1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

In Progress how to remove keylogger/virus

Discussion in 'Virus & Other Malware Removal' started by deaddrop, Jul 19, 2018.

Thread Status:
Not open for further replies.
Advertisement
  1. deaddrop

    deaddrop Thread Starter

    Joined:
    Jun 9, 2005
    Messages:
    115
    I think my laptop is infected bcoz the other day I received an email that mentions my password.Maybe got it from some malicious sites.How can i clean my computer of the virus or keylogger? btw few days i noticed that my keyboard was acting strange and slow.Hope somebody can help and assist me clean my computer.Thanks in advance....deaddrop

    Tech Support Guy System Info Utility version 1.0.0.4
    OS Version: Microsoft Windows 8.1, 64 bit
    Processor: Intel(R) Pentium(R) CPU N3700 @ 1.60GHz, Intel64 Family 6 Model 76 Stepping 3
    Processor Count: 4
    RAM: 4010 Mb
    Graphics Card: Intel(R) HD Graphics, 1024 Mb
    Hard Drives: C: 224 GB (45 GB Free); D: 225 GB (181 GB Free);
    Motherboard: Acer, Magellan_BA
    Antivirus: Avast Antivirus, Enabled and Updated
     
  2. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    Hi deaddrop,
    Let's take a look at what you have on there.
    When you say an e-mail contained your password, was it your username password for the machine, your e-mail password, or what?
    -----------------------------------------------------------
    Download and Run the Farbar Scan Tool
    • Download FRST64 and save to your Desktop.
    • Double click Frst64.exe to launch it.
    • FRST64 will start to run.
      • When the tool opens click Yes to disclaimer.
      • Press the Scan button.
      • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
      • Please post them in your next reply.
    If you lose track of them, they will be saved in the same location as FRST64.exe
    Feel free to use separate replies if it's more convenient.

    Let me know how it goes.
    askey127
     
  3. deaddrop

    deaddrop Thread Starter

    Joined:
    Jun 9, 2005
    Messages:
    115
    Here are the logs...
     

    Attached Files:

  4. deaddrop

    deaddrop Thread Starter

    Joined:
    Jun 9, 2005
    Messages:
    115
    i think its my email password...
     
  5. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    desddrop,

    Most of your problems are self-inflicted, I'm afraid.
    We are going to remove what we see of offending software. We will provide substitutes as necessary.
    McAfee has to go . You now have two antivirus programs at one time. That is a REAL problem.
    ------------------------------------------------
    Remove Programs Using Control Panel
    From Start, Control Panel, click on Programs and Features
    Click each Entry, if it exists, choose Uninstall, and give permission to Continue:

    Auslogics BoostSpeed 10
    Auslogics Disk Defrag
    Debut Video Capture Software
    Express Burn Disc Burning Software
    Freecorder 8 Applications
    Freecorder extension
    Freecorder extension for Chrome
    Host App Service
    McAfee LiveSafe
    McAfee WebAdvisor
    MixPad Multitrack Recording Software
    Pixlr-o-Matic
    Pokki Start Menu
    Yahoo! Messenger
    Yahoo! Software Update
    Yahoo! Toolbar

    Take extra care in answering questions posed by any Uninstaller.
    -----------------------------------------------------------
    REBOOT (RESTART) Your Machine

    -----------------------------------------------------------
    Unfortunately, McAfee does not uninstall properly, so...
    Please download the MCafee tool from here and run it:
    https://download.mcafee.com/products/licensed/cust_support_patches/MCPR.exe

    -----------------------------------------------------------
    REBOOT (RESTART) Your Machine

    --------------------------------------------------------
    Run A Fix With FRST
    Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
    (Both on the Desktop is OK, or both in the same folder elsewhere)

    Run FRST64 and press the FIX button just once, and wait. DO NOT PRESS THE SCAN BUTTON.
    If for some reason the tool needs a restart, please make sure you let the system restart normally.
    The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
    When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.


    Some information you NEED about Yahoo Mail:
    ------------------------------------------------
    If your Yahoo mail account has been hacked, or if you find mysterious e-mails sent or received in your name, it may not have anything to do with you.
    If you contact Yahoo, they will tell you to use a more secure password.
    That's good advice, but not necessarily the source of the problem.
    There is a fair likelihood that the fault lies with Yahoo servers.
    Yahoo has been unwilling or unable to make their e-mail service adequately secure.
    IT experts have blogged about it for years.
    If criminals can hack into Yahoo servers, they can get all your information, including your passwords, e-mails and recipients addresses.
    The resulting spam is sometimes just a nuisance, but sometimes it's porn, or malicious attachments.
    Some articles on the subject:
    http://www.huffingtonpost.com/2013/05/31/yahoo-email-hacking_n_3366259.html

    http://arstechnica.com/security/201...oses-key-customer-following-mass-hack-attack/

    Yahoo even has a plan to recycle inactive user IDs ! :
    http://www.webpronews.com/yahoo-raises-security-concerns-with-email-plans-2013-06

    Until things change, I would suggest you save any critical Yahoo e-mails and address book(s), then establish a new e-mail account with a different provider.
    Your Internet Service provider will likely offer free e-mail accounts.
    I would then delete everything in all Yahoo e-mail folders (inbox, sent box, trash/deleted box), and delete your Yahoo account(s)..
    Directions on how to save the Yahoo address book are here:
    http://email.about.com/od/yahoomailtip1/qt/How_to_Export_Your_Yahoo_Mail_Address_Book.htm
    Yahoo directions on backing up e-mails are here: https://help.yahoo.com/kb/back-emails-sln5033.html
    I wouldn't wait too long to do this.

    You can read about how to delete a Yahoo Account here:
    http://www.wikihow.com/Delete-Yahoo!-Accounts

    Waiting to see your Fixlog.txt results.
    askey127
     

    Attached Files:

  6. deaddrop

    deaddrop Thread Starter

    Joined:
    Jun 9, 2005
    Messages:
    115
    i uninstall the programs that you mentioned then run FRST fix but when i open,its says it failed to update. I press fix and it says no fixlist found.Maybe i missed something on the process...
     
  7. deaddrop

    deaddrop Thread Starter

    Joined:
    Jun 9, 2005
    Messages:
    115
    btw do i need to perform the task about McAfee even it does not say it does not uninstall properly?
     
  8. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,283
    First Name:
    Derek
    Whether or not you have malware on the computer or other unwanted software, I will leave to Askey127 to help you.
    There is a current campaign that is a blackmail / extortion scam using details from several previously hacked sites
    https://myonlinesecurity.co.uk/attempted-blackmail-scam-watching-porn/

    go to https://haveibeenpwned.com/ put in your email address & see where the details were stolen from.
    Then change the password on every site it has been used on & never use the same password on multiple sites. Always use a different hard to guess password on each individual site.
     
  9. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    dvk01 has pointed out that there are blackmail schemes around that use stolen e-mail information to extort money.
    You will need to change passwords on every important site you use.
    Your password may have been stolen from your e-mail originally and shared with other miscreants. There are other sites which have had security breaches as well. It's not possible to be absolutely certain where it may have started, but the link dvk01 has shown may give you the most recent clues.

    If you look at my previous instruction post, at the bottom there is a link to a file named Fixlist.txt.
    You need to download it and save it in the same place (Desktop) as the scanner program (FRST64.exe).
    Then the Fix should work.

    McAfee never reports an incomplete removal. It just always leaves some pieces.
     
    Last edited: Jul 20, 2018
  10. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1213155

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice