In Progress how to remove keylogger/virus

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

deaddrop

Thread Starter
Joined
Jun 9, 2005
Messages
115
I think my laptop is infected bcoz the other day I received an email that mentions my password.Maybe got it from some malicious sites.How can i clean my computer of the virus or keylogger? btw few days i noticed that my keyboard was acting strange and slow.Hope somebody can help and assist me clean my computer.Thanks in advance....deaddrop

Tech Support Guy System Info Utility version 1.0.0.4
OS Version: Microsoft Windows 8.1, 64 bit
Processor: Intel(R) Pentium(R) CPU N3700 @ 1.60GHz, Intel64 Family 6 Model 76 Stepping 3
Processor Count: 4
RAM: 4010 Mb
Graphics Card: Intel(R) HD Graphics, 1024 Mb
Hard Drives: C: 224 GB (45 GB Free); D: 225 GB (181 GB Free);
Motherboard: Acer, Magellan_BA
Antivirus: Avast Antivirus, Enabled and Updated
 

askey127

Malware Specialist
Joined
Dec 22, 2006
Messages
3,722
Hi deaddrop,
Let's take a look at what you have on there.
When you say an e-mail contained your password, was it your username password for the machine, your e-mail password, or what?
-----------------------------------------------------------
Download and Run the Farbar Scan Tool
  • Download FRST64 and save to your Desktop.
  • Double click Frst64.exe to launch it.
  • FRST64 will start to run.
    • When the tool opens click Yes to disclaimer.
    • Press the Scan button.
    • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
    • Please post them in your next reply.
If you lose track of them, they will be saved in the same location as FRST64.exe
Feel free to use separate replies if it's more convenient.

Let me know how it goes.
askey127
 

askey127

Malware Specialist
Joined
Dec 22, 2006
Messages
3,722
desddrop,

Most of your problems are self-inflicted, I'm afraid.
We are going to remove what we see of offending software. We will provide substitutes as necessary.
McAfee has to go . You now have two antivirus programs at one time. That is a REAL problem.
------------------------------------------------
Remove Programs Using Control Panel
From Start, Control Panel, click on Programs and Features
Click each Entry, if it exists, choose Uninstall, and give permission to Continue:

Auslogics BoostSpeed 10
Auslogics Disk Defrag
Debut Video Capture Software
Express Burn Disc Burning Software
Freecorder 8 Applications
Freecorder extension
Freecorder extension for Chrome
Host App Service
McAfee LiveSafe
McAfee WebAdvisor
MixPad Multitrack Recording Software
Pixlr-o-Matic
Pokki Start Menu
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar

Take extra care in answering questions posed by any Uninstaller.
-----------------------------------------------------------
REBOOT (RESTART) Your Machine

-----------------------------------------------------------
Unfortunately, McAfee does not uninstall properly, so...
Please download the MCafee tool from here and run it:
https://download.mcafee.com/products/licensed/cust_support_patches/MCPR.exe

-----------------------------------------------------------
REBOOT (RESTART) Your Machine

--------------------------------------------------------
Run A Fix With FRST
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
(Both on the Desktop is OK, or both in the same folder elsewhere)

Run FRST64 and press the FIX button just once, and wait. DO NOT PRESS THE SCAN BUTTON.
If for some reason the tool needs a restart, please make sure you let the system restart normally.
The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.


Some information you NEED about Yahoo Mail:
------------------------------------------------
If your Yahoo mail account has been hacked, or if you find mysterious e-mails sent or received in your name, it may not have anything to do with you.
If you contact Yahoo, they will tell you to use a more secure password.
That's good advice, but not necessarily the source of the problem.
There is a fair likelihood that the fault lies with Yahoo servers.
Yahoo has been unwilling or unable to make their e-mail service adequately secure.
IT experts have blogged about it for years.
If criminals can hack into Yahoo servers, they can get all your information, including your passwords, e-mails and recipients addresses.
The resulting spam is sometimes just a nuisance, but sometimes it's porn, or malicious attachments.
Some articles on the subject:
http://www.huffingtonpost.com/2013/05/31/yahoo-email-hacking_n_3366259.html

http://arstechnica.com/security/201...oses-key-customer-following-mass-hack-attack/

Yahoo even has a plan to recycle inactive user IDs ! :
http://www.webpronews.com/yahoo-raises-security-concerns-with-email-plans-2013-06

Until things change, I would suggest you save any critical Yahoo e-mails and address book(s), then establish a new e-mail account with a different provider.
Your Internet Service provider will likely offer free e-mail accounts.
I would then delete everything in all Yahoo e-mail folders (inbox, sent box, trash/deleted box), and delete your Yahoo account(s)..
Directions on how to save the Yahoo address book are here:
http://email.about.com/od/yahoomailtip1/qt/How_to_Export_Your_Yahoo_Mail_Address_Book.htm
Yahoo directions on backing up e-mails are here: https://help.yahoo.com/kb/back-emails-sln5033.html
I wouldn't wait too long to do this.

You can read about how to delete a Yahoo Account here:
http://www.wikihow.com/Delete-Yahoo!-Accounts

Waiting to see your Fixlog.txt results.
askey127
 

Attachments

deaddrop

Thread Starter
Joined
Jun 9, 2005
Messages
115
i uninstall the programs that you mentioned then run FRST fix but when i open,its says it failed to update. I press fix and it says no fixlist found.Maybe i missed something on the process...
 

deaddrop

Thread Starter
Joined
Jun 9, 2005
Messages
115
btw do i need to perform the task about McAfee even it does not say it does not uninstall properly?
 

dvk01

Derek
Retired Moderator Retired Malware Specialist
Joined
Dec 14, 2002
Messages
56,452
Whether or not you have malware on the computer or other unwanted software, I will leave to Askey127 to help you.
There is a current campaign that is a blackmail / extortion scam using details from several previously hacked sites
https://myonlinesecurity.co.uk/attempted-blackmail-scam-watching-porn/

go to https://haveibeenpwned.com/ put in your email address & see where the details were stolen from.
Then change the password on every site it has been used on & never use the same password on multiple sites. Always use a different hard to guess password on each individual site.
 

askey127

Malware Specialist
Joined
Dec 22, 2006
Messages
3,722
dvk01 has pointed out that there are blackmail schemes around that use stolen e-mail information to extort money.
You will need to change passwords on every important site you use.
Your password may have been stolen from your e-mail originally and shared with other miscreants. There are other sites which have had security breaches as well. It's not possible to be absolutely certain where it may have started, but the link dvk01 has shown may give you the most recent clues.

If you look at my previous instruction post, at the bottom there is a link to a file named Fixlist.txt.
You need to download it and save it in the same place (Desktop) as the scanner program (FRST64.exe).
Then the Fix should work.

McAfee never reports an incomplete removal. It just always leaves some pieces.
 
Last edited:
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

Top