Hello and welcome to
Computer Hope Forum. My name is Dave. I will be helping you out with your particular problem on your computer.
1. I will be working on your
Malware issues. This
may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please
DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.
If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the
shift key down while inserting the USB storage device for about
10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*************************************************************************
Please do not attach your logs unless absolutely necessary. Copy and paste them in your reply(ies)I'm afraid I can only guess how this malware was introduced because my family uses this laptop and not me. If anyone has any tips for getting less of this malware I can pass onto them that would also be greatly appreciated.
This sort of malware usually is loaded along with other programs. That's why it's important to pay attention when downloading and installing certain free programs of the net. I will give more instructions at the end about how to protect your computer.*********************************************
Please run MBAM again and see if it picks up anything else. Only post the log if there is something else.*************************************************
Please download
Junkware Removal Tool to your desktop.
•
Warning! Once the scan is complete JRT will shut down your browser with NO warning.
•
Shut down your protection software now to avoid potential conflicts.•Temporarily
disable your
Antivirus and any
Antispyware real time protection before performing a scan. Click
this link to see a list of security programs that should be disabled and how to disable them.
•Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click JRT and select
Run as Administrator•The tool will open and start scanning your system.
•Please be patient as this can take a while to complete depending on your system's specifications.
•On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
•Copy and Paste the JRT.txt log into your next message.
************************************************
Windows 8 comes with its own AV called Windows Defender. If you wish to use another AV such as AVG, you will need to disable Windows Defender. Update Your Java (JRE)
Old versions of Java have vulnerabilities that malware can use to infect your system.First
Verify your Java VersionIf there are any other version(s) installed then update now.
Get the new version (if needed)If your version is out of date install the newest version of the
Sun Java Runtime Environment.
Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.
Be sure to close ALL open web browsers before starting the installation.Remove any old versions
1. Download
JavaRa and unzip the file to your
Desktop.2. Open
JavaRA.exe and choose
Remove Older Versions3. Once complete exit
JavaRA.Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to
Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for
Java Quick Starter. Click
OK and
reboot your computer.
***************************************************
Malwarebytes' Anti-Rootkit
Please download
Malwarebytes' Anti-Rootkit and save it to your desktop.
- Be sure to print out and follow the instructions provided on that same page for performing a scan.
- Caution: This is a beta version so also read the disclaimer and back up all your data before using.
- When the scan completes, click on the Cleanup button to remove any threats found and reboot the computer if prompted to do so.
- Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
- If there are problems with Internet access, Windows Update, Windows Firewall or other system issues, run the fixdamage tool located in the folder Malwarebytes Anti-Rootkit was run from and reboot your computer.
- Two files (mbar-log-YYYY-MM-DD, system-log.txt) will be created and saved within that same folder.
- Copy and paste the contents of these two log files in your next reply.
