[dustypink]

I am going to work Tommorr till 21.00 so wont be able to reply till maybe Tues night

[Advertisements]

when I click on it it downloads and opens so how do I save it to my desk top 

OK, then move the file from your Downloads folder to your Desktop.

OK, I will wait for the results then.

[Machiavelli]

when I click on it it downloads and opens so how do I save it to my desk top 

OK, then move the file from your Downloads folder to your Desktop.

OK, I will wait for the results then.

[dustypink]

Step 1: Malwarebytes

 

no malicious objects found

[dustypink]

eset finished and found 3 threats I pressed finish and cant find the file

[Machiavelli]

Is the ESET Log here located? : C:\Program Files\ESET\ESET Online Scanner\log.txt

Please post the MBAM Log as it said in my instructions.

[dustypink]

Th Malware never produced anything to post it just said no threats found

[dustypink]

is this it

ESETSmartInstaller@High as downloader log:

all ok

# version=8

# OnlineScannerApp.exe=1.0.0.1

# OnlineScanner.ocx=1.0.0.6920

# api_version=3.0.2

# EOSSerial=1553c1440a4003498f05795eebf79c3e

# engine=18249

# end=finished

# remove_checked=false

# archives_checked=true

# unwanted_checked=true

# unsafe_checked=true

# antistealth_checked=true

# utc_time=2014-05-14 07:54:45

# local_time=2014-05-14 08:54:45 (+0000, GMT Daylight Time)

# country="United Kingdom"

# lang=1033

# osver=6.1.7601 NT Service Pack 1

# compatibility_mode=5893 16776574 100 94 9918319 152519135 0 0

# scanned=163884

# found=3

# cleaned=0

# scan_time=36877

sh=932E042070F1567ED5A116E98E3C04D7D07E0681 ft=1 fh=3bf8f6c29b1c29c3 vn="Win32/Bundled.Toolbar.Google.D potentially unsafe application" ac=I fn="C:\Users\Toshiba\Downloads\ccsetup409.exe"

sh=C133DB147FA578119F34B675D45B477E110761B2 ft=1 fh=9272027fde077ca7 vn="Win32/Bundled.Toolbar.Google.D potentially unsafe application" ac=I fn="C:\Users\Toshiba\Downloads\ccsetup412.exe"

sh=84C9A396986227029692400DF4A44E7EC882DEA5 ft=1 fh=c71c00118eec61a5 vn="a variant of Win32/InstallCore.IU potentially unwanted application" ac=I fn="C:\Users\Toshiba\Downloads\ZipOpenerSetup.exe"

[Machiavelli]

Yes, this is it.

• Start Malwarebytes
• Go to the tab called History
• Then click on Application Logs

• Then select the one log where it has found anything, do a double click on it
• Then click on the Export
• Button - select in the menu Text File (.txt)

• Save it on your Desktop and post the content of this text file into your next reply.

[dustypink]

Malwarebytes Anti-Malware

www.malwarebytes.org

 

Scan Date: 13/05/2014

Scan Time: 22:27:01

Logfile: mal..txt

Administrator: Yes

 

Version: 2.00.1.1004

Malware Database: v2014.05.13.14

Rootkit Database: v2014.03.27.01

License: Free

Malware Protection: Disabled

Malicious Website Protection: Disabled

Chameleon: Disabled

 

OS: Windows 7 Service Pack 1

CPU: x64

File System: NTFS

User: Toshiba

 

Scan Type: Threat Scan

Result: Completed

Objects Scanned: 287549

Time Elapsed: 25 min, 27 sec

 

Memory: Enabled

Startup: Enabled

Filesystem: Enabled

Archives: Enabled

Rootkits: Enabled

Shuriken: Enabled

PUP: Enabled

PUM: Enabled

 

Processes: 0

(No malicious items detected)

 

Modules: 0

(No malicious items detected)

 

Registry Keys: 0

(No malicious items detected)

 

Registry Values: 0

(No malicious items detected)

 

Registry Data: 0

(No malicious items detected)

 

Folders: 0

(No malicious items detected)

 

Files: 0

(No malicious items detected)

 

Physical Sectors: 0

(No malicious items detected)

[Machiavelli]

What's with Step 3?

