Jump to content

dazedandconfused

Members
  • Posts

    10
  • Joined

  • Last visited

Everything posted by dazedandconfused

  1. HP or the user had the recovery drive mapped (D:) in Windows Explorer. Do you think it would be safe to reinstall from the recovery partition? Would these viruses have infected the Recovery partition?
  2. I'm not taking any chances, I'mm keeping this sytem isolated from my other computers. Here are the log files IDTool Log.txt Addition.txt FRST.txt
  3. Quick Question: Right now I'm scanning the laptop with aswmbr and will post here when complete. When I brought the laptop out of sleep mode there were several messages that the files have been encrypted with Cryptowall 2.0 The affected computer was not connected to the internet. I an using my regular computer to post here transferring the files via USB drive. I am concerned that Cryptowall 2.0 may spread to this computer across the USB drive. Can Cryptowall 2.0 be transferred that way?
  4. ran TSSSKiller again (Twice) and nothing came up except "Suspicious files" Logs attached TDSSKiller.3.0.0.41_15.11.2014_15.03.31_log.txt TDSSKiller.3.0.0.41_15.11.2014_16.57.57_log.txt
  5. Here are the logs TDSSKiller found the rootkit and I selected "Clean" as instructed but Malwarebytes is is still showing that is is blocking malicous web sites. TDSSKiller.3.0.0.41_14.11.2014_16.24.40_log.txt Addition.txt FRST.txt Malware Bytes.txt
  6. Working on a friends Win 7 laptop with major issues. Ran Malwarebytes on the system and it found a ton of stuff. Clicked "Resolve" and the system needed to reboot. WHen the system rebooted the OS would not load, only got a black screen with a mouse cursor. Did a system restore back to a saved point.This time booted into safe mode and downloaded Malwarebytes. I forgot to update before running the scan but it still found quite a few items. Once again clicked "Resolve" and I rebooted the system into safe mode again. This time I remembered to update Malwarebytes and reran the scan. Found more items. Once again rebooted, this time into normal mode. Now Malwarebytes has found Rootkit.Cidox.G.VBR (Only item) Is it safe to let Malwarebytes take care of this item? Also Malwarebytes keeps popping up that it is blocking several web sites. controller-best.com newyears-decor.com declaration-customsunion.com and several others all have the same IP address Looking for advice before I continue.
  7. Thanks, I'll check out the listed topic. Yes, I'm posting from my main computer, the laptop is a friends computer. Always had great luck with Malwarebytes cleaning up the system without any issues. I'll try to boot the computer from a Linux disk and see if I can pull the Malwarebytes logs onto a USB drive. There are OS disks, there is a recovery partition though. Wonder if I can use a regular Win7 Pro disc for recovery option? Haven't wanted to try any of that until I see if I can get the files etc... off the drive. Thanks again!
  8. Windows 7 Home Premium laptop running extremely slow. Ran Malwarebytes and found several problems with the computer. Said it needed a restart to finish the cleanup, computer never rebooted. Will not start normally or in safe mode. I just get a black screen with the mouse pointer, which moves but doesn't do anything else.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.