Help! Cryptowall virus on computer!
Posted 03 April 2015 - 06:07 PM
Posted 04 April 2015 - 03:16 PM
Just an update on the ESET Online Scanner. So I tried it last night, it got to 47% and then didn't go any further. We were having some internet issues so I restarted it again today. At this moment the scanner has been running for 7hrs 40min and is at 47%. It does say that it has found 253 infected files thus far. It seems to be stuck going through C:\Users\Sarah\AppData\Local\Temp. If they are just temporary links and documents, would it be possible to just delete them?
Posted 04 April 2015 - 03:59 PM
No problem deleting temp files. Sometimes they won't delete. Usually means something is using them so go on to the next one.
Posted 07 April 2015 - 09:25 PM
Sorry for the delay. Tried to delete some of the temp files. As you said, some will not delete. Found that FRST has quarentined some of the files, so won't let me touch them.
As for BitDefender. I tried to run it on IE, but it said an add on was missing to make it run. So I did it on Firefox instead and it gave me the message "You’re Good To Go! No Active Viruses Found" but would not give me an option to view a report.
Posted 08 April 2015 - 08:49 AM
Clear the Java Cache by following the instructions on
You do not have the latest Java.
First go into Control Panel, Add/Remove Software (XP) or Programs and Features (Vista/Win 7) and remove any old versions (which may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE, J2SE)
Java 7 Update 6 (64-bit)
Java 7 Update 67
Java™ 6 Update 13
Java™ 6 Update 31
Java™ 6 Update 7
Java has been very vulnerable to infection so unless you absolutely need it you should not reinstall it.
If you feel you must have Java:
Get the latest Java at:
Save it to your PC then close all browsers and install it. Do not let it install the yahoo toolbar or other foistware.
Once installed, go into Control Panel, Java, Security and set the slider to the Highest then OK.
(If you also want the 64 bit version then use the 64 bit version of IE to get it.)
Then let's download the latest version of Avast:
Save the file. Uninstall the old version of Avast. Reboot and then install the new version by right clicking and run as admin. Decline any additional software. After the next reboot it may ask you if you want to install dropbox. Tell it no. Stick with the Basic version.
Some people object to the voice notification of updates. To turn it off, click on the Avast ball then on Settings then on Appearance. Then on Sounds and uncheck Automatic Updates OK. (It will still update it just won't tell you about in a loud voice in the middle of the night.)
They have also started using their info popup to try and get you to upgrade so I go into Settings, Appearance, Popups and change the first two to 1 second. Their Browser Cleanup is not so user friendly since it wants to reset your home page and search engine to Yahoo so I go into Settings, Tools, and turn it off.
If you haven't registered already then right click on the orange ball and select Registration Information and click on the link. (They just want you name and email address). The registration is good for 12-14 months then you will need to register again. They will, of course, try to talk you into buying the product but you can always register again for another year free tho it may not be the default. Look for the Basic option.
Run a new FRST scan and post the log. I want to see if this version of Avast has the same problem that the old version had:
Some zero byte size files/folders:
Assuming the reinstall fixes the problem then tonight let Avast run a boot time scan.
How to do a boot-time scan while you sleep: (Takes roughly 6 hours on an average system.)
First mute the speakers so it won't wake you up when Windows loads. Click on the Orange ball. Click on Scan, then Scan for Viruses and wait a couple of minutes for the page to change. Change Quickscan to Boot-time Scan. Click on Settings. Where it says Heuristic Sensitivity click on the last rectangle so that all of them are orange and it says High. Check both boxes. Then change When a threat is found ... to: Move to Chest. OK. Now click on Start. Close the Avast window and then reboot. The scan will start. It will tell you where it will save the report. Usually it's
C:\ProgramData\AVAST Software\Avast\report\aswBoot.txt but it might change so verify the location. When Windows loads Click on the Orange Ball then Scan, Then Scan History (at the bottom of the page). Click on the last scan and then Detailed Report. If it found anything then open the aswBoot.txt file and copy and paste it. If you can't find it then take a screen shot of the Detailed Report:
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users