Jump to content

Recommended Posts

Hello,

Yesterday my computer was infected with what I think is a malware virus of some form. I downloaded a new program and shortly afterwards my computer began to act up and suddenly it dawned on me that my computer was infected. I have a startup menu which allows me to select between using Linux or Windows 7. The computer infection occurred on my Windows 7 operating system so I switched to Linux where it is relatively functional and I am able to access it unlike Windows 7 where I have to revert to safe mode just to access the operating system and cripple the virus.

I immediately went onto YouTube to get this issue resolved and learned about Malwarebytes and realized that it is a viable solution to my problem. I learned how to go into safe mode on Windows 7, I learned how to access the internet despite the infection, and I attempted to download Malwarebytes but unfortunately the virus is preventing me from accessing it even if I'm in safe mode on Windows 7 so I went to another computer and used my thumb drive on another computer to install the program and then transfer it to my computer but that did not work as expected. I cannot install Malwarebytes on LInux either. I browsed the internet for all of the information I was able to seek until I learned about Chameleon which is intended to be used if my computer is infected and is preventing my from installing and using Malwarebytes to resolve the infection. Unfortunately, after I saved the file and attempted to begin using Chameleon I clicked every button to launch the black DOS command prompt but it never launched despite several attempts to do so. I don't know what to do at this point to remove the malware virus from my computer and it is clear that I am ignorant of a proper solution.

I know that I cannot resolve this infection on my own and I require the assistance of experts immediately to resolve this very serious issue. I cannot do this on my own so I am turning to all of you here for help in my hour of darkness and desperation. Please help me, I have no one else to turn to.imageproxy.php?img=&key=7f5738b24d726c1e

- Flux

FRST.txt

Addition.txt

Edited by Flux
Link to post
Share on other sites

Hello Flux and welcome to Malwarebytes,

You have nasty infection that runs its own protection via rootkit, Use the instructions at the following link:

https://forums.malwarebytes.com/topic/198907-requested-resource-is-in-use-error-unable-to-start-malwarebytes/

Let me know the outcome of that process....

If those instructions are successful there may still be secondary infections to clear up, run the following:

Run FRST one more time, ensure all boxes are checkmarked under "Whitelist" but only Addition.txt under "Optional scan" Select scan, when done post the new logs. "FRST.txt" and "Addition.txt"

Post logs from MBAR and both logs from FRST...

Thank you,

Kevin...

 

Link to post
Share on other sites
5 hours ago, kevinf80 said:

Hello Flux and welcome to Malwarebytes,

You have nasty infection that runs its own protection via rootkit, Use the instructions at the following link:

https://forums.malwarebytes.com/topic/198907-requested-resource-is-in-use-error-unable-to-start-malwarebytes/

Let me know the outcome of that process....

If those instructions are successful there may still be secondary infections to clear up, run the following:

Run FRST one more time, ensure all boxes are checkmarked under "Whitelist" but only Addition.txt under "Optional scan" Select scan, when done post the new logs. "FRST.txt" and "Addition.txt"

Post logs from MBAR and both logs from FRST...

Thank you,

Kevin...

 

I have followed your instructions. I used MBAR to access Malwarebytes, I updated MBAR, I scanned my computer, I then proceeded to use Malwarebytes and did both a comprehensive scan and a full custom scan as well as an additional full custom scan. The first full custom scan saw a total of 59 threats detected as far as I recall and the comprehensive scan was about 15 total threats detected (I could be wrong, my memory is not perfect because I'm a human being). I did another custom full scan and no other threats were detected. I think that all of the malware has been removed from my system. Here are the logs for you to make that judgement as you requested. Thank you for you assistance.

FRST.txt

Addition.txt

MBAR.PNG

Edited by Flux
Link to post
Share on other sites

Thanks for the logs and the update, yes system looks a lot better, run the following to complete:

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into. "Do not open that file"
NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Open FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

Next,

Download AdwCleaner by Xplode onto your Desktop.
 
  • Double click on Adwcleaner.exe to run the tool.
  • Click on the Scan in the Actions box
  • Please wait fot the scan to finish..
  • When "Waiting for action.Please uncheck elements you want to keep" shows in top line..
  • Click on the Cleaning box.
  • Next click OK on the "Closing Programs" pop up box.
  • Click OK on the Information box & again OK to allow the necessary reboot
  • After restart the AdwCleaner(C*)-Notepad log will appear, please copy/paste it in your next reply. Where * is the number relative to list of scans completed...


Next,

Download Microsoft's " Malicious Software Removal Tool" and save direct to the desktop

Ensure to get the correct version for your system....

32 Bit version:
https://www.microsoft.com/downloads/en/confirmation.aspx?FamilyId=AD724AE0-E72D-4F54-9AB3-75B8EB148356&displaylang=en

64 Bit version:
https://www.microsoft.com/downloads/en/confirmation.aspx?FamilyId=585D2BDE-367F-495E-94E7-6349F4EFFC74&displaylang=en

Right click on the Tool, select “Run as Administrator” the tool will expand to the options Window
In the "Scan Type" window, select Quick Scan
Perform a scan and Click Finish when the scan is done.

Retrieve the MSRT log as follows, and post it in your next reply:

1) Select the Windows key and R key together to open the "Run" function
2) Type or Copy/Paste the following command to the "Run Line" and Press Enter:

notepad c:\windows\debug\mrt.log

The log will include log details for each time MSRT has run, we only need the most recent log by date and time....

Let me see those logs, also tell me if there are any remaining issues or concerns...

Thank you,

Kevin....

fixlist.txt

Link to post
Share on other sites

Thanks for the logs and the update on system status, i`d say you`re good to go, just need to clean up first....

Download "Delfix by Xplode" and save it to your desktop.

Or use the following if first link is down:

"Delfix link mirror"

If your security program alerts to Delfix either, accept the alert or turn your security off.

Double Click to start the program. If you are using Vista or higher, please right-click and choose run as administrator

Make Sure the following items are checked:

 
  • Remove disinfection tools <----- this will remove tools we have used.
  • Purge System Restore <--- this will remove all previous and possibly exploited restore points, a new point relative to system status at present will be created.
  • Reset system settings <--- this will reset any system settings back to default that were changed either by us during cleansing or malware/infection


Now click on "Run" and wait patiently until the tool has completed.

The tool will create a log when it has completed. We don't need you to post this.

Any remnant files/logs from tools we have used can be deleted…

Next,

Read the following links to fully understand PC Security and Best Practices, you may find them useful....

Answers to Common Security Questions and best Practices

Do I need a Registry Cleaner?

Take care and surf safe

Kevin... user posted image
Link to post
Share on other sites
  • Root Admin

Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.