I did get it to start running off my desktop, but it appears to have hung up. The green slider bar hasn’t moved in 10 minutes.
still hung up, but I do have a fixlog.txt file (see attached).
What step is it at? It should say some message in the status line (upper left hand corner of FRST). This may take a bit to clear the temp files from the system.
deleting temporary files…
Sorry; posting at the same time. The fixlog shows that the utility is running the EmtyTemp routine; this can take a bit if there is a large amount of files to remove. The rest of the Fixlist seems to have functioned well also, so give the system some time to finish this last step.
Repost the log file when it is finished please.
OK.
it’s been over 30 minutes now…the green progress bar hasn’t moved at all.
Give it another 15 and then reboot the system.
OK…I had to reboot, but I think everything is working. I’m now able to use Chrome and Adobe Reader.
file attached.
Now can you tell me what bug(s) I had? Are they fixed? What harm was done? Should I be concerned about anything?
thanks,
Jeff
Now can you tell me what bug(s) I had?These Fake mails usually contain a [b]upatre[/b] infected attachment. [b]Upatre[/b] is a downloader and will try to download additional malware
Upatre info:
www.symantec.com/security_response/writeup.jsp?docid=2013-112017-1113-99&tabid=2
- The main bug in your logs is gone; you can read more about it
here.
AdwCleaner by Xplode
Download AdwCleaner from here or from here. Save the file to the desktop.
NOTE: If you are using IE 8 or above you may get a warning that stops the program from downloading. Just click on the warning and allow the download to complete.
Close all open windows and browsers.
- Vista/7/8 users: Right click the AdwCleaner icon on the desktop, click Run as administrator and accept the UAC prompt to run AdwCleaner.
You will see the following console:
- Click the [b]Scan[/b] button and wait for the scan to finish.
- After the Scan has finished the window may or may not show what it found and above, in the progress bar, you will see: [b]Waiting for action. Please uncheck elements you don't want to remove.[/b]
- Click the [b]Clean[/b] button.
- [b]Everything checked[/b] will be deleted.
- When the program has finished cleaning a report appears.
- Once done it will ask to reboot, allow this
- On reboot a log will be produced please copy / paste that in your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[S0].txt
Optional:
NOTE: If you see AVG Secure Search being targeted for deletion, Here’s Why and Here. You can always Reinstall it.
OK…that bit is now done. file attached.
what’s next?
First >>>
Download the attached fixlist.txt file and save it to the Desktop. If you need to, you can also download a fresh copy of FRST64 from here and save that to your desktop. (The SafeZone copy may be removed by now.)
NOTE. It’s important that both files, FRST64 and fixlist.txt are in the same location or the fix will not work.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Run FRST/FRST64 by right clicking on the FRST64.exe file, selecting “Run as Administrator…”. The User Account Control may open up; if it does, select Yes to continue to let FRST open and load.
The tool will check for an updated version of itself every time it loads; please allow it to do this and the program will either inform you it is downloading an updated copy (and to wait until it is safe to continue) or show that it is ready to use (meaning there is no update found) and you can continue on. Press the Fix button just once and wait. The tool will create a restore point, process the script and ask for a restart of your system.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post the log in your next reply.
Second >>>>
Malwarebytes’ Anti-Malware
Please start Malwarebytes’ Anti-Malware from either the Start Menu shortcut or the desktop icon (if you have one).
When the main screen opens, if the database is out of date, you can click on the Fix Now banner or the Update Now link
http://i1351.photobucket.com/albums/p785/dbreeze2/MBAM2_0/v2-1-4-1018/Main%20Screen_zpsnnwza0ky.png
Once updated, please select Settings > Detection and Protection. Please ensure that “Scan for Rootkits” is selected along with Non-Malware Protection PUP and PUM are set to “Treat detections as malware”
Once the program has loaded and updated, select “Scan Now >>” to start the scan.
http://i1351.photobucket.com/albums/p785/dbreeze2/MBAM2_0/v2-1-4-1018/Main%20Screen_zpsnnwza0ky.png
The scan may take some time to finish, so please be patient.
If any malware is found, you will be presented with a screen like the one below.
Make sure that everything is checked, and click Remove Selected. when the removal is completed, a summary screen will be presented.
At the bottom of this screen, click on Save Results and then on Text file (*.txt). Save the file to your desktop and click OK. Click Finish to return to the main screen and then close Malwarebytes.
http://i1351.photobucket.com/albums/p785/dbreeze2/MBAM2_0/v2-1-4-1018/mbam21-finish_zpshfl56bcn.jpg
Double click on log file you saved to your desktop; the log file will be opened in your default text file viewer (usually Notepad); select the whole text (Ctrl + A) and copy (Ctrl + c) it to paste here in a reply.
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.