Did Farbar Recovery Scan Tool scan and got Addition and FRST files, but no idea how to get Fixlog txt file

Status
Not open for further replies.
Lokkithegamer

Lokkithegamer

New Member
Thread author
Sep 18, 2022
11
Hello,
I'm pretty sure that my pc is full of malware. I tried to open Malwarebytes website to download Malwarebytes anti-malware software, but I can't open the website. So I downloaded Farbar Recovery Scan Tool and did scan, but now I have no idea how to get Fixlog txt file.
 
nasdaq

nasdaq

Super Moderator
Verified
Staff Member
Nov 5, 2019
1,597
Hello, Welcome to MalwareTips.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Please attach both logs to your next reply. I will have a look at them and advise.


How to attach a file to your reply:
In the Reply section in the bottom of the topic Click the "Upload file" button.
Do this for both files. Then pres the "Post reply" button.
<<<>>>

Wait for further instructions
 
  • Like
Reactions: vtqhtr413 and upnorth
nasdaq

nasdaq

Super Moderator
Verified
Staff Member
Nov 5, 2019
1,597
Hi,

Copy the contents of the FRST.TXT file and paste it in your next relay.

If it's too long copy one half and paste it. Use a second post give me the rest of it.
 
  • Like
Reactions: upnorth
nasdaq

nasdaq

Super Moderator
Verified
Staff Member
Nov 5, 2019
1,597
Hi,
The forum could be busy or having problems. Try again. Take a note is the error changes.
 
  • Like
Reactions: Jack
nasdaq

nasdaq

Super Moderator
Verified
Staff Member
Nov 5, 2019
1,597
  • Like
Reactions: upnorth
Lokkithegamer

Lokkithegamer

New Member
Thread author
Sep 18, 2022
11
  • Like
Reactions: upnorth
nasdaq

nasdaq

Super Moderator
Verified
Staff Member
Nov 5, 2019
1,597
Hi,

Remove this program in bold using the Control Panel > Programs > Programs and Features...
RAV Endpoint Protection (HKLM\...\RAVAntivirus) (Version: 4.2.5 - Reason Cybersecurity Inc.)
<<<>>>

Please download the attached Fixlist.txt file to the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the FRST.txt log you have submitted.

Run FRST and click Fix only once and wait.

The Computer will restart when the fix is completed.

It will create a log (Fixlog.txt) please post it to your reply.
===


Please post the Fixlog.txt and let me know what problem persists.
 

Attachments

  • Fixlist.txt
    11.1 KB · Views: 16
  • Like
Reactions: upnorth
Lokkithegamer

Lokkithegamer

New Member
Thread author
Sep 18, 2022
11
nasdaq said:
Hi,

Remove this program in bold using the Control Panel > Programs > Programs and Features...
RAV Endpoint Protection (HKLM\...\RAVAntivirus) (Version: 4.2.5 - Reason Cybersecurity Inc.)
<<<>>>

Please download the attached Fixlist.txt file to the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the FRST.txt log you have submitted.

Run FRST and click Fix only once and wait.

The Computer will restart when the fix is completed.

It will create a log (Fixlog.txt) please post it to your reply.
===


Please post the Fixlog.txt and let me know what problem persists.
Click to expand...
I tried to delete the RAV Endpoint Protection but it don't let me to delete it and I did ran the fix in FRST and here is the Fixlog.txt :
 

Attachments

  • Fixlog.txt
    39 KB · Views: 15
nasdaq

nasdaq

Super Moderator
Verified
Staff Member
Nov 5, 2019
1,597
Hi,
The program was rpobably removed and remnant items are still in the registry.
This should take care of it.

Press the Windows key + r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.

Code: 
start

Comment: For your security a new restore point will be created.
CreateRestorePoint:
Comment: We need to close all processes to complete the fix.
CloseProcesses:

Comment: Items from the FRST.TXT log that will be removed from the Registry.

DeleteKey:  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RAV Endpoint Protection

Comment: The system will restart.
Reboot:

End

Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

How is the computer running now?
 
Lokkithegamer

Lokkithegamer

New Member
Thread author
Sep 18, 2022
11
nasdaq said:
Hi,
The program was rpobably removed and remnant items are still in the registry.
This should take care of it.

Press the Windows key + r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.

Code: 
start

Comment: For your security a new restore point will be created.
CreateRestorePoint:
Comment: We need to close all processes to complete the fix.
CloseProcesses:

Comment: Items from the FRST.TXT log that will be removed from the Registry.

DeleteKey:  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RAV Endpoint Protection

Comment: The system will restart.
Reboot:

End

Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

How is the computer running now?
Click to expand...
Nothing happened
here is the fixlog.txt :
 

Attachments

  • Fixlog.txt
    968 bytes · Views: 14
nasdaq

nasdaq

Super Moderator
Verified
Staff Member
Nov 5, 2019
1,597
Hi,

Run RegEdit.exe as an Administrator from the RUN Box or the start menu.


Navigate to the folder in bold.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall

Do you see anything concerning RAV?


If not just forget about it.
 
Lokkithegamer

Lokkithegamer

New Member
Thread author
Sep 18, 2022
11
nasdaq said:
Hi,

Run RegEdit.exe as an Administrator from the RUN Box or the start menu.


Navigate to the folder in bold.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall

Do you see anything concerning RAV?


If not just forget about it.
Click to expand...
Yes, I see RAVAntivirus file there
1664474298879.png
 
Status
Not open for further replies.

Similar threads

neferoo
  • Locked
Did Farbar Recovery Scan Tool scan and got Addition and FRST files, but no idea how to get Fixlog txt file
Replies
1
Views
770
Windows Malware Removal Help & Support
nasdaq
nasdaq
J
  • Locked
Similar problem to prinzarthur my NebulaFractica extension wont go away
Replies
4
Views
564
Windows Malware Removal Help & Support
nasdaq
nasdaq
SumTingWong
    • Like
Serious Discussion How to use Farbar Recovery Scan Tool (FRST) to check remaining files and traces from 3rd party antivirus?
Replies
0
Views
524
General Security Discussions
SumTingWong
SumTingWong

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top