Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Virus Deletion Now Makes Internet Access Impossible

01 Jan 2014   #181
Florida Rene

Windows 7 64
 
 

FYI, ran new scans after the OTM freeze. AVG & MBAM reported no threats.


My System SpecsSystem Spec
.
01 Jan 2014   #182
cottonball

Windows 7 Home Premium
 
 

Have a great New Year, Florida Rene!!

At this stage, I believe you are OK, however, prefer to know if OTM got swallowed by a crock in the Everglades, or, whether OTM may have taken out the Registry entries and files, etc., and then the crock locked its jaws.

So, let's confirm...

Please use SystemLook once again, and use the following criteria:
Quote:
:folderfind
*Scorpion*
MovedFiles
:regfind
Scorpion
Click the Look button to start the scan.
Please post the new SystemLook.txt in your reply.
My System SpecsSystem Spec
01 Jan 2014   #183
Florida Rene

Windows 7 64
 
 

Quote   Quote: Originally Posted by cottonball View Post
Have a great New Year, Florida Rene!!

At this stage, I believe you are OK, however, prefer to know if OTM got swallowed by a crock in the Everglades, or, whether OTM may have taken out the Registry entries and files, etc., and then the crock locked its jaws.

So, let's confirm...

Please use SystemLook once again, and use the following criteria:
Quote:
:folderfind
*Scorpion*
MovedFiles
:regfind
Scorpion
Click the Look button to start the scan.
Please post the new SystemLook.txt in your reply.
Gracias!

The new SystemLook.txt is attached. Computer seems to be performing as it did prior to this fracas. Should I run SAS again?


Attached Files
File Type: txt SystemLook.txt (1.2 KB, 3 views)
My System SpecsSystem Spec
.

01 Jan 2014   #184
cottonball

Windows 7 Home Premium
 
 

No need for another SAS.

Got to go get some chow, and will provide some instructions on getting rid of those entries.

Hang in there...maybe you can have some cake in the meantime!
My System SpecsSystem Spec
01 Jan 2014   #185
Florida Rene

Windows 7 64
 
 

Blue Bunny Bordeaux Cherry Chocolate ice cream! Simply fabulous!
My System SpecsSystem Spec
01 Jan 2014   #186
cottonball

Windows 7 Home Premium
 
 

Geeesh...I'm diabetic!. However, I can almost taste it!


Let's give this a whirl...

Please use the Farbar Recovery Scan Tool (it is updated often)
Download > Farbar Recovery Scan Tool Download
Save it to the Desktop.

Now, open notepad (Start > All Programs > Accessories > Notepad)
Copy the entire contents of the code box below (Do not copy the word 'code') to Notepad.
Save it to the Desktop, and name it: fixlist.txt

Code:
start
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MATS\WindowsInstaller\{9B65F9A3-9D24-452A-B6EF-1457D65E4259}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders" /v "c:\Program Files (x86)\ScorpionSaver\" /f
c:\Program Files (x86)\ScorpionSaver\
end
Now, run FRST, and press the Fix button, just once, and wait.

When done, the tool creates a report on the Desktop called: Fixlog.txt

>> Please post the Fixlog.txt in your reply.



>
My System SpecsSystem Spec
01 Jan 2014   #187
Florida Rene

Windows 7 64
 
 

Me too, diabetic that is. But 'tis holiday time!

Followed your FRST instructions and the report should be attached.


Attached Files
File Type: txt Fixlog.txt (1.2 KB, 3 views)
My System SpecsSystem Spec
01 Jan 2014   #188
cottonball

Windows 7 Home Premium
 
 

Looks as if the reports of the tools run do not show ScorpionSaver, Adpeak, or any malware.
If you are no longer having problems, and have no questions, you are good to go!!!

Let's wrap up and remove the tools used and their reports, since these tools are updated frequently, and it is best to have a new copy:

Tools and Reports:
-FRST, its folder in C:\FRST, and any fixlist or fixlog on the Desktop.
-Farbar Service Scanner, and its FSS report
-AdwCleaner > Run the tool, and press: Uninstall
-Junkware Removal Tool, and its JRT report
-Security Check, and its report
-SystemLook, and its report: SystemLook.txt
-RKill, and its report: RKill.txt
-Registry Backup
-OTM, if still on the Desktop

Also, if anyone else requested the downlod of a program that is no longer needed, please jump in and advise.

This is a vulnerability pointed out by System Check that you cannot afford to have:
>> Java version out of date!

Please verify the version of Java you have installed.
If your version of Java is outdated, it needs to be updated.
When done, uninstall older versions.

As far as suggetions for your consideration...
Would keep Malwarebytes Anti-Malware, and use it regularly...
If you have USB pendrives or SD cards, connect them to other computers, and then connect them back to your computer, the Perform Full Scan has the option of selecting which drives you want to scan, and includes removable drives.

Would also use the ESET Online Scanner as needed...

Also, make sure your security software is ALL enabled and running! However, use only one AntiVirus program.

Running more that one has no advantages, on the contrary, the programs compete with each other, and you end up with less protection, rather than more.


Last, consider doing the following to prevent future infections...
Malware is normally installed through vulnerabilities found in out-dated and insecure programs on a computer.
You can use the Secunia Personal Software Inspector to scan for vulnerable programs:
Free Computer Security - Personal Software Inspector (PSI) - Secunia
A tutorial on how to use the program is found here:
How to detect vulnerable and out-dated programs using Secunia Personal Software Inspector (PSI)


Thanks for following all the instructions and providing the reports!!

Have a great new year, Florida Rene!!


.
My System SpecsSystem Spec
02 Jan 2014   #189
Florida Rene

Windows 7 64
 
 

Cottonball...

What a TERRIFIC recap! I shall get to work on it and report back to you.

Meanwhile, just to give you some reading with your morning coffee, I found the OTM log and it is attached. Apparently, during the freeze, it saved the log anyway. Enjoy!

Talk with you later. You have been a great help!


Attached Files
File Type: log 01012014_110128.log (5.3 KB, 1 views)
My System SpecsSystem Spec
02 Jan 2014   #190
Florida Rene

Windows 7 64
 
 

UPDATE for Cottonball...

INTERNET ACCESS...has worked perfectly for FF & IE ever since deleting Chrome and the infected files unearthed in the last 10 days. Much appreciation to forum posters who have been so supportive!
JAVA...installed updated version. Uninstalled previous.
TOOLS & REPORTS...deleted all per your instructions.
MALWAREBYTES...updated this morning, ran full scan, no threats.
AVG...updated this morning, ran full scan, no threats.
USB DRIVES & EXTERNAL HARD DRIVES...will purge them with ESET and check with MBAM & AVG.
SECUNIA...downloaded, will read tutorials and follow instructions this weekend.

Whew! I think this is all finally over! Thanks primarily to you and also to several other good spirits on this terrific forum.

Let me know your opinion on the OTM log, and then I think I can mark this episode SOLVED.
My System SpecsSystem Spec
Reply

 Virus Deletion Now Makes Internet Access Impossible




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
impossible installing internet explorer 10 and 11
I'm italian.Hi everyone. I'm problem whit installation of internet explorer 10 and 11. Error WINDOWS UPDATE 9C47 I have run sfc /scannow Here the folder CBS Wikisend: free file sharing service I Copied the content of the Packages folder to the folder ...
Windows Updates & Activation
I added a password, now it's impossible to access my PC
A few months ago, I bought a PC from a company that didn't need it. I know the company and nothing was dodgy or unusual. I changed the user account from the girl that used to use it to my name and didn't set a password. Yesterday I set up a password as I needed to connect to my PC via...
General Discussion
Windows 7 File Access Impossible without system crash!
I have an Acer laptop with only 1gb memory and I am a frequent downloader of large files, be it music, video or picture. I am conservative with my use of memory, and I still possess over half of it free. However, ever since I downloaded a collection of videos a month or so ago, each time I...
Performance & Maintenance
Virus prevents internet access, block antivirus.
Microsoft Security Essentials has been blocked by the virus inducing the firewall. Even if I type virus security into chrome the virus crashes the browser. It gives warnings about the danger hardware damage.
System Security
Internet Access = Can't browse / No Internet Access = Nice Browsing ??
When my computer says Internet Access, I am having trouble browsing. Most pages do not load. Right now, It says no internet access for over 15 minutes and I am able to brose so much better and still going on downloading around 400 kb/s. How can this be? Why would it be? (I am on a wired...
Network & Sharing
Can't Access file for deletion with Admin Privileges
Hello, I am currently running W7 Ultimate 64 Bit with Norton 2011 and Comodo 5.????. I noticed I didn't have a site advisor on FF. So I installed McAfee. It seems to react after a file is downloaded and everything even Windows Gadgets are unsafe and must be blocked. I downloaded Norton Safe Web...
General Discussion


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 05:27.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App