Jump to content

LOG FOR ANALYSIS AND PROCEDURE FOR REMOVAL OF THIS PEST


Serial

Recommended Posts

Hi everyone, good Night!

Due to the fact that Malwarebytes does not remove viruses completely, I have used other tools to assist in the analysis and complete removal of viruses that still exist. I ask the help of the analysts on duty, where below the logs generated for analysis and disinfection of the system.

The logs shown in the link below by malwarebytes indicate viruses in browsers, where they open malicious pages.

https://www.cjoint.com/c/IBbxTmaeTHM

Obs: A infecção ainda continua

Can you help me solve this problem?
Is it possible to be a false positive of ZHPCleaner?

Follow logs

ZHP Cleaner: https://www.cjoint.com/c/IBbs6YnsfDM
ZHP Diag : https://www.cjoint.com/c/IBbtA6AHGfM
Farbar Recovery Scan Tool / FRST : https://www.cjoint.com/c/IBbtXGo4TwM
Farbar Recovery Scan Tool / Addition : https://www.cjoint.com/c/IBbtZqGTppM
Farbar Recovery Scan Tool / Shortcut : https://www.cjoint.com/c/IBbt0t45p8M 
Hijack This 2.0.5 Beta Log: https://www.cjoint.com/data/IBbt3yHmIpM_hijackthis.log 

I thank you for your attention

Serial.com

Link to post
Share on other sites

Hello, Welcome to Malwarebytes.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===


Please download the attached Fixlist.txt file to  the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the FRST.txt log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

OPERA - reset the Sync.

Navigate to this page and resync your data with the other devices.
https://www.opera.com/help/account
===

Restart the computer normally and let me know if the problem persists.

fixlist.txt

Edited by nasdaq
Link to post
Share on other sites

Hello Nasdaq

Thanks for your collaboration

The request is as follows:

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 30.01.2019
Executado por Silvana Nunes (03-02-2019 11:03:37) Run:1
Executando a partir de C:\Users\Silvana Nunes\Desktop
Perfis Carregados: Silvana Nunes (Perfis Disponíveis: Silvana Nunes)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
GroupPolicy: Restrição - Windows Defender <==== ATENÇÃO
Reboot:

*****************

Ponto de Restauração criado com sucesso.
Processos fechados com sucesso.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removido (a) com sucesso.
C:\Windows\system32\GroupPolicy\Machine => movido com sucesso
C:\Windows\system32\GroupPolicy\GPT.ini => movido com sucesso

=========== EmptyTemp: ==========

BITS transfer queue => 7626752 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 49189635 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 63109 B
Edge => 2293341 B
Chrome => 0 B
Firefox => 0 B
 

Note: The problem I am now encroaching is: Ccleaner and Revo Uninstaler 4.0.5 do not clean temporary files. They lock and this was already taking place before Fix ok.

I am waiting for new instructions.

Serial . com

Link to post
Share on other sites

Hi,

Run this tool to clean your Temporary files/Folders.

Download TFC to your desktop

  • Close any open windows.
  • Double click the TFC icon to run the program.
  • TFC will close all open programs itself in order to run.
  • Click the Start button to begin the process.
  • Allow TFC to run uninterrupted, it should not take long to finish.
  • Once it's finished, click OK to reboot.
  • If it does not reboot, reboot your system manually.


===

Let me know if all is well.

Link to post
Share on other sites

Hi

Did not know this great tool (!)

Follow the prompted request:

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Public
 
User: Silvana Nunes
->Temp folder emptied: 250 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Todos os Usuários
 
User: URET TEAM
 
User: Usuário Padrão
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2022 bytes
 
Emptying RecycleBin. Do not interrupt.
 
RecycleBin emptied: 0 bytes
Process complete!
 
Total Files Cleaned = 0,00 mb

I'm waiting for new instructions

Serial.com

Link to post
Share on other sites

  • Root Admin

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread.

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.