Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Netbook Locked by Scam Ransom Ware. [Closed]


  • This topic is locked This topic is locked

#16
Dave 77 HD

Dave 77 HD

    New Member

  • Topic Starter
  • Member
  • Pip
  • 8 posts

Hi Adam.

 

 

Here's the results of the things you asked me to do.

 

Java updated to V65.

Versions 22 and 45 were uninstalled.

 

 

This is the MBAM Scan log.

 

Attached File  mbam-log-2014-07-25 (19-36-37).xml   4.63KB   42 downloads

 

 

This is the ESET log.

 

C:\AdwCleaner\Quarantine\C\ProgramData\Updater\Uninstall.exe.vir multiple threats
C:\AdwCleaner\Quarantine\C\ProgramData\Updater\updater.exe.vir a variant of Win32/Toolbar.WebApp.A potentially unwanted application
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\5a2bb2e-720b8790 multiple threats
 

Hope this helps.

 

Dave.

 

 


  • 0

Advertisements


#17
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hi Dave,
 
Please open Malwarebytes Anti-Malware, navigate to the History tab and locate the same scan log attached in your previous reply. Open the scan log. This time, please click Copy to Clipboard, and paste the text in your next reply.
 
STEP 1
xlK5Hdb.png Farbar Recovery Scan Tool (FRST) Script

  • Press the Windows Key pdKOQKY.png + r on your keyboard at the same time. Type Notepad and click OK.
  • Copy the entire contents of the codebox below and paste into the Notepad document.
    start
    C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\5a2bb2e-720b8790
    end
  • Click FileSave As and type fixlist.txt as the File Name
  • Important: The file must be saved in the same location as FRST.exe. 

NOTICE: This script is intended for use on this particular machine. Do not use this script on any other machine; doing so may cause damage to your Operating System.

  • Right-Click FRST.exe and select AVOiBNU.jpg Run as administrator to run the programme.
  • Click Fix.
  • A log (Fixlog.txt) will open on your desktop. Copy the contents of the log and paste in your next reply.
     

STEP 2
CXrghb6.png Update Outdated Software

Outdated software contain security risks that must be patched. Please download and install the latest version of the programmes below.

  • u9DsAVv.png Follow these instructions to check for and download the latest Windows Updates.
     

STEP 3
zANS9oB.png Disable Java in Your Browser
Due to frequent exploits we recommend you disable Java in your browser. For information on Java vulnerabilities, please read the following article (point #7).

  • Click the Windows Start Button 29Fou9c.jpg and type Java Control Panel (or javacpl) in the search bar. 
  • Click on the Java Control Panel. Once opened, click the Security tab.
  • Deselect the check box for Enable Java content in the browser. This will disable the Java plug-in in the browser. 
  • Click Apply. When the Windows User Account Control (UAC) AVOiBNU.jpg appears, allow permissions to make the changes. 
  • Click OK in the Java Plug-in confirmation window.
  • Restart your browser(s) for changes to take effect.
  • More information can be found here and here.
     

STEP 4
oxliOQk.png Security Check

  • Please download SecurityCheck and save the file to your desktop.
  • Double-click SecurityCheck.exe and follow the onscreen instructions inside the black box.
  • A log (checkup.txt) will automatically open on your desktop.
  • Copy the contents of the log and paste in your next reply.
     

======================================================
 
STEP 5
pfNZP4A.png Logs
In your next reply please include the following logs. Please be sure to copy and paste the requested logs, as well as provide information on any questions I may have asked.

  • MBAM log (copy/pasted)
  • Fixlog.txt
  • checkup.txt
  • Comments on how your computer is performing. 

-- Note: There are important steps to follow. Please ensure you continue following this topic until I give you the "All Clean".


  • 0

#18
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hi Dave,

 

Do you still require assistance?


  • 0

#19
CatByte

CatByte

    GeekU Teacher

  • GeekU Moderator
  • 2,643 posts
  • MVP
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP