dbrisen
Malware Removalists
Posts: 3,688
|
Post by dbrisen on Jul 26, 2014 10:35:10 GMT -8
Thank you for the log. Please run AdwCleaner again (if you don't have it running from the last scan) and a) Click the Scan Button and wait for the scan to finish, (If Adwcleaner has been left open at the finish of the scan this is already done). b) Make sure in your case all the items under each TAB are ticked / checked then. c) Click the Clean Button and Adwcleaner will process all the items ticked / checked and then may ask for the system to be restarted. d) It should create a new log afterwards (with S0 in the name). e) Please attach or copy the log into your reply here. Next, Download Junkware Removal Tool from here and run it on the desktop. Double click on the downloaded file on your desktop; it will open up a command window and run from there. When asked, press any key to let it run. This will create a log on the desktop; please attach or copy & paste the log in your next post (JRT.txt).
|
|
|
Post by strifes on Jul 27, 2014 11:24:20 GMT -8
|
|
dbrisen
Malware Removalists
Posts: 3,688
|
Post by dbrisen on Jul 27, 2014 13:12:14 GMT -8
Step1 - Malwarebytes' Anti-MalwarePlease download the latest version of Malwarebytes' Anti-Malware from HereDouble Click on the mbam-setup.exe file to install the application. Do not check on the Trial of Professional version. Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and install the latest version. When the main screen opens, if the database is out of date, you can click on the Fix Now banner or the Update Now link Once the program has loaded and updated, select " Scan Now >>" to start the scan. The scan may take some time to finish, so please be patient. If any malware is found, you will be presented with a screen like the one below. Please click on the Export Log button and select the As text file from the dropdown list. I would suggest you save the file on your desktop (as we need the report attached here for review and it is easy to find on the desktop). After you have saved the report file, return to the Potential Threats Detected page and click on Cancel. You can close MBAM after that. Please attach the report file to a post here; I will review the file and script what needs to be removed.
|
|
dbrisen
Malware Removalists
Posts: 3,688
|
Post by dbrisen on Jul 27, 2014 13:14:59 GMT -8
Step2 ...This next step may take a while (just to warn you) ..... ESET Online does not work with IE 11 (Internet Explorer) at the moment (a few weeks ago anyway) so if you have IE 11, Chrome or Firefox has to be used instead. ESET Online does work with IE 10 and earlier. You can leave Kaspersky enabled even though ESET may warn about it. just makes the scan take longer. The pictures below showing what to click may be blue instead of green on the ESET website now, but the procedure is still the same Please read carefully and Slowly, Notice all the settings listed below to check before starting the scan. Stop and ask if you have any questions.Take note of the NO tick in the Remove found threats setting below at it needs to have the tick removed.
Hold down Control key and click on the following link to open ESET OnlineScan in a new window. Link =>> ESET OnlineScan << Click the Run ESET Online Scanner located on the left side of the page (not the free trial). For browsers other than Internet Explorer only: (Microsoft Internet Explorer users can skip this step) Click on the esetsmartinstaller link in the popup window that opens. Save it to your desktop. Double click on the icon on your desktop. Check (accept) the Terms of Use. Click the START button. Accept any security warnings from your browser. Under scan settings, DON'T Remove found threats (leave this unselected or unchecked) (reason for this is we don't want something deleted and then Windows won't load). Check the box in front of Scan Archives. So the first box is unchecked and the second box is checked.Click Advanced settings and select the following: Scan potentially unwanted applications Scan for potentially unsafe applications Enable Anti-Stealth technologyESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time. When the scan is finished, if any threats are found you will see the screen below. Click to view the found threats. At the bottom of the listed threats, there is an option to save the results to a text file. Please do this so you can attach the results here for review and removal of the items that are not false positives (these will be scripted out so do not worry). Once the log text file is saved, return to the Scan Finished screen by clicking "<<Back", then click on the uninstall button and click Finish. Attach the saved log file in your next reply please. Thanks.
|
|
|
Post by strifes on Jul 28, 2014 10:59:35 GMT -8
|
|
|
Post by strifes on Jul 29, 2014 9:48:04 GMT -8
|
|
dbrisen
Malware Removalists
Posts: 3,688
|
Post by dbrisen on Jul 29, 2014 22:02:17 GMT -8
Thank you for the scans. We need to get ready for the final clean up stages ... Download OTL from here on to the Desktop. Disable Kaspersky for say 30mins - (Right click on the Kaspersky icon in the Notification tray and select "Pause Protection...."; you turn this back on after the scan is finished) Start OTL, (Right click and from the menu choose "Run as Administrator") Click the "Include 64bit scans". Click the Scan All Users checkbox. Change file age to 90 daysPress the Run Scan button. An OTL.txt and Extras.txt log files will be created. You can attach then to a post or copy_paste the logs text into a post here. If you have any problems come back and ask.
|
|
|
Post by strifes on Jul 31, 2014 11:45:04 GMT -8
|
|
dbrisen
Malware Removalists
Posts: 3,688
|
Post by dbrisen on Jul 31, 2014 20:03:45 GMT -8
Start OTL by right clicking on it and selecting "Run as Administrator"
Under Custom Scans / Fixes box please copy and paste the contents in the .txt file I have attached, all the way to the bottom ([EMPTYJAVA] is the last command line) , It is in the correct line by line layout as it is to be for OTL to understand, what I want it to do. (include the : at the start of :Commands and all the way to the end / bottom) and run the script. (click the Red Run Fix Button)
The output log, should be placed in the C:\_OTL\MovedFiles folder after, to attach back here. Looks like a txt file not a Folder.
|
|
|
Post by strifes on Aug 1, 2014 12:50:34 GMT -8
|
|