Is there any way I can get rid of it?
Computer infected with win32.ramnit.ae?
Started by
PottedPlant
, Sep 30 2011 02:05 PM
#1
Posted 30 September 2011 - 02:05 PM
Is there any way I can get rid of it?
#2
Posted 04 October 2011 - 02:44 PM
Hi PottedPlant, welcome to Geeks to Go. My name is blmadara and I will be helping you with your problems. Please be patient with me as I am still in training and my responses will have to be reviewed by an expert before I can post them.
First I'd like to go over some things that will help both of us.
Now, lets get started.
Step One: OTL Custom Scan
Download OTL to your Desktop
What I need in your next post:
1. The logs produced by OTL - OTL.txt and Extras.txt.
First I'd like to go over some things that will help both of us.
- Read each of my posts entirely before performing my instructions. It would be helpful if you printed my instructions so you can read and check the steps as you perform them.
- Follow the steps exactly in the order posted.
- Please don't be afraid to ask questions. If you don't understand something, let me know before continuing.
- If you can't perform a certain step, or you're unsure about what to do, please stop and let me know.
- It is very important that you stay with me until the end so we make sure that we have removed all the bad stuff.
- Please don't attach any logs to your posts unless I request it. It is easier for me if you copy and paste the logs into your reply.
- Finally, never fix anything using other programs on your own. This can hinder my ability to see what is wrong with your computer and make it harder to clean your computer.
Now, lets get started.
Step One: OTL Custom Scan
Download OTL to your Desktop
- Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
- Under the Custom Scans/Fixes box at the bottom, paste in the following
netsvcs %SYSTEMDRIVE%\*.exe %USERPROFILE%\..|smtmp;true;true;true /FP /md5start volsnap.* explorer.exe winlogon.exe Userinit.exe svchost.exe /md5stop %systemroot%\*. /mp /s hklm\software\clients\startmenuinternet|command /rs hklm\software\clients\startmenuinternet|command /64 /rs CREATERESTOREPOINT
- Please select the Scan All Users checkbox.
- Change the File Age dropdown list from 30 days to 60 days.
- Under Extra Registry heading, select Use Safelist.
- Then click the Run Scan button at the top
- Let the program run unhindered, until it is done
- Post the logs it produces in your next reply, OTL.txt and Extras.txt.
What I need in your next post:
1. The logs produced by OTL - OTL.txt and Extras.txt.
#3
Posted 10 October 2011 - 11:23 AM
Due to lack of feedback, this topic has been closed.
If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users