New
#51
Well here we are ladies and gentlemen...combofix ran faster than I thought..and Jacee, I really do hope you love this stuff...here's the log file, and the log file from eset (at 46% again) today...
Please tell me that we've made progress, because computer froze after it restarted and combofix generated the log, when I was trying to enable realtime protection on MSessentials...had to do power off/on...but no freezes upon reboot...
pleh!
A dash of conduit, a sprinkle of some nasty toolbars, and a trojan. Wow.
Looks like its bad guy christmas and you got stuck with a lot of coal.
Shes not the only one who enjoys busting malware
Anyways, I will wait for jacee's thoughts and what she wants you to do from here.
While were waiting, I suggest another round of scans: (Your loving this aren't you? sorry for all the scans ha)
For now, try manually updating Microsoft security essentials. Then run another quick scan with that.
Run a full scan with malware bytes again.
Let me (us) know the results.
Also wondering if you could run a SFC /SCANNOW Command - System File Checker and tell me if it finds any integrity violations.
This looks like the same .txt log you attached earlier. It also doesn't look like you had Eset quarantine the infected files.
eset 20-11-13 46 percent.txt
Lol Andrew...I think Santa made a serious mistake and put me on the naughty list and personally came and mucked up my system ...he's in for a strongly worded email...I'm a nice guy, polite and it's not like I go to "naughty" sites or download porn *sheesh*
I am quite enjoying all of the scanning... feels like I'm finally doing something, thank to you and Jacee's guru-like guidance *bowing profusely*...
I actually got MSessentials running last night before I left office, after setting it up in safe mode with networking (even though it doesn't run real time in safe mode), so when I booted in normal mode, it was running real time again protection again and updated on its own...
something I can hopefully contribute as a fix for anyone who encounters that little problem.
As soon as I got in this morning I didn't even go online, just started eset and will let it run to the end.
It actually occurred to me to run scannow /sfc (so you answered a question before I asked it master Jedi)...when I looked at the combofix log.
Will hopefully have a lot of scan logs to attach...hope you and Jacee enjoy reading them as much as I enjoy providing them...
Hi Jacee and Andrew...well, I ran the eset and Jacee, at 46% in the prior report, it didn't give me the option to quarantine the infected files, and I managed to run eset and actually complete this time, as I didn't include check archives (I know, I know, and I'm running it right now with that checked again to see if it will go beyond 48%)..
I made notes of what I did in the eset log, and as per Andrew's advice, I ran sfc, and posting the log as it found errors (why me santa??)..
Attaching both logs now and this weekend, once eset actually finishes with all options checked, I'll run malwarebytes and msessentials full scans and forward logs...sigh...but I am actually learning to read these logs a little and interpret. Thanks for all the help so far and hopefully this learning experience will allow me to help others eventually :)
Wow...I actually forgot to tell the doctor how the patient is doing lol...my bad, sorry...well, it is a bit early to tell, but I haven't had a freeze where I had to power off and on, and so far, no "not responding" on folders and stuff yet.
However, I am still getting the error message at the beginning (after logging on as administrator), that I do not have elevated rights and if I want to restart to enable...when I click yes, computer doesn't restart, I think it's just the explorer shell that restarts.
I'll be able to say if there is a definitive change/improvement in a few days I'm guessing, since I'm not using the laptop as I would normally, given all of the scanning.
But thanks to you, I can say compared to inception, definite improvement
Okay, let me know ....
Now, un-install Combofix:
Click START then RUN- Now type Combofix /uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.