New
#181
FYI, ran new scans after the OTM freeze. AVG & MBAM reported no threats.
FYI, ran new scans after the OTM freeze. AVG & MBAM reported no threats.
Have a great New Year, Florida Rene!!
At this stage, I believe you are OK, however, prefer to know if OTM got swallowed by a crock in the Everglades, or, whether OTM may have taken out the Registry entries and files, etc., and then the crock locked its jaws.
So, let's confirm...
Please use SystemLook once again, and use the following criteria:
Click the Look button to start the scan.:folderfind
*Scorpion*
MovedFiles
:regfind
Scorpion
Please post the new SystemLook.txt in your reply.
No need for another SAS. :)
Got to go get some chow, and will provide some instructions on getting rid of those entries.
Hang in there...maybe you can have some cake in the meantime!
Blue Bunny Bordeaux Cherry Chocolate ice cream! Simply fabulous!
Geeesh...I'm diabetic!. However, I can almost taste it!
Let's give this a whirl...
Please use the Farbar Recovery Scan Tool (it is updated often)
Download > Farbar Recovery Scan Tool Download
Save it to the Desktop.
Now, open notepad (Start > All Programs > Accessories > Notepad)
Copy the entire contents of the code box below (Do not copy the word 'code') to Notepad.
Save it to the Desktop, and name it: fixlist.txt
Now, run FRST, and press the Fix button, just once, and wait.Code:start Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MATS\WindowsInstaller\{9B65F9A3-9D24-452A-B6EF-1457D65E4259}" /f Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders" /v "c:\Program Files (x86)\ScorpionSaver\" /f c:\Program Files (x86)\ScorpionSaver\ end
When done, the tool creates a report on the Desktop called: Fixlog.txt
>> Please post the Fixlog.txt in your reply.
>
Me too, diabetic that is. But 'tis holiday time!
Followed your FRST instructions and the report should be attached.
Looks as if the reports of the tools run do not show ScorpionSaver, Adpeak, or any malware.
If you are no longer having problems, and have no questions, you are good to go!!!
Let's wrap up and remove the tools used and their reports, since these tools are updated frequently, and it is best to have a new copy:
Tools and Reports:
-FRST, its folder in C:\FRST, and any fixlist or fixlog on the Desktop.
-Farbar Service Scanner, and its FSS report
-AdwCleaner > Run the tool, and press: Uninstall
-Junkware Removal Tool, and its JRT report
-Security Check, and its report
-SystemLook, and its report: SystemLook.txt
-RKill, and its report: RKill.txt
-Registry Backup
-OTM, if still on the Desktop
Also, if anyone else requested the downlod of a program that is no longer needed, please jump in and advise.
This is a vulnerability pointed out by System Check that you cannot afford to have:
>> Java version out of date!
Please verify the version of Java you have installed.
If your version of Java is outdated, it needs to be updated.
When done, uninstall older versions.
As far as suggetions for your consideration...
Would keep Malwarebytes Anti-Malware, and use it regularly...
If you have USB pendrives or SD cards, connect them to other computers, and then connect them back to your computer, the Perform Full Scan has the option of selecting which drives you want to scan, and includes removable drives.
Would also use the ESET Online Scanner as needed...
Also, make sure your security software is ALL enabled and running! However, use only one AntiVirus program.
Running more that one has no advantages, on the contrary, the programs compete with each other, and you end up with less protection, rather than more.
Last, consider doing the following to prevent future infections...
Malware is normally installed through vulnerabilities found in out-dated and insecure programs on a computer.
You can use the Secunia Personal Software Inspector to scan for vulnerable programs:
Free Computer Security - Personal Software Inspector (PSI) - Secunia
A tutorial on how to use the program is found here:
How to detect vulnerable and out-dated programs using Secunia Personal Software Inspector (PSI)
Thanks for following all the instructions and providing the reports!!
Have a great new year, Florida Rene!!
.
Cottonball...
What a TERRIFIC recap! I shall get to work on it and report back to you.
Meanwhile, just to give you some reading with your morning coffee, I found the OTM log and it is attached. Apparently, during the freeze, it saved the log anyway. Enjoy!
Talk with you later. You have been a great help!
UPDATE for Cottonball...
INTERNET ACCESS...has worked perfectly for FF & IE ever since deleting Chrome and the infected files unearthed in the last 10 days. Much appreciation to forum posters who have been so supportive!
JAVA...installed updated version. Uninstalled previous.
TOOLS & REPORTS...deleted all per your instructions.
MALWAREBYTES...updated this morning, ran full scan, no threats.
AVG...updated this morning, ran full scan, no threats.
USB DRIVES & EXTERNAL HARD DRIVES...will purge them with ESET and check with MBAM & AVG.
SECUNIA...downloaded, will read tutorials and follow instructions this weekend.
Whew! I think this is all finally over! Thanks primarily to you and also to several other good spirits on this terrific forum.
Let me know your opinion on the OTM log, and then I think I can mark this episode SOLVED.