[dustypink]

 

 Results of screen317's Security Check version 0.99.82  

 Windows 7 Service Pack 1 x64 (UAC is enabled)  

 Internet Explorer 11  

``````````````Antivirus/Firewall Check:`````````````` 

 Windows Firewall Enabled!  

Microsoft Security Essentials   

  (On Access scanning disabled!) 

 Error obtaining update status for antivirus!  

`````````Anti-malware/Other Utilities Check:````````` 

 Spybot - Search & Destroy 

 Java™ 6 Update 17  

 Java version out of Date! 

 Adobe Reader 9 Adobe Reader out of Date! 

 Google Chrome 34.0.1847.131  

 Google Chrome 34.0.1847.137  

````````Process Check: objlist.exe by Laurent````````  

 Microsoft Security Essentials msseces.exe 

 Windows Defender MSMpEng.exe 

 Malwarebytes Anti-Malware mbam.exe  

 Spybot Teatimer.exe is disabled! 

`````````````````System Health check````````````````` 

 Total Fragmentation on Drive C:  

````````````````````End of Log`````````````````````` 

[dustypink]

Sorry I work fulltime and sometimes cant reply quickly

[Machiavelli]

Hey,

Step 1: OTL Fix

• Run OTL (If you have Windows Vista / Windows 7 / Windows 8 please do a Right click on the OTL icon and select Run as Administrator).
• Copy (Ctrl+C) and Paste (Ctrl+V) all of the following text into the Custom Scans/Fixes box:
  
  
  

  :Commands
  [CREATERESTOREPOINT]
  
  :Files
  C:\Users\Toshiba\Downloads\ccsetup409.exe
  C:\Users\Toshiba\Downloads\ccsetup412.exe
  C:\Users\Toshiba\Downloads\ZipOpenerSetup.exe
  
  :Commands
  [EMPTYTEMP]
  

• Click the Run Fix button.
• After your computer has rebooted, post the Fixlog into your next reply.

Step 2: JavaRa

Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older versions of Java components and upgrade the application.

Upgrading Java :
Please download JavaRa to your desktop and unzip it to its own folder

• Run JavaRa.exe, then click on Remove Java Runtime.
• Select the Java version you have from the drop down list, and then click on Run Uninstaller
• Press Yes if it asks to uninstall the product.
• Allow the uninstaller to remove the installed version.
• When its finished, go back to JavaRa, and click Back
• Click on Update Java Runtime and then select Download and install latest version.
• Press Next
• Press Java Manual Download.
• A browser window will open with the Java download page.
• Click the Windows offline link to download Java.
• Run the installer.
• Close JavaRa

Step 3: Other updates

Please also update Adobe Reader.

Step 4: Question

How is your PC running?

[dustypink]

All processes killed

========== COMMANDS ==========

Restore point Set: OTL Restore Point

========== FILES ==========

C:\Users\Toshiba\Downloads\ccsetup409.exe moved successfully.

C:\Users\Toshiba\Downloads\ccsetup412.exe moved successfully.

C:\Users\Toshiba\Downloads\ZipOpenerSetup.exe moved successfully.

========== COMMANDS ==========

 

[EMPTYTEMP]

 

User: All Users

 

User: Amanda

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: Public

 

User: Toshiba

->Temp folder emptied: 3771707 bytes

->Temporary Internet Files folder emptied: 536711 bytes

->Google Chrome cache emptied: 422331144 bytes

->Flash cache emptied: 0 bytes

 

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32 (64bit) .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 5324439 bytes

%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes

RecycleBin emptied: 0 bytes

 

Total Files Cleaned = 412.00 mb

 

 

OTL by OldTimer - Version 3.2.69.0 log created on 05172014_193533

 

Files\Folders moved on Reboot...

C:\Users\Toshiba\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

C:\Users\Toshiba\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

 

PendingFileRenameOperations files...

 

Registry entries deleted on Reboot...

[dustypink]

Please download JavaRa to your desktop and unzip it to its own folder

 

how do I unzip it