Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Norton advising of blocking a Maladvertisment intursion attempt [Close


  • This topic is locked This topic is locked

#16
onyacmk

onyacmk

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts

Ok Adam,

I've tried the steps above.

Step 1 log to below

Step 2, I could not find Chrome anywhere on the computer.  I tried the steps you described a few times, but to no avail. 

Step 3 , 4, 5 done

Step 6 log below.

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 31-01-2015 01
Ran by Craig at 2015-02-01 10:31:06 Run:2
Running from C:\Users\Craig\Desktop\Computer cleanup
Loaded Profiles: Craig (Available profiles: Craig)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
C:\Users\Craig\Desktop\Old Firefox Data\rpuu94cx.default\extensions\[email protected]
C:\Users\Craig\Desktop\Old Firefox Data\rpuu94cx.default\extensions\[email protected]
EmptyTemp:
end
*****************

C:\Users\Craig\Desktop\Old Firefox Data\rpuu94cx.default\extensions\[email protected] => Moved successfully.
C:\Users\Craig\Desktop\Old Firefox Data\rpuu94cx.default\extensions\[email protected] => Moved successfully.
EmptyTemp: => Removed 425.9 MB temporary data.


The system needed a reboot.

==== End of Fixlog 10:33:35 ====

 

 Results of screen317's Security Check version 0.99.96  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Norton 360 Premier Edition   
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Java 8 Update 31  
 Java version 32-bit out of Date!
  Java 64-bit 8 Update 31  
 Adobe Flash Player     16.0.0.296  
 Adobe Reader XI  
 Mozilla Firefox (35.0.1)
````````Process Check: objlist.exe by Laurent````````  
 Firetrust MailWasher MailWasher.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````
 

 

I trust that this helps.

 

My computer does seem to be working well now, thankyou very much.

 

Craig


  • 0

Advertisements


#17
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hi Craig, 
 

Step 2, I could not find Chrome anywhere on the computer.  I tried the steps you described a few times, but to no avail.

That's OK.
 

My computer does seem to be working well now, thankyou very much.

Excellent. :)
With this in mind -
 
All Clean!
Congratulations, your computer appears clean!  :)
I no longer see signs of malware on your computer, and feel satisfied that our work here is done. The steps below will remove the tools we have used, and reset any settings changed. I have also provided a list of resources and tools that you may find useful
 
My help will always be free. But if you are happy with the help provided, and would like to support my fight against malware and/or buy me a beer, please consider a donation. YSCcjW7.png
 
AFZxnZc.jpg DelFix

  • Please download DelFix and save the file to your Desktop.
  • Double-click DelFix.exe to run the programme.
  • Place a checkmark next to the following items:
    • Activate UAC
    • Remove disinfection tools
    • Create registry backup
    • Purge system restore
    • Reset system settings
  • Click the Run button.

-- This will remove the specialised tools we used to disinfect your system. Any leftover logs, files, folders or tools remaining on your Desktop which were not removed can be deleted manually (right-click the file + delete).
 
--- Malwarebytes Anti-Malware will still be present on your computer. I recommend keeping this programme, updating and scanning with it once a week to maintain security on your computer. If you do not wish to keep this programme on your computer, you can uninstall it by pressing the Windows Key pdKOQKY.png + r on your keyboard at the same time, typing appwiz.cpl, clicking OK and searching for Malwarebytes.
 
======================================================
 
I have compiled below a list of resources you may find useful. The articles document information on computer security, common infection vectors and how you can stay safe on the Internet.

The following programmes come highly recommended in the security community.

  • xKsUqI5A.png.pagespeed.ic.vn1Hlvqi8h.jpg AdBlock is a browser add-on that blocks annoying banners, pop-ups and video ads.
  • E8I37RF.pngCryptoPrevent places policy restrictions on loading points for ransomware (eg. CryptoWall), helping prevent the execution of malware. 
  • x7D2ig3K.png.pagespeed.ic.x4TC1AK8OX.jpg Emsisoft Antimalware (free) acts as an additional on-demand scanner, and can be used in conjunction with your Anti-Virus. 
  • EG85Vjt.png Malwarebytes Anti-Exploit (MBAE) is designed to prevent zero-day malware from exploiting vulnerable software.
  • x6YRrgUC.png.pagespeed.ic.HjgFxjvw2Z.jpg Malwarebytes Anti-Malware Premium (MBAM) works in real-time along side your Anti-Virus to prevent malware execution.
  • xjv4nhMJ.png.pagespeed.ic.A5YbWn1eDO.png NoScript is a Firefox add-on that blocks the actions of malicious scripts by using whitelisting and other technology. 
  • 3O8r9Uq.png Sandboxie isolates programmes of your choice, preventing files from being written to your HDD unless approved by you. 
  • DgW1XL2.png.pagespeed.ce.v1OlJl_ZAS.png Secunia PSI will scan your computer for vulnerable software that is outdatedand automatically find the latest update for you.
  • xj1OLIec.png.pagespeed.ic.k6hhwopU0q.jpg SpywareBlaster is a form of passive protection, designed to block the actions of malicious websites and tracking cookies.
  • xsHjS79L.png.pagespeed.ic.n4Sk8_GzZn.jpg Unchecky automatically removes checkmarks for bunlded software in programme installers; helping you avoid adware and PUPs. 
  • xJEP5iWI.png.pagespeed.ic.4tmM1lM7DQ.png Web of Trust (WOT) is a browser add-on designed to alert you before interacting with a potentially malicious website. 
     

Need a second opinion on a file or website? Scan the file/URL before clicking by using one of the following free online scanner services.

-- Please feel free to ask if you have any questions or concerns on computer security or the programmes above.
 
======================================================
 
Please confirm you have no outstanding issues, and are happy with the state of your computer. Once I have confirmation things are in order, we can wrap things up and I will close this thread. 
 
Thank you for using Geeks to Go.
 
Safe Surfing. thumbup.gif
Adam


  • 0

#18
onyacmk

onyacmk

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts

Hey Adam

 

Thanks again for your assistance.  I will not be able to do the next part until the weekend again.

 

Ta

 

Craig


  • 0

#19
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hi Craig, 

 

You're more than welcome. :)

 

I will leave the topic open until I've had confirmation there were no issues removing the tools used. 


  • 0

#20
onyacmk

onyacmk

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts

All done Adam.

It appears everything is working nicely now.

Thanks again for your work,

Craig


Edited by onyacmk, 08 February 2015 - 06:56 AM.

  • 0

#21
onyacmk

onyacmk

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts

Hey Adam,

While running Emsisoft anti malware program it detected files and cleaned them.

Should I have you do anymore reviewing or just use these programs to clean the computer?

Again thanks for all your assistance,

Craig


Edited by onyacmk, 08 February 2015 - 07:07 AM.

  • 0

#22
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts
Hi Craig,

Can you open Emsisoft, locate the log and copy/paste the contents please?
  • 0

#23
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP