Hi Malware Analysts team,
Need your support for my device, it also sometimes shows this:
URL: http://disorderstatus.ru/order.php
Infection: URL:Mal
Process: C:\Windows\system32\msiexec.exe
attached are my scan logs:
Hi Malware Analysts team,
Need your support for my device, it also sometimes shows this:
URL: http://disorderstatus.ru/order.php
Infection: URL:Mal
Process: C:\Windows\system32\msiexec.exe
attached are my scan logs:
It would be nice if MBAM took out the file as well as the registry entry
CAUTION : This fix is only valid for this specific machine, using it on another may break your computer
Open notepad and copy/paste the text in the quotebox below into it:
CreateRestorePoint: CHR Extension: (No Name) - C:\Users\Ross\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-15] 2015-08-02 16:40 - 2015-08-02 16:40 - 00003140 _____ C:\windows\System32\Tasks\{CC3DD061-7B62-4881-BF09-F919292752BD} 2013-08-22 11:56 - 2013-08-22 11:56 - 76849408 ___SH () C:\ProgramData\msmlb.exe RemoveProxy: EmptyTemp: CMD: bitsadmin /reset /allusers
Save this as fixlist.txt, in the same location as FRST.exe
https://dl.dropboxusercontent.com/u/73555776/FRSTfix.JPG
Run FRST and press Fix
On completion a log will be generated please post that
THEN
Please download AdwCleaner by Xplode onto your desktop.
[*]Close all open programs and internet browsers.
[*]Double click on AdwCleaner.exe to run the tool.
[*]Click on Scan.
[*]After the scan is complete click on “Clean”
[*]Confirm each time with Ok.
[*]Your computer will be rebooted automatically. A text file will open after the restart.
[*]Please post the content of that logfile with your next answer.
[*]You can find the logfile at C:\AdwCleaner[S0].txt as well.
Hi essexboy, thanks for replying,
here is my corresponding required scan logs:
tell me what I need to do next, I’m all ears.
Looks good, how is the computer behaving ?
So far my laptop is doing pretty dandy, thank you so much for your help, I’ll be sure to post back for any major difference.
Thank you so much again, will monitor it for three days and see how it goes.
I am a student coordinator in our school and there are times that my classmates insert their flash drives to my laptop, most common virus I see is the shortcut link virus, hope we get a hold in this kind of incidents.
My sincerest regards.
For USB infection prevention
Download MCShield to your desktop and install
It will initially run a scan and show the result as a toaster by the system clock
Then in the control centre select scanner and tick unhide items on flash drives
https://dl.dropbox.com/u/73555776/mcshield%20unhide.JPG
Plug in the drive and McShield will start a scan
Then get the log which will be located under the logs tab on the main page
And post that
Is this a protection tool essexboy?
can it be installed to my laptop with Avast + malwarebytes altogether?
if I can understand this correctly, everytime I scan a drive that I shall insert here in my laptop, I need to post the scan log file?
Nope nearly right though… It is a protection tool against infected USB drives
Just install and forget and it will work and update all by itself
The logs request is just when I use it for malware cleaning
Oh I see, I get it, this is a great tool then, no doubt, let me install this one, is it normal that my Flash drive has a folder that has no name (no text) literally only has a folder icon but no name and this folder named “System Volume information”?
Sometimes yes, it depends on what the USB has been used for
Alrighty, let me monitor my laptop further if I can see some unusual pop - ups or error.
I’ll be sure to post here. Thanks so much essexboy and the malware analyst team.