Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Not 200% sure that laptop is 100% in the clear for virus' and malware!!


  • Please log in to reply
1 reply to this topic

#1 H£nchman

H£nchman

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Location:London
  • Local time:06:36 PM

Posted 20 May 2014 - 10:30 AM

Hello all,

 

My brother had installed a file apparently relating to Google Earth but then things all went wrong afterwards. He explained that websites were opening and downloading files by themselves. (I.e. Bubbledock or something, Registry Helper and update7007 among others). This happened around 11:00 on 17th of may. So far i seem to have slowed down whatever disease is spreading, and I want to make sure. Other symptoms include processes that don't seem to be running on my own windows 7 laptop that are running on his from startup and random popups on chrome to an flv update site which the anti-malware programs I've installed have blocked. 

I still believe that the system32 folder, syswow64 folder among other folders have been infiltrated and corrupted.

 

Thanks.

 

 


"It's ironic that God gave Man both a pen*s and a brain, but unfortunately not enough blood supply to run both at the same time."

BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:03:36 AM

Posted 20 May 2014 - 06:25 PM

Hello -

 

Malwarebytes Anti-Malware Free version 1.75.0.1300 has now been upgraded to Version 2.0.1

 

Please follow Malwarebytes removal methods. (link is to Malwarebytes site) if required -

 

Now update to the new version and perform a scan .....

 

* Download Malwarebytes Anti-Malware Free and save it to your desktop
* Double click the desktop icon, click Run, then OK
* Click Next
* Select I accept the agreement then continue to click Next then finally click Install
** Uncheck Enable free trial of Malwarebytes Anti-Malware Premium if you do not want the free trial of the paid version, then click Finish
* If you are notified the Database is out of date click Update Now
* Click Scan Now >>
----------
** Note: If Malwarebytes will not launch please do the following to launch Malwarebytes Chameleon:
* Click Start (Start, Search, All files and folders for Windows XP) then type mbam
* Double click one of the four following files (if one does not work try the next one, and so on) - A black command window will open. Follow those instructions until the Malwarebytes program starts the scan

mbam-chameleon.scr
mbam-chameleon
mbam-chameleon.exe
mbam-chameleon.com
----------
** When completed click the down arrow on Export Log and select Text file (*.txt) **
* Save the file to your desktop as MBAM
* Click Apply Actions then restart your computer if requested
* Copy and past the contents of MBAM.txt in your reply

 

Next -

Download Security Check by Screen317 from HERE or HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If any security program requests permission to access the Internet, allow it to do so.

 

 

Next -

Download MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:
• Flush DNS
• Report IE Proxy Settings
• Reset IE Proxy Settings
• Report FF Proxy Settings
• Reset FF Proxy Settings
• List last 10 Event Viewer log
• List Installed Programs
• List Users, Partitions and Memory size.
 
Click Go and copy / paste the result (Result.txt).

 

Next -

Please download and run RKill by Grinler.
A black DOS box will briefly flash and then disappear.
This is normal and indicates the tool ran successfully.

Copy / Paste the log back here -

 

Important: Do not reboot your computer until you complete the next step.

 

Now:

Please download AdwCleaner by Xplode and save to your Desktop.
NOTE : Please close or save all work, as the computer will be Rebooted
Double-click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8 users right-click and select Run As Administrator.
Click on the Scan button. (only once)
AdwCleaner will begin...be patient as the scan may take some time to complete.
After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review. 
If you see any items you do not want removed, untick the check mark next to it. 
Next:

Click on the Clean button (only once) to remove the selected items. 
You will receive a message telling you that all programs will be close so that the infections can be removed. 
Click on OK, and then OK again to confirm the reboot.
When cleaning process is complete a log (AdwCleaner[S0].txt ) of what was removed will be on your desktop. 
Please copy and the paste this log in your next post.

A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users