Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

'Harmless' email received, computer messed up but cleared.

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: 'Harmless' email received, computer messed up but cleare

Unread postby Electrojim » February 26th, 2020, 4:20 pm

A. No problems, save the ESET scanner not wanting to start. Third time was the charm, it finally got itself going; results below.
C. No readily-apparent changes to computer behavior, but not sure what ESET quarantine/removal did and how it will affect things. I'll keep an eye out.
B. Scan results:

2/26/2020 12:14:10 PM
Files scanned: 298274
Detected files: 4
Cleaned files: 4
Total scan time 01:29:31
Scan status: Finished
C:\Users\Lab\Documents\Downloaded Program Files\dntp-ie-54.exe a variant of Win32/Toolbar.Besttoolbars.J potentially unwanted application cleaned by deleting

C:\Users\Lab\Documents\Spyware Fixes\SDFix.exe Win32/PrcView potentially unsafe application deleted

C:\Users\Lab\Downloads\setupSkypeLiteClient.exe Win32/DownWare.W potentially unwanted application cleaned by deleting

Autostart locations a variant of Win32/Toolbar.Besttoolbars.J potentially unwanted application,Win32/PrcView potentially unsafe application deleted
Electrojim
Active Member
 
Posts: 13
Joined: February 20th, 2020, 6:56 pm
Advertisement
Register to Remove

Re: 'Harmless' email received, computer messed up but cleare

Unread postby pgmigg » February 26th, 2020, 6:01 pm

Hi Electrojim,

KpRm Cleanup
  1. Please download KpRm by kernel-panik and save it to your Desktop
  2. Right-click kprm_(version).exe and select Run as Administrator
  3. When the tool opens, ensure all boxes are checked, and select Run
  4. Once complete, click OK.
  5. A log will open in Notepad titled kprm-(date).txt.
  6. Please copy and paste its contents into your next reply

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections....

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the kprm-(date).txt log file
  3. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 4889
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: 'Harmless' email received, computer messed up but cleare

Unread postby Electrojim » February 26th, 2020, 7:14 pm

Done. Completed quickly, no immediate changes in behavior noticed. Here's the Log File:

# Run at 2/26/2020 3:10:27 PM
# KpRm (Kernel-panik) version 2.7
# Website https://kernel-panik.me/tool/kprm/
# Run by Desk from C:\Users\Lab\Desktop\Malware Check
# Computer Name: WINDOWS-9C6P0DA
# OS: Windows 10 X64 (18363)
# Number of passes: 1

- Checked options -

~ Registry Backup
~ Delete Tools
~ Restore System Settings
~ UAC Restore
~ Delete Restore Points
~ Create Restore Point
~ Delete Quarantines

- Create Registry Backup -

~ [OK] Hive C:\WINDOWS\System32\config\SOFTWARE backed up
~ [OK] Hive C:\Users\Lab\NTUSER.dat backed up

[OK] Registry Backup: C:\KPRM\backup\2020-02-26-15-10-26

- Delete Tools -


## AdwCleaner
[OK] C:\Users\Lab\Desktop\Malware Check\AdwCleaner.exe deleted
[OK] C:\AdwCleaner deleted

## CKScanner
[OK] C:\Users\Lab\Desktop\Malware Check\ckfiles.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\CKScanner.exe deleted

## ESET Online Scanner
[OK] Process esetonlinescanner_enu.exe killed
[OK] C:\Users\Lab\Desktop\ESET Online Scanner.lnk deleted
[OK] C:\Users\Lab\Desktop\Malware Check\esetonlinescanner_enu.exe deleted
[OK] C:\Users\Lab\AppData\Local\ESET\ESETOnlineScanner deleted

## FRST
[OK] C:\Users\Lab\Desktop\NASA Temp\Addition.txt deleted
[OK] C:\Users\Lab\Desktop\NASA Temp\FRST.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\Addition.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\Fixlog.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\FRST-OlderVersion deleted
[OK] C:\Users\Lab\Desktop\Malware Check\FRST.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\FRST64.exe deleted
[OK] C:\FRST deleted

- Restore System Settings -

[OK] Reset WinSock
[OK] FLUSHDNS
[OK] Hide Hidden file.
[OK] Show Extensions for known file types
[OK] Hide protected operating system files

- Restore UAC -

[OK] Set EnableLUA with default (1) value
[OK] Set ConsentPromptBehaviorAdmin with default (5) value
[OK] Set ConsentPromptBehaviorUser with default (3) value
[OK] Set EnableInstallerDetection with default (0) value
[OK] Set EnableSecureUIAPaths with default (1) value
[OK] Set EnableUIADesktopToggle with default (0) value
[OK] Set EnableVirtualization with default (1) value
[OK] Set FilterAdministratorToken with default (0) value
[OK] Set PromptOnSecureDesktop with default (1) value
[OK] Set ValidateAdminCodeSignatures with default (0) value

- Clear Restore Points -

~ [OK] RP named Windows Update created at 11/15/2019 01:20:14 deleted
~ [OK] RP named Removed Macrium Reflect Free Edition created at 11/18/2019 18:03:49 deleted
~ [OK] RP named Scheduled Checkpoint created at 12/01/2019 20:48:25 deleted
~ [OK] RP named Windows Modules Installer created at 02/13/2020 21:28:30 deleted
[OK] All system restore points have been successfully deleted

- Create Restore Point -

[OK] System Restore Point created

- Display System Restore Point -

~ [I] RP named KpRm created at 02/26/2020 23:11:18

-- KPRM finished in 84.33s --
Electrojim
Active Member
 
Posts: 13
Joined: February 20th, 2020, 6:56 pm

Re: 'Harmless' email received, computer messed up but cleare

Unread postby pgmigg » February 26th, 2020, 7:51 pm

Hi Electrojim,

Your latest set of logs appear to be clean! :cheers:
This is my general post for when your logs show no more signs of malware.

  • Please don't forget to enable and update all your defense software!

Finally:
Please click HERE
to find a short guide to staying safer online.


Please don't hesitate to ask any additional questions.

Stay Safe! ;)
pgmigg
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 4889
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: 'Harmless' email received, computer messed up but cleare

Unread postby Electrojim » February 26th, 2020, 8:38 pm

Many thanks, pgmigg, it's good to know the drill on this; I appreciate your walking me through it all and I feel confident now.
Electrojim
Active Member
 
Posts: 13
Joined: February 20th, 2020, 6:56 pm

Re: 'Harmless' email received, computer messed up but cleare

Unread postby pgmigg » February 26th, 2020, 9:45 pm

You are very welcome, Electrojim! :D

As the problems seem to be resolved, this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see
Feedback for Our Helpers - Say "Thanks" Here.
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 4889
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00
Advertisement
Register to Remove

Previous

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 139 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware