Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 31, 2014 19:05:04 GMT -8
You downloaded the fixlist as htm(l) formatting and FRST does not understand htm(l) formatting. So fixed nothing.
After the second go at getting a ,txt formatted script FRST did as asked
Now the system should have calmed down and act more normally.
Quads
|
|
jjw
New Helpee
Posts: 23
|
Post by jjw on Nov 1, 2014 4:22:35 GMT -8
Yes, it seems the dllhost.exe*32 sessions have ceased. Thanks !!!!
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 1, 2014 16:31:16 GMT -8
Read carefully
Download Adwcleaner www.bleepingcomputer.com/download/adwcleaner/ on to your desktop The Blue Download Now @bleeping Computer button and run a scan ( Scan Button). It will create a log after. Or there is a Report button, ONE SCAN ONLY
Attach or paste the log back here Quads
|
|
jjw
New Helpee
Posts: 23
|
Post by jjw on Nov 1, 2014 18:11:41 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 2, 2014 17:44:04 GMT -8
a) Click the Scan Button and wait for the scan to finish,. (already done if Adwcleaner is left pending) b) Make sure all of the items under each TAB are to be ticked. Except the entries for (Remove the tick beside the entries)
Folder Found : C:\Users\Jimmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Folder Found : C:\Users\Jimmy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Key Found : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk Key Found : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk (All Norton )
c) Click the Clean Button and Adwcleaner will process all the items ticked / checked and then may ask for the system to be restarted.d) It should create a new log afterwards (with S0 in the name). Here is a Screenshot example Quads
|
|
jjw
New Helpee
Posts: 23
|
Post by jjw on Nov 2, 2014 19:40:06 GMT -8
Thanks so much! I ran the scan, unchecked the files/folders you shared and then ran 'clean'. Attached is the Adw SO log file. Attachment Deleted
|
|
jjw
New Helpee
Posts: 23
|
Post by jjw on Nov 5, 2014 3:36:58 GMT -8
Awaiting next steps. Thanks so much.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 5, 2014 16:29:03 GMT -8
On with step 4, Complete system check for any file and cleanup of items and tools used. Special attention to the different settings I have asked for below You can leave Norton Enabled even though ESET may warn about it. just makes the scan take longer. The pictures below showing what to click may be blue instead of green on the ESET website now, but the procedure is still the same Please read carefully and Slowly, Notice all the settings listed below to check before starting the scan. Take note of the NO tick in the Remove found threats setting below at it needs to have the tick removed.
Hold down Control and click on the following link to open ESET OnlineScan in a new window. ESET OnlineScan
Click the For alternate browsers only: (Microsoft Internet Explorer users can skip these steps) Click on Posted Image to download the ESET Smart Installer. Save it to your desktop. Double click on the icon on your desktop. Check Click the button. Accept any security warnings from your browser. Under scan settings, check DON'T (NO)</font></b> check Remove found threats (reason for this is we don't want something deleted and then Windows won't load).
Click Advanced settings and select the following: Scan potentially unwanted applications Scan for potentially unsafe applications Enable Anti-Stealth technology
The scanner screen gives me the option of saving the results to a .txt file as part of the options after the scan has finished. Screenshot of part of the finished scan dialog box by ESET showing the options.</font></b> List found threats and at the bottom of the listings is the options to save the list. Quads
|
|
jjw
New Helpee
Posts: 23
|
Post by jjw on Nov 6, 2014 4:55:11 GMT -8
Quads, Thanks so much. Unfortunately, I can't seem to run ESET due to the following error after accepting the terms of use:
"An add-on for this website failed to run"
|
|
jjw
New Helpee
Posts: 23
|
Post by jjw on Nov 6, 2014 10:11:35 GMT -8
OK ... able to resolve missing add-on issue by enabling ActiveX. ESET scan results attached. Please note, I have not deleted these files and have not removed the tool. Awaiting next steps! Attachment Deleted
Thank you!
|
|