Jump to content

mikerf

Members
 View Profile  See their activity

  • Posts

    13

  • Joined

  • Last visited

 Content Type 

Everything posted by mikerf

  1. mikerf
    Hi Kevin, I performed the final clean-up steps you provided, reclaiming over 5GB of disk space. All traces of the virus appear to be removed. My PC is running well. Thank you for the prompt, expert direction you provided. The hours I spent along with your assistance resolving this matter pale in comparison to the time I would've spent had I needed to rebuild this PC or reconfigure a new one. Thank you kindly, Mike
  2. mikerf
    AdvancedSetup, Thank you for the links you provided. Hi Kevin, Thanks so much for all your help. I'll perform the clean-up steps you provided soon. In the meantime, I noticed or I should say Malwarebytes noticed that the web page you provided on thewindowsclub.com for Creating a System Restore Point references a PUP on restoro.com. I believe Malwarebytes did its job & my system is still alright. However, looking at my notifications in Malwarebytes, I see I received a similar notification back in January. Please let me know if there's any further corrective action(s) you believe I should take. Thank you, Mike Blocked website.txt
  3. mikerf
    Kevin, Thank you for the explanation. Conceptually that makes sense. My system has been running very well today. In fact, the performance is better than it has been in months and I believe I'm as comfortable as I'm going to be that this matter has been resolved. I truly appreciate your assistance with this. In gratitude, I donated to your PayPal account. I hope it's alright with you, I just have a couple of last questions: Can you provide a link to documentation on how to use FRST? I was a software developer for 18 years. I'd like to get a general idea of the steps that were taken by your script to remediate my PC. Is there a best practice guide or equivalent for Malwarebytes that's available online? I thought I was well-protected from getting malware on my system. Perhaps I'm not running scheduled scans often enough or my settings are suboptimal. Thank you so much, Mike
  4. mikerf
    Hi Kevin, Late last night the Microsoft Safety Scanner was indicating over 30 Files detected yet I awoke this morning to: Attached is the msert.log. Why would the dialog say files were detected yet the results of the scan say all is good? Nonetheless, my system is performing well this morning and it's looking more likely that, with your help, the matter has been resolved. As I said, I'll post back to this thread in a day or two and let you know how it's going. Let me know if there's anything else you'd recommend I do, corrective or preventative. Thank you again, Mike msert.log
  5. mikerf
    I Kevin, I just checked on the Full Scan from Microsoft Safety Scanner. 47 minutes in it says it has scanned over 1.8M files & it has detected 2 infected files. I'm now planning to let it run to completion unless you'd like me to proceed otherwise? Thanks, Mike
  6. mikerf
    Hi Kevin, It appears as though the issue has been resolved; however, I'm not quite comfortable saying that yet. I decided to kick-off a Full Scan using Microsoft Safety Scanner. I'm going to let it run overnight and see how far it gets. As long as there aren't any infected files detected when I check on it in the morning, I'll start using the computer again and see how see how it performs over the next day or two. I'll repost here soon; hopefully, to mark this case solved. I really appreciate all of your assistance. Thanks again, Mike
  7. mikerf
    Hi Kevin, The quick scan completed without error. See attached msert.log as well as the Fixlog.txt attached to my previous post. What would you suggest I do next? Thanks, Mike msert.log
  8. mikerf
    Hi Kevin, I'm performing the quick scan using Microsoft Safety Scanner now. Attached is the log file that was generated from performing the fix using FRST. - Mike Fixlog.txt
  9. mikerf
    Hi Kevin, So the progress bar still hasn't budged. I'd like to do the alternate scan. I can come back and do the more thorough Sophos scan toward the end of the week, if necessary. What's the other scan you'd like me to try? (Note: The Malwarebytes Threat Scan I performed after quarantining the PUP came-up clean.) Thanks, Mike
  10. mikerf
    Kevin, Note: I accidentally clicked 'mark as solution.' I'd rather play it safe than sorry. Does the Sophos progress bar work properly? That is, is it normal for the green progress indicator to stay pegged to the left side? -Mike
  11. mikerf
    Hi Kevin, I've ran FRST with fixlist.txt and it appeared to complete successfully. After restarting my system I installed and then began running Sophos earlier this morning. I know your notes say the scan is very thorough and takes hours. However, Sophos has been running for at least 6 hours and the progress bar hasn't budged (see below). Is that normal behavior? You'll recall I had to prematurely stop a Malwarebytes Custom Scan after over 725,000 items were scanned. The item being scanned ("Scanning item") by Sophos appears to update on average 2-3 times per second. If that's accurate & there are over 725,000 to scan then the scan would take over 80 hours. Certainly that can't be the case, can it? Or, is there something else I should do right now instead of waiting for the scan to complete? I'd send you the log file generated after running FRST with fixlist.txt; however, it's only on the PC that's being scanned and I don't want to run anything on that PC while the scan is being performed, as your notes suggested. Thank you, Mike
  12. mikerf
    Hi Kevin, Attached are the log files you requested. I've included the log from the Custom Scan I was running. After cancelling the Custom Scan I quarntined the PUP. I then followed your procedure. Thank you, Mike Custom Scan.txt Threat Scan.txt AdwCleaner[S00].txt AdwCleaner[C00].txt FRST.txt Addition.txt
  13. mikerf
    I'm running the latest versions of Windows 10 & Malwarebytes for Windows. My system appears to be infected with malware which I suspect came from a Google Chrome extension. Yesterday my PC started running very slowly and I noticed I received numerous Google Chrome notifications in the Windows message center (refer to the images below). After unsuccessfully performing a "Clean up computer" from the Advanced settings in Chrome, I performed a clean install of Chrome (uninstalling the previous installation & deleting the Chrome folder in Windows). I have not logged back into my account from within Chrome so extensions haven't been reinstalled. After reinstalling Chrome, I started a Custom Scan of my entire hard drive. The scan has been running for over 21 hours. It is still running. Over 680,000 items have been scanned and there has only been one (1) detection thus far: PUP.Optional.Ask. The offending file is: c:\users\mike\desktop\mike\appdata\local\temp\apnic.dll. I've let the scan run this long so I'm hesitant to stop it; however, I need to be able to regain the use of the infected computer as soon as possible. Is there any way for me to know how close the scan is to being done? Should I allow the custom scan to complete or is there a better course of action for me to take at this point? What are the steps I should take to resolve this and be certain my computer is no longer compromised? Thank you.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.