ElectricSheep's new config

Last updated
Dec 31, 1969
Windows Edition
Home
User Access Control
Notify me only when programs try to make changes to my computer
Real-time security
Norton 360 with firewall
Firewall security
Periodic malware scanners
EEK, MBAM
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Chrome, WOT, Ghostery, HTTPS Everywhere, MBAE
Maintenance tools
Privazer(sometimes), CCleaner, zemana antilogger
File and Photo backup
No real critical files, all important stuff stored elsewhere
ElectricSheep

ElectricSheep

Level 14
Thread author
Verified
Top Poster
Well-known
Aug 31, 2014
655
Think I've finally cleaned system up but not 100% sure as I got a mega infection a month ago (Drunk downloading) *No need to tell me, I learned my lesson - never again* MBAM came up with... yes wait for it... 1,200 examples of crud like Trojans, etc. A month later, think I've finally cleaned it all up thanks to all the useful guides on this site, but how can I be sure?
 
  • Like
Reactions: silversurfer, Deleted Member 3a5v73x, Logethica and 1 other person
Cowpipe

Cowpipe

Level 16
Verified
Well-known
Jun 16, 2014
781
One of us can check your computer over for you if you like?

If you can download FRST from here and save it to your Desktop. Then open the tool and press the Scan button. You'll then find two log files on your desktop, called FRST.txt and Addition.txt if you could reply back to this thread with both of those files attached using the "Upload a File" button (next to "Post Reply"), I will check everything over and if necessary give you further instructions on cleaning up your computer :)

------
Edit: I would recommend dumping Adblock Plus for uBlock which is much lighter on your system and faster :) Other than that, your setup looks good, although I'm not sure you need so many different on demand scanners ;) And as Illumination points out below, having a backup solution is a must. If you don't use backup software, do as I do and copy your files onto CDs, DVDs or some kind of once-writeable media for permanent backup.
 
  • Like
Reactions: Deleted Member 3a5v73x, Logethica and ForgottenSeer
I

illumination

With back up and recovery, having personal files, is not the only reason to back up your system. Hardware failure can and does happen, corruption can and does happen. Backing up the Operating System is a fail safe that will save you when all else fails.
 
  • Like
Reactions: Deleted Member 3a5v73x and Cowpipe
ElectricSheep

ElectricSheep

Level 14
Thread author
Verified
Top Poster
Well-known
Aug 31, 2014
655
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-08-2014 02
Ran on 02-09-2014 18:10:05
Running from C:\Users\Downloads
Platform: Windows 8.1 (X64) OS Language: English (United Kingdom)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
Last edited:
  • Like
Reactions: Deleted Member 3a5v73x, Logethica and Cowpipe
A

Aura

Level 20
Verified
Jul 29, 2014
966
I'm not sure that this is the right section to get a check-up ? Also, only approved helpers are allowed to give malware removal assistance no ?
Did you try white-listed the AdwCleaner file and process on Norton 360 or temporary disable it when you run it ? Also, submit AdwCleaner as a false positive to Norton, because it is and it always happens.
 
  • Like
Reactions: Deleted Member 3a5v73x and Logethica
Cowpipe

Cowpipe

Level 16
Verified
Well-known
Jun 16, 2014
781
Hi, you do have some remnants of an infection in your log. Whilst I am independently qualified to remove malware, it is the job and task of our official malware remover to do so. To avoid risking breaking the rules here I won't issue you a Fixlog but I will make sure your post gets moved to the Malware Removal section, where our resident malware remover will guide you through removing the malware.
 
  • Like
Reactions: Deleted Member 3a5v73x and Logethica
ElectricSheep

ElectricSheep

Level 14
Thread author
Verified
Top Poster
Well-known
Aug 31, 2014
655
Cowpipe said:
Hi, you do have some remnants of an infection in your log. Whilst I am independently qualified to remove malware, it is the job and task of our official malware remover to do so. To avoid risking breaking the rules here I won't issue you a Fixlog but I will make sure your post gets moved to the Malware Removal section, where our resident malware remover will guide you through removing the malware.
Click to expand...
OK cheers, just as I suspected... remnants hiding in there
 
  • Like
Reactions: Deleted Member 3a5v73x, Logethica and Cowpipe
ElectricSheep

ElectricSheep

Level 14
Thread author
Verified
Top Poster
Well-known
Aug 31, 2014
655
Thanks Aura, got the AdwCleaner up n running. (AV still trying to kill it, lol)
***** [ Files / Folders ] *****

File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk
And this:
***** [ Files / Folders ] *****

Folder Deleted : C:\Users\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weather Alerts
Folder Deleted : C:\Users\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
That Weather Alerts was an awkward one to shift, ended up using Revo to kill it when I first got the infection (noticed that one immediately)
And this also:
***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}

Also had Astromenda. Shoot the guy that created it!
 
Last edited:
  • Like
Reactions: Deleted Member 3a5v73x, Logethica and Cowpipe
You must log in or register to reply here.

Similar threads

SamStam
    • Wow
    • Like
Serious Discussion General question about hacks
Replies
7
Views
603
General Security Discussions
Victor M
Victor M
L
    • Like
  • Locked
Solved "Felidae" Chrome Extension
Replies
17
Views
1,139
Windows Malware Removal Help & Support
icotonev
icotonev
jcutler47
Good morning, everyone.My name is Joshua.I'm new to this.Need help with my mobile phone or maybe number has mulnowear or something?
Replies
1
Views
507
Mobile Malware Removal Help & Support
Bot
Bot

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top