Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Zero access possibly? can't download anything


  • This topic is locked This topic is locked
8 replies to this topic

#1 thelittlebattler

thelittlebattler

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:50 AM

Posted 16 June 2013 - 11:10 PM

Hi guys,

 

I had some sort of virus a few weeks ago, and thought I had cleaned it up with malware bytes. I can't remember exactly what infection I had, but it was either a fake anti-virus or loads of pop-ups.

 

The point is I cannot download any files on either internet explorer 9 or firefox. And a scan with malwarebytes or trend micro office-scan reveals nothing.

 

Any help is greatly appreciated



BC AdBot (Login to Remove)

 


#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:50 AM

Posted 17 June 2013 - 01:08 AM

Hi there,
my name is Marius and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 

 

 

 

Do you have another computer nearby?

Are you able to download something in safe mode with networking?


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 thelittlebattler

thelittlebattler
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:50 AM

Posted 17 June 2013 - 04:17 AM

Thanks Marius,

 

Yeah I have another computer nearby plus usb sticks.

 

No I can't download in safe mode with networking, I get the same message "file contained a virus and was deleted"



#4 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:50 AM

Posted 17 June 2013 - 04:30 AM

Which windows version is running? Also tell me, if it is 32 or 64bit.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#5 thelittlebattler

thelittlebattler
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:50 AM

Posted 17 June 2013 - 06:30 PM

It's windows 7 professional, and 32 bit



#6 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:50 AM

Posted 18 June 2013 - 02:55 AM

Scan with FRST


To run FRST on Vista and Windows7:



Plug the flashdrive into the infected PC.

Enter System Recovery Options.


To enter System Recovery Options from the Advanced Boot Options:

  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Choose your language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.



To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Choose your language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.


On the System Recovery Options menu you will get the following options:

  • Startup Repair
  • System Restore
  • Windows Complete PC Restore
  • Windows Memory Diagnostic Tool
  • Command Prompt
  • Select Command Prompt


  • In the command window:
  • type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst.exe and press Enter
  • Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.

It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#7 thelittlebattler

thelittlebattler
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:50 AM

Posted 19 June 2013 - 02:37 AM

I can't enter repair mode. It's a work laptop, and I don't have admin rights on it... Have to take it to the IT guy on Monday. If he's happy to follow these steps and do the scan, can I post the log on Monday?

 

As an extra, while I was doing a google search I got a ukash virus ransomware that locked the computer out of booting in safe mode!

It came in the form of an adobe flash update, which I tried to reject but it kept popping up until I clicked yes. Could this come from the virus already in the system?



#8 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:50 AM

Posted 19 June 2013 - 02:55 AM

If that is a work laptop, then your IT is in charge to solve this.

The fake flash update spreads the ukash trojan or other malware.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#9 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:50 AM

Posted 24 June 2013 - 12:15 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users