38 replies to this topic

[LeonvV]

Alright thank you

 

Here are the files.

 

 

 

I also logged into a laptop yesterday with my google chrome account. is there a real concern that istartsurf might have infected that laptop via chrome?

 

Could i send some data from that laptop so you might check it out?

 

Thank you again. I appreciate it immensly

Attached Files

•  FRST.txt   75.06KB   391 downloads
•  checkup.txt   1.16KB   287 downloads
•  Addition.txt   82.97KB   3666 downloads

[Satchfan]

You need to uninstall one of the two antiviruses. If you have paid for Kaspersky Total Security then I suggest you uninstall Norton.

Whatever you choose, you can not run two real-time antiviruses at the same time. Although many have different methods of searching for and recognising threats, they will all be 'fighting' in memory to kick each other out, rendering them all ineffective.

============================================

Uninstall/Reinstall Google Chrome

Please follow these instructions as they are given to completely remove and re-install Chrome.

First save all your bookmarks/favourites.

• open Chrome, click on the 3 bars in the top right hand corner, select Bookmarks and then Bookmarks Manager
• click on Organise and then select Export Bookmarks to HTML file, then choose Desktop to save it
• again, click on the three bars in the top right hand corner and select Settings
• in the list of Settings under “Sign in” click on Disconnect your Google Account
• in the text of the next window click on “Google Dashboard” then, at the “Chrome sync” screen, click on Stop and Clear at the bottom
• a box will open and ask for confirmation, click on OK (wait for this to complete before doing the next step)
• when confirmation appears close that page and then click on Disconnect account
• shut Google Chrome, click on Start > Control Panel > Programs and Features (or Add/Remove Programs in XP) and uninstall Google Chrome. Select Everything for removal if asked.

Reboot the system and then reinstall Google Chrome from here

Repeat the process to reinstate your bookmarks by going to Bookmarks > Bookmarks Manager > Organise and select Import Bookmarks.

Can you tell me what the exact remaining problems are.

Thanks

Satchfan

 

[LeonvV]

I have done suggested for google but i have problems with unstalling the anti virus.

 

The Norton program was originally installed and i have also payed for 2 years of it. But when the virus attacked Norton was immediatly crippled and since then i havent been able to start it nor remove it.

 

When asking Norton for a clean install to reinstall it they say i have no more license keys left and i need to buy a new one for over a hundred euros while i have bought a 2 year one wich should last me till june 2016 or something. Very unreal and not accomodating from them i think. First they don't stop the virus then when the virus cripples norton they ask me to buy norton again? 

 

So i heard somewhere that kaspersky is a better anti virus program. i don't know if this is true but now i have installed the 30 day trial version. Can you suggest which anti virus program i should use? I am an avid gamer btw so it shouldnt get in the way when i play games online.

[Satchfan]

I know nothing about Norton as I’ve never used it and Kaspersky would be my personal choice of the two but there are very good free antiviruses which also do a good job, (I use a free antivirus myself and have never had a problem). I can give you recommendations and links to those when we tidy up if you like.


Let’s try forcing the uninstall of Norton.

Download Revo Uninstaller
 

• double click the installation file on the desktop to run the installer
• let it install to the default location
• double click the new Revo Uninstaller Icon on the desktop to start the program.

You will now see a list of installed programs that Revo Uninstaller can remove.
 

• locate any Norton Internet Security
• right-click the icon then choose Uninstall
• click Yes to the warning and choose the Uninstall Mode
• choose the Advanced option and then click Next
• this will launch the programs built in uninstaller. Be patient it can take several seconds
• once the uninstaller is done click Next
• Revo Uninstaller will now scan for leftover information. Be patient it can take several seconds.
• once this scan is done click Next
• you will then be presented of the leftover entries found by Revo Uninstaller
• look at ALL of the entries to ensure they relate to the uninstall
• next, click Select All > Delete to remove the entries
• click Next
• if there are any program file folders left over you will be presented with a list to be removed
• again look at ALL of the entries to ensure they are related to the uninstall
• click Select All > Delete to remove the entries
• click Finish to go back to the uninstall list
• when you have removed Norton, close the program.

===================================================

Run Malwarebytes’ Anti-Malware

I noticed that you had MBAM on your system: if you no longer have it, you can download it from here:

• start Malwarebytes-Anti-Malware and update it, (“Update” tab}
• once it is updated, click on “Scan” tab, select Threat Scan, then click Scan.
• when the scan is complete, if no malicious items are found you can close the program
• if malicious items are found be sure that everything is checked and click Quarantine
• when removal is completed, a log report will open in Notepad and you may be prompted to restart your computer. (see Note below)
• the log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
• copy and paste the contents of that report in your next reply and exit MBAM.

NOTE: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.

Can you tell me if there are any outstanding problems.

Satchfan

 

[Satchfan]

Hi

It has been several days since I sent my last set of instructions to help with your computer problem.

Please let me know if you are having problems and still need help.

Thanks

Satchfan

[LeonvV]

Hello thank you for the instructions. I have done as instructed to delete norton. though on the second tab i was unable to identify the ones belonging to Norton. I did manage to do so with deleting the maps.  Below is the data of malware bytes (it is in dutch though! ).

 

I would love to get some suggestions from you for free antivirus. What is the main difference though between say kaspersky/Norton and your recommended free ones and what advice would you give me when i use a free one. I have had contact again with Norton and they will be looking into my account and i think i will have my license key back. If i was able to get Norton would u suggest that program above a free one of your choice? (also taking into consideration that i play allot of online videogames)

 

Thank you again for your time

 

 

 

Malwarebytes Anti-Malware

www.malwarebytes.org

 

Scandatum: 20-7-2015

Scantijd: 18:39

Logboekbestand: 

Beheerder: Ja

 

Versie: 2.1.8.1057

Malware-database: v2015.07.20.04

Rootkit-database: v2015.07.17.01

Licentie: Proef

Malware-bescherming: Ingeschakeld

Bescherming tegen kwaadaardige websites: Ingeschakeld

Zelfbescherming: Uitgeschakeld

 

Besturingssysteem: Windows 7 Service Pack 1

Processor: x64

Bestandssysteem: NTFS

Gebruiker: Leon

 

Scantype: Bedreigingsscan

Resultaat: Voltooid

Objecten gescand: 394397

Verstreken tijd: 5 min, 47 sec

 

Geheugen: Ingeschakeld

Opstarten: Ingeschakeld

Bestandssysteem: Ingeschakeld

Archieven: Ingeschakeld

Rootkits: Uitgeschakeld

Heuristiek: Ingeschakeld

POP: Ingeschakeld

POA: Ingeschakeld

 

Processen: 0

(Geen kwaadaardige items gedetecteerd)

 

Modules: 0

(Geen kwaadaardige items gedetecteerd)

 

Registersleutels: 0

(Geen kwaadaardige items gedetecteerd)

 

Registerwaarden: 0

(Geen kwaadaardige items gedetecteerd)

 

Registerdata: 0

(Geen kwaadaardige items gedetecteerd)

 

Mappen: 0

(Geen kwaadaardige items gedetecteerd)

 

Bestanden: 0

(Geen kwaadaardige items gedetecteerd)

 

Fysieke Sectoren: 0

(Geen kwaadaardige items gedetecteerd)

 

 

(end)

[Satchfan]

Below is the data of malware bytes (it is in dutch though! )

 

Don't worry about that too much - I lived in Amsterdam for 6 years so I can understand some.

 

Let's have another look at your security. Please run SecurityCheck again and send the new log.

 

Could you also run FRST again and send that log also.

 

Cheers

[Satchfan]

Are you able to send the scans I asked for as I need to be sure all is now OK.

 

Satchfan

[LeonvV]

Hey Satchfan i am afraid i have a new problem. When i try to start my computer i enter my password for my account and it stays on the welcome screen with blue background. It just keeps loading.

 

Now i am able to strart the computer in safe mode so i tried restoring it to a previous time. Now it loads a black screen after a long while and then a while longer it says "De tabletdriver werkt niet." (The tabletdriver doesn't work).

 

I hope you can provide some insight in what i should do. (i can't believe the problems i am having lately with  my computer : /

[LeonvV]

Oke so now it loaded windows but it is extremely slow. i clicked with my right mousebutton somewheren and minutes later a prompt comes up. after that everything just freezes but the screen remains the same. The right mouse click prompt turned white.

 

I hope you recognise what i am describing.. :/

 

, Leon

[Satchfan]

This is unlikely to be malware-related and most likely to do with your tablet drivers. I'm no expert on these matters but would suggest that you try disabling the TabletServiceWacom driver.

In Device Manager, under "Human Interface Devices" right-click on it and choose to disable it. Let me know what happens.

[LeonvV]

I can only turn it off in safety modus because else the computer is not responding ( i can move the mouse but not click  anything). After i have done this the problem remains the same when i start it up in  normal mode. The difference after starting it up after safety mode however is that  i then reach the desktop page  and get the prompt "De tabletdriver werkt niet". If i try to start it up without have started safety mode first it remains stuck on  the blue welcome screen.

 

I hope you have further suggestions on how to proceed.

[Satchfan]

Do you have a flash drive that you can download files to?

[LeonvV]

Yes i do. But i have a breaktrough i believe. i was in device manager on windows safe mode and i saw that AMDA00 under systeemapparaten had a exclamination mark next to it. So i toke a risk and shut it down then restarted my computer. under normal mode. it took a long time to load again but i was eating so i let it be. then after a long while it suddenly was fast again. Then i went to system manager and reinstalled the shut down driver. I am afraid that if i shut it down it will take forever again to reload. should i try to restart or do you want me to do something now, now the computer is still fast and useable?

[LeonvV]

This is unbelievable now it is working normally again.. I shall do the scans to test for viruses as you requisted earlier.

 

Attached Files

•  checkup.txt   1.11KB   280 downloads
•  FRST.txt   75.63KB   316 downloads