Like an idiot, I opened an email and tried to open the attached .zip file that looked as though it came from FedEx. Only because that very day I sent a FedEx out to a client was the reason I opened it!
Nevertheless, here’s my issue: I had the Free version of Avast which didn’t catch the bug. Now I cannot open Chrome, Internet Explorer or Adobe Acrobat (PDF) files. I scanned once - but didn’t stick around to watch it. When I returned, the system had rebooted. Whatever happened did not work.
Now I have purchased Avast Premium and scanning again. It’s been running for 2 hours.
Does anyone know how to detect and remove this bug?
Do you still have the attacment?
Dont run it, but upload the file inside the zip here www.virustotal.com or here www.metascan-online.com
You may post link to scan result here
Please go to START (Windows Orb) >> Control Panel >> Uninstall a Program or Programs and Features and remove the following (if listed):
[b]Update for Zip Opener
Zip Opener Packages[/b]
To do so, left clicking on the name once and then click Uninstall/Change at the bar above the list window.
Follow the prompts of the uninstaller BUT please read carefully any questions it asks before answering; some uninstallers will try and deceive you into keeping the software.
SECOND >>>>
Download the attached Fixlist.txt file and save it to your desktop the same location as FRST64.exe is located.
NOTE. It’s important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Start FRST that is on the desktop by right clicking on file and selecting “Run as Administrator…” and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.
Along with the log file, tell me how your system is running now.
I am not able to run the FRST64.exe. I receive an error message: “A required privilege is not held by the client.”
I am running from SafeZone and “Run as Administrator”, but still no luck. I tried moving the file outside of SafeZone, but I cannot see it when I do so.
Edit: What I mean is that the scans were run by an Administrator (meaning the user was acting as administrator) just fine so you should be able to do the same thing (for example, just double click to run FRST64.exe).
Most likely what is happening is that you have a shortcut on your desktop that points to the true file (which the log shows as located here = Running from C:\avast! sandbox\S-1-5-21-213686681-1849411641-3850617695-1000\sfzone\C\Users\Jeff\Downloads).
If you have to, download the Fixlist.txt file and a copy of FRST64.exe to a USB drive (you can do this on a different computer if you have to). Plug the drive into your infected system and either move the files onto the desktop or just run them from the USB drive. The desktop will be faster but either one will work.