Hi Wilder,
I had to change some LAN proxy setting for Google chrome so that it would connect to the internet. Was that supposed to happen?
Well, not exactly. I did say FRST to reset and/or kill some policy restriction related on Google Chrome but that's all.
In
Step#1 we shall target the remnants.
In
Step#2 we kind ask from you to upload Zoek's and FRST's Quarantine to the future analysis.
These Quarantine folders contains inactive (read: killed malware) removed by zoek.exe and FRST64.exe.Step#11. Open notepad and copy/paste the text present inside the code box below.
To do this highlight the contents of the box and right click on it. Paste this into the open notepad. NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to the operating systemStart
C:\Windows\Microsoft
Reboot:
End
2. Save notepad as
fixlist.txt to your Desktop.
NOTE: => It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.3. Run
FRST/FRST64 and press the
Fix button just once and wait.
If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.The tool will make a log on the Desktop (
Fixlog.txt). Please attach it to your reply.
Note: If the tool warned you about the outdated version please download and run the updated version..
Step#2Please zip-it /rar-it and upload both
Quarantine folder the future analysis to us. We will send file sample to avast! and later to all other AV vendors.
You have installed 7-Zip on your mashine. Use that software to pack (zip it) the following folders:C:\
zoek_backupC:\FRST\
QuarantinePlease upload it to
http://www.wikisend.com site.
Wikisend will generate the download link. Please post here download links (before posting, break link from h
ttp to h
xxt).
example: hxxp://www.wikisend.com /upload/file.php