New
#31
My laptop just shut down and restarted to blue screen during the scan. So I will be re-scanning it again. It should be done in a day. And Vulnerable software do you mean the updates to Adobe & Java?
My laptop just shut down and restarted to blue screen during the scan. So I will be re-scanning it again. It should be done in a day. And Vulnerable software do you mean the updates to Adobe & Java?
Yes, both of those are quite outdated.
Go into safe mode and delete
c:\windows\system32\opuqbe.dll <---this file
c:\users\Owner\AppData\Roaming\65DEC236D132C3CBF0FB939CADDDD2B4 <--this application
Now reboot normally and try to run Drweb again
Soo, the files have been deleted. For the second time however, my laptop shutdown during the complete scan. I did an express scan (before the second complete scan attempt) and it deleted the *opuqbe.dll* file. And I deleted the other on safe mode manually. Right now, I'm just trying to updating the out-dated things. Laptops running well other wise.
This method has worked for me in the past:
Start your computer in safe mode with networking
Download MalwareBytes Anti-Malware.
Download rkill.com ( rkill.exe ) and run it
Install the mbam-setup.exe file. You'll have to monitor the install folder as it's running and as soon as you see mbam.exe file, select it and click ctrl+x, paste it to the desktop, wait a few minutes, then paste it back into the install folder..
Go to the Scan tab, select “Perform Quick Scan” and press “Scan.”
MalwareBytes Anti Malware will now scan all your PC for malware, including the Security Tool.
You will see a “The Scan completed successfully. Click ‘Show Results’ to display all objects found” prompt once the scan is finished. Press OK.
Now press “Show Results.”
You will see a list of malware applications, including the Rogue.SecurityTool. Be sure to select them all and press “Remove Selected.”
After MalwareBytes Anti Malware finishes the cleaning, you can close the program and be sure your PC is clean.
As a caution, you should also use rkill.com ( rkill.exe ) to terminate malicious processes.
While you're updating Adobe products, in addition to Adobe Reader, there was a critical update to Adobe Flash and Adobe Air today. (Additional information is available in the Security Bulletin. Remember to update for both IE and Firefox.)
With Java, go to Add/Remove Programs and uninstall the following:
Java(TM) 6 Update 13
Java(TM) 6 Update 3
Next, please download JavaRa and unzip it to your desktop.
- Double-click on JavaRa.exe to start the program. (Windows Vista users Right-click JavaRa.exe > Select Run as Administrator)
- Click on Remove Older Versions to remove older versions of Java.
- A logfile will pop up. Please save it to a convenient location.
Then download and install Java SE Runtime Environment (JRE) 6 Update 21.
Download Link: Java SE Runtime Environment 6u21
Note: UNCHECK any pre-checked toolbar and/or software options presented with the update. They are not part of the software update and are completely optional.
Since it seem you're having a problem with the Dr.Cureit full scan, how about an MBAM scan?
- Launch Malwarebytes' Anti-Malware then click the Update tab and "Check for Updates
- Once the update has been installed and the program has loaded, select [b]Quick scan
- When the scan is complete, click OK, then Show Results to view the results.
- Be sure that everything is checked, EXCEPT items in System Restore as shown in this sample:
- Click Remove Selected.
- When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See the Note below)
- The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
- Please post contents of that file in your next reply.
** Note **
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
Good to hear it. I have a quite a few friends who've gotten hit by that Security Tool, and it's really annoying, but at least it doesn't do a lot of damage by itself.
Good news, RoxyyC!
If everything is back to normal, the following will implement some cleanup procedures as well as reset System Restore points:
Click Start > Run and copy/paste the following bolded text into the Run box and click OK:
ComboFix /Uninstall
Having a firewall, anti-virus and anti-malware software are not enough. You also need to stay current with security updates. If you don't have your computer set to automatically install the Microsoft Security Updates, please check for updates now. For additional information, see my blog post Understanding Microsoft Updates
To check if your system is missing security updates or has any additional insecure applications installed, visit OSI - Consumer - Products . The Secunia Software Inspector runs through your browser with no installation or download required and does the following:
- Detects insecure versions of applications installed
- Verifies that all Microsoft patches are applied
- Assists you in updating your system and applications
Install and update SpywareBlaster to prevent the installation of spyware and other potentially unwanted software: SpywareBlaster® | Prevent spyware and malware. Free download.
My favorite security software is WinPatrol which includes the features described at WinPatrol Features
Please let me know if you have any questions.
Stick around.. you'll learn a lot.. I certainly have