this Virii before so i converted it to a letter
' This service is probably malware
Connected Devices PlatformUser service_21_ad55, will not let me disable or change.
I have 2 of them. but one is appended with _21_ad55
THe name changed, I deleted the service also deleted
cbdhsvc_582f17
ConsentUxUserSvc_582f17...
About 20 Services with Weird appended names just started showing up. Have any of you ever seen this?
↧
↧
Ransomeware Help
↧
malware Avira Safe Search Plus chrome extension
Recently I installed Avira free antivirus for 2 days. after that I uninstalled it, but now problem is with its extension Avira Safe search plus. I have removed it from my chrome browser so many times. but still it is showing in chrome every time and giving option of enable or remove. Every time I removed but whenever I restart my browser it is there. I thoroughly uninstalled but i dont how it automatically get installed without any permission. how to reomove it? It is very annoying.
i use
-...
malware Avira Safe Search Plus chrome extension
i use
-...
malware Avira Safe Search Plus chrome extension
↧
Maybe infected with some kind of a PUP/adware
Everything is above ![Smile :) :)]()
↧
How to remove Xml.adright.com redirect Windows 7 ultimate issue
hello
i am trying to erase Xml.adright.com redirect
earlier i tried spyhunter 5 without any luck
today with your guid i have installed adwcleaner
still the problem exist because it hasnt found the virus yiet
on the menu of adwcleaner there are some commands whitcth i need your help for turning them on or off in order to find this virus
on settings
generate a debug log to report error i have it off i must turn it on?
delete IFEO keys i have it off i must turn it on?
reset IPSec...
How to remove Xml.adright.com redirect Windows 7 ultimate issue
i am trying to erase Xml.adright.com redirect
earlier i tried spyhunter 5 without any luck
today with your guid i have installed adwcleaner
still the problem exist because it hasnt found the virus yiet
on the menu of adwcleaner there are some commands whitcth i need your help for turning them on or off in order to find this virus
on settings
generate a debug log to report error i have it off i must turn it on?
delete IFEO keys i have it off i must turn it on?
reset IPSec...
How to remove Xml.adright.com redirect Windows 7 ultimate issue
↧
↧
pidon virus
hello
please can you help me ?
i will share to you my pidon virus and i hope you help me to return my files
then thank you
it is 3 files
1) image without virus
2) image without virus (same image )
3) my readme file
please can you help me ?
i will share to you my pidon virus and i hope you help me to return my files
then thank you
Desktop
MediaFire is a simple to use free service that lets you put all your photos, documents, music, and video in a single place so you can access them anywhere and share them everywhere.
www.mediafire.com
1) image without virus
2) image without virus (same image )
3) my readme file
↧
Decryption tool for the LooCipher Ransomware
Introduction
Recently, our ZLab research team published of the LooCipher ransomware, a new malware threat that spreads using weaponized Word document and abuses ToR network proxy services to reach its command and control servers.
Works on Windows systems
-1- Link to original article
blog.yoroi.company
-2-Link download tool
[URL...
Decryption tool for the LooCipher Ransomware
Recently, our ZLab research team published of the LooCipher ransomware, a new malware threat that spreads using weaponized Word document and abuses ToR network proxy services to reach its command and control servers.
Works on Windows systems
-1- Link to original article

LooCipher Ransomware Decryptor Released for Free
Introduction Recently, our ZLab research team published a detailed analysis of the LooCipher ransomware, a new malware threat that spreads using weaponized Word document and abuses ToR network prox…

-2-Link download tool
[URL...
Decryption tool for the LooCipher Ransomware
↧
Problem with dolohen and oneclick
Good night, recently an adware found its way to my computer trough google chrome and i dont know what to do because i already tried malwarebytes, adwcleaner and all the programs known to man to get rid of the pop up ad, to the point i reinstalled windows and the pop up and the redirection from dolohen and one click its still there, if you could please help me.
↧