So here's the situation. A friend of mines computer was infected with Vista total security 2011.
Its an acer laptop, not sure the model but it runs Vista Ultimate, and no anti virus until I put Avast Free edition on after disinfecting a little bit.
I have been using remote desktop too try and fix her problem as we're too far for me too just walk in. All that i have done so far is run a Malwarebytes scan and a hijackthis log can be found attached. Malwarebytes got rid of the Vista total security 2011 which had disabled her browser completely.
After the computer was at least able to connect via. browser, I ran Hijack this and ccleaner. After the deletion of 10gb of temp files, I then chose too seek help to ensure disinfection is thorough and she is able too bank safely. She had then told me that when the program asked her to purchase a full version she input her credit card details and paid for it, though it hasn't come out on her credit information, I expressed the importance that she gets a stop payment or contacts her creditors, I also indicated that if she is too use the computer tonight not to be inputting personal information.
Numerous of other weird programs and folders are found on the system, ones containing only alt characters.
One thing I tried googling was a Meitu folder in program files and a PaPaSucai folder in the Meitu folder, but nothing came up only sites to download the software . No process library or site rating its danger....
I'm not quite sure what too do next and I'm positive that the 49 files Malware-Bytes found wasn't all.
Thank you in advance!