Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Laptop has TrojanClicker:Win32/Doplik.U virus [Solved]


  • This topic is locked This topic is locked

#16
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,700 posts
  • MVP

Let's run Speccy so we can see what your hard drive looks like.  The last time I had the USB procedure fail the hard drive had a bunch of bad sectors.

 

Get the free version of Speccy:
 
 
(Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), 
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.
 
First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.

  • 0

Advertisements


#17
Jamazz

Jamazz

    Member

  • Topic Starter
  • Member
  • PipPip
  • 90 posts

Your link is dead (404). It's not redirecting me to filehippo. When I look for speccy on filehippo and try to download it in the way you noted, it does not do anything. Please provide a different link and instructions to download.


  • 0

#18
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,700 posts
  • MVP

Thanks for the feedback.  Ccleaner bought up Speccy and they are now charging for it.  Let's try DiskCheckup instead.

 

https://www.passmark...ts/diskcheckup/

 

Download the file then go to the download folder and right click on it and run as admin.

 

Once you get it installed and running, click on the icon for your main drive then on Smart Info.  Now click on Export and check the top two boxes then OK.  Change the  destination folder to your desktop and Save.  You should have a file DriveInfo.txt on your desktop.  Please open it and copy and paste it to your reply.


  • 0

#19
Jamazz

Jamazz

    Member

  • Topic Starter
  • Member
  • PipPip
  • 90 posts
Here you go. The tables didn't translate well. Apologies.
 
 
*** DiskCheckup V3.5 Build: 1003 Report ***
 
SysInfo DLL Version:                                                  SysInfo v2.3 Build: 1001
Time of export:                                                       11:09:26 05-Mar-2023
 
Device information:                                                   
   Device ID:                                                         0
   Interface:                                                         NVMe
   Device Capacity:                                                   488382 MB
   Serial Number:                                                     S4Y4NF0R153794
   Model Number:                                                      SAMSUNG MZVLQ512HALU-00000
   Firmware Revision:                                                 FXV7101Q
   Partitions:                                                        
      C:         487208 MB
 
ATA information:                                                      
 
   Disk geometry:                                                     
      Cylinders:                                                      62260
      Tracks/Cylinder:                                                255
      Sectors/Track:                                                  63
      Bytes/Sector:                                                   512
      Total disk sectors:                                             0
      Logical sector size:                                            512
      Physical sector size:                                           512
      Media rotation rate:                                            SSD
      Buffer size:                                                    N/A
      ECC size:                                                       N/A
 
SMART ATTRIBUTES:
 ID Description                          Status    Value      Worst      Threshold Raw Value TEC                 
---------------------------------------------------------------------------------------------------------------------------------------------
  0 Critical Warning                    OK        N/A        N/A        N/A        0          N/A                 
  1 Temperature                          OK        N/A        N/A        N/A        24 C      N/A                 
  2 Available Spare (%)                  OK        N/A        N/A        N/A        100        N/A                 
  3 Available Spare Threshold (%)        OK        N/A        N/A        N/A        10        N/A                 
  4 Percentage Lifetime Used            OK        N/A        N/A        N/A        0          N/A                 
  5 Data Units Read                      OK        N/A        N/A        N/A        7506200    N/A                 
  6 Data Units Written                  OK        N/A        N/A        N/A        6456421    N/A                 
  7 Host Read Commands                  OK        N/A        N/A        N/A        75301076  N/A                 
  8 Host Write Commands                  OK        N/A        N/A        N/A        74564646  N/A                 
  9 Controller Busy Time (min)          OK        N/A        N/A        N/A        448        N/A                 
 10 Power Cycle Count                    OK        N/A        N/A        N/A        571        N/A                 
 11 Power On Time                        OK        N/A        N/A        N/A        172        N/A                 
 12 Unsafe Shutdown Count                OK        N/A        N/A        N/A        17        N/A                 
 13 Media Errors                        OK        N/A        N/A        N/A        0          N/A                 
 14 Number of Error Information Log Entries OK        N/A        N/A        N/A        1289      N/A                 

  • 0

#20
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,700 posts
  • MVP

Not sure why it got N/A so much but seems to be OK.  You might get Samsung Magician.

https://semiconducto.../support/tools/

You want the first one under

Samsung Magician Software for Consumer SSD

 

Then under the SMART info there is an Extended Test.  See if it passes the Extended Test. (Probably take a few hours to run).

 

We can rule out any malware with:

Since you are now online try running  MBAR

 

Direct Download is:  https://downloads.ma...s.com/file/mbar

Save the file then right click and Run As Admin.  See if it finds anything evil.

 

Another good online test is ESET:

https://www.eset.com...online-scanner/

 

Finally Rogue Killer:

 

https://www.adlice.com/roguekiller/

 

If all come out clean then you are clean.

 

To remove FRST and its logs: Right click on FRST.exe or FRST64.exe (whichever you used) and rename it to uninstall.exe.  Then right click on uninstall.exe and Run as Admin.

 

Uninstall anything else we had you install.  Delete any logs.


  • 0

#21
Jamazz

Jamazz

    Member

  • Topic Starter
  • Member
  • PipPip
  • 90 posts

Samsung Magician is not showing Extended Test under SMART. Do you know where it is in this software is the place to run an extended test? Perhaps you could post a screenshot. Google turns up nothing on the program for extended tests. Everything in this program is displaying NA.


  • 0

#22
Jamazz

Jamazz

    Member

  • Topic Starter
  • Member
  • PipPip
  • 90 posts

MBAR and Rogue Killer came up clean. ESET found two things. See below. Unable to do extended scan with Samsung utility. Unable to find Extended Scan option. Should I bother trying to dig into that or am I good to go?

 

 

3/6/2023 18:51:27 PM
Files scanned: 571433
Detected files: 2
Cleaned files: 2
Total scan time 01:16:20
Scan status: Finished
C:\Users\jakea\Downloads\Detection.exe a variant of Win64/SystemRequirementsLab.C potentially unwanted application cleaned by deleting
 
C:\Windows.old\Users\jakea\AppData\Local\Google\Chrome\User Data\Profile 2\Cache\Cache_Data\f_000066 a variant of Win64/SystemRequirementsLab.C potentially unwanted application cleaned by deleting

  • 0

#23
Jamazz

Jamazz

    Member

  • Topic Starter
  • Member
  • PipPip
  • 90 posts

Hi, RKinner. I appreciate the help you've afforded me. Was there anything else you wanted me to do before I give the laptop back?


  • 0

#24
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,700 posts
  • MVP

Sorry for the delay.  I've been trying to get Samsung Magician to work for me so I could tell you how to do it but apparently they have discovered a problem with AMD based PCs and the latest version of Magician refuses to work with my PC.  I have an old intel based laptop but it was running 32 bit Windows and it wouldn't load.  Finally got it reloaded with 64 bit Windows and now it tells me the drive is not compatible so I give up.  Might as well give the laptop back.  


  • 0

#25
Jamazz

Jamazz

    Member

  • Topic Starter
  • Member
  • PipPip
  • 90 posts

Okay thanks for the help. I appreciate it! I love the support I get here. Quite the hidden gem.

 

Just so you know, before I take off, this website has issues loading in Chrome. I get the below with Chrome no matter what I do. I'm not sure where to report it, and I've seen others mention it in the forum, but I figured I put this here for others to see. It doesn't matter what PC I use, or what OS. Chrome seems to be the common denominator, here. Edge and FF works just fine.

 

Thanks again!

 

-------------------------------------------------

 

This page isn’t working

www.geekstogo.com redirected you too many times.

ERR_TOO_MANY_REDIRECTS

  • 0

Advertisements


#26
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,700 posts
  • MVP

I'll tell Admin but since it works for my Chrome I doubt they will be able to find the problem.


  • 0

#27
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,700 posts
  • MVP

Turns out it's a known issue.  There is a very long thread in our bug tracker forum about it.  Perhaps related to the fact that the stupid forum software can't use https and Chrome considers https the default but no solution that works for everyone.


  • 0

#28
Jamazz

Jamazz

    Member

  • Topic Starter
  • Member
  • PipPip
  • 90 posts

Thanks for the follow-up to that. I appreciate it!


  • 0

#29
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP