Search:

Type: Posts; User: Chris Haslam; Keyword(s):

Page 1 of 2 1 2

Search: Search took 0.01 seconds; generated 48 minute(s) ago.

  1. Replies
    58
    Views
    18,142

    Would it be safe for me to delete all files in...

    Would it be safe for me to delete all files in C:\ProgramData\Spybot - Search & Destroy\Logs ?

    Or just Check*.txt files?
  2. Replies
    58
    Views
    18,142

    Files are dated 2022-02-26 thru 2022-04-23 and...

    Files are dated 2022-02-26 thru 2022-04-23 and from 2019-10-07
  3. Replies
    58
    Views
    18,142

    KpRm .txt file ------------- # Run at...

    KpRm .txt file
    -------------
    # Run at 2022-04-23 15:51:47
    # KpRm (Kernel-panik) version 2.9.3
    # Website https://kernel-panik.me/tool/kprm/
    # Run by Chris from C:\Users\Chris\Desktop
    # Computer...
  4. Replies
    58
    Views
    18,142

    I just looked at C:\ProgramData\Spybot - Search &...

    I just looked at C:\ProgramData\Spybot - Search & Destroy\Quarantine using PowerDesk.

    There are 146 files in this folder, including Generic.Ransom.VxLock.886DC9DE;Generic.Ransom.VxLock.*.zip The...
  5. Replies
    58
    Views
    18,142

    Done, on my PC

    Done, on my PC
  6. Replies
    58
    Views
    18,142

    My wife's PC no longer shows VxLock ...

    My wife's PC no longer shows VxLock

    favicons.sqlite on her PC is 44 MB ! I found a way, in Mozilla Help, of copying existing bookmarks to a newly installed Firefox. Perhaps this will reduce size...
  7. Replies
    58
    Views
    18,142

    Posted to False Positives: "A scan last night...

    Posted to False Positives:

    "A scan last night and again today, after the daily update, did not show VxLock. It appears that the problem is resolved."

    Thank you for your help.

    I will check my...
  8. Replies
    3
    Views
    1,981

    A scan last night and again today, after the...

    A scan last night and again today, after the daily update, did not show VxLock. It appears that the problem is resolved.
  9. Replies
    58
    Views
    18,142

    I have posted to False Positives and linked by...

    I have posted to False Positives and linked by thread to our thread.
  10. Replies
    3
    Views
    1,981

    See...

    See https://forums.spybot.info/showthread.php?77654-remove-Generic-Ransom-VxLock-E31AD1D6
  11. Replies
    3
    Views
    1,981

    Juliet on Spybot Malware forum suspects false...

    Juliet on Spybot Malware forum suspects false positive.
  12. Replies
    58
    Views
    18,142

    I found that I was already subscribed: back in...

    I found that I was already subscribed: back in 2019
  13. Replies
    3
    Views
    1,981

    Generic.Ransom.VxLock

    The scan log is:
    Search results from Spybot - Search & Destroy

    2022-04-20 18:00:42
    Scan took 00:10:21.
    6 items found.

    MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change,...
  14. Replies
    58
    Views
    18,142

    Do I need to subscribe to the False Positives...

    Do I need to subscribe to the False Positives thread?
  15. Replies
    58
    Views
    18,142

    Working on reporting it

    Working on reporting it
  16. Replies
    58
    Views
    18,142

    I can send you one of the zip files in...

    I can send you one of the zip files in SS&D\Quarantine, if that would be helpful --- and safe. These are spooky times!
  17. Replies
    58
    Views
    18,142

    How do I do that? I used FileFinder to look...

    How do I do that?

    I used FileFinder to look for file names containing VXLOCK everywhere on my PC. The only files it found are in Spybot's Quarantine folder. They are .zip files

    The scan log is:...
  18. Replies
    58
    Views
    18,142

    In a SS&D scan yesterday, VxLock didn't show, but...

    In a SS&D scan yesterday, VxLock didn't show, but it shows in a scan done today.
  19. Replies
    58
    Views
    18,142

    About the odd email: I was not yet fully...

    About the odd email:

    I was not yet fully awake when it arrived in my inbox.
    I can add that it had what looked like a PDF button
    The email had shown in New email. I clicked on it, then on Open...
  20. Replies
    58
    Views
    18,142

    Happy Easter! I downloaded and ran (as...

    Happy Easter!

    I downloaded and ran (as Administrator) KpRm as you suggested. Here's the log:

    # Run at 2022-04-17 16:51:06
    # KpRm (Kernel-panik) version 2.9.3
    # Website...
  21. Replies
    58
    Views
    18,142

    Thank you for your further instructions. Your...

    Thank you for your further instructions. Your idea that this is a false positive are potentially comforting!

    I am wondering a bit about EEK's new user interface. You wrote, in Post 13, that EEK...
  22. Replies
    58
    Views
    18,142

    I see that Farbar found 10 files. Trusting in...

    I see that Farbar found 10 files. Trusting in your guidance, I believe that I am ready to remove tools and quarantine folders. Is there a risk in doing so?

    I note that we have seen no sign of the...
  23. Replies
    58
    Views
    18,142

    What's the computer doing now? Still...

    What's the computer doing now?[/QUOTE]

    Still sitting at the Scan Results window
  24. Replies
    58
    Views
    18,142

    scan_220415-161119.txt -----------------------...

    scan_220415-161119.txt
    -----------------------
    Emsisoft Emergency Kit - Version 2021.9
    Last update: 2022-04-15 12:42:23
    My own Molly\Chris
    MOLLY
    Windows 7x86 Service Pack 1

    Scan settings:
  25. Replies
    58
    Views
    18,142

    Hovering over each of the 2 shows that they are...

    Hovering over each of the 2 shows that they are reporting on FRST.exe
  26. Replies
    58
    Views
    18,142

    I clicked Scan and Clean 13302 I clicked...

    I clicked Scan and Clean

    13302

    I clicked Malware Scan. After progress bar reached 100%, this showed:

    13303

    Clicking on View Report did nothing. I did nothing more.
  27. Replies
    58
    Views
    18,142

    I chose to run EEK. What I got, after...

    I chose to run EEK.

    What I got, after downloading, differed substantially from the steps in your instructions.

    A folder named C:\EEK was created with Start Emergency Kit Scanner.exe in it.

    I...
  28. Replies
    58
    Views
    18,142

    When I tried to download Emsisoft Emergence Kit,...

    When I tried to download Emsisoft Emergence Kit, Firefox told me
    13300

    Thoughts?
  29. Replies
    58
    Views
    18,142

    Step 1 (of 2) done fixlog.txt -------- Fix...

    Step 1 (of 2) done

    fixlog.txt
    --------
    Fix result of Farbar Recovery Scan Tool (x86) Version: 13-04-2022 01
    Ran by Chris (13-04-2022 14:12:14) Run:1
    Running from C:\Users\Chris\Desktop
    Loaded...
  30. Replies
    58
    Views
    18,142

    This PC is working well, so I ask whether doing...

    This PC is working well, so I ask whether doing what you suggest could make it run less well.
  31. Replies
    58
    Views
    18,142

    addition.txt ----------- Additional scan result...

    addition.txt
    -----------
    Additional scan result of Farbar Recovery Scan Tool (x86) Version: 05-04-2022
    Ran by Chris (09-04-2022 13:28:54)
    Running from C:\Users\Chris\Desktop
    Microsoft Windows 7...
  32. Replies
    58
    Views
    18,142

    Sorry for the delay in replying. gmail didn't...

    Sorry for the delay in replying. gmail didn't forward your post to my normal email address.

    I downloaded Frabar.[LIST]
    I downloaded Farbar to the Desktop
    I right-clicked on FRST.exe and...
  33. Replies
    58
    Views
    18,142

    I recognize none of the registry entries. Perhaps...

    I recognize none of the registry entries. Perhaps you do.
  34. Replies
    58
    Views
    18,142

    AdwCleaner log

    # -------------------------------
    # Malwarebytes AdwCleaner 8.3.1.0
    # -------------------------------
    # Build: 11-18-2021
    # Database: 2022-02-03.4 (Cloud)
    # Support: ...
  35. Replies
    58
    Views
    18,142

    Additional Info re MalwareBytes

    Prompts for Anti-Malware were somewhat different from those you listed.

    I found no choice but to start a 14-day trial of Premium.

    I read in the enigmasoftware.com article that VxLock sometimes...
  36. Replies
    58
    Views
    18,142

    I have run Anti-malware: no threats found. Report is in this email.

    I downloaded and ran Anti-Malware.
    I told me that the SHA-2 update was missing so I chose to download and run the legacy version.
    The prompts differed from what you listed, e.g. no Dashboard, but I...
  37. Replies
    58
    Views
    18,142

    I rebooted. Ran SS&D again. E31AD1D6 had gone,...

    I rebooted.

    Ran SS&D again. E31AD1D6 had gone, but replaced by CB7B23BB

    -----

    My wife's PC has D995041C. She is rebooting.

    ...chris
  38. Replies
    58
    Views
    18,142

    remove Generic.Ransom.VxLock.E31AD1D6

    How can I remove this virus?

    SS&D ran this automatically today. It shows this virus. I clicked on Fix All selected.

    I then ran SS&D again. This virus was still there.

    ...chris
  39. Can I delete old system scan logs, and how to do it

    Can I delete old system scan logs?

    If so, how can I do it?

    I am running Win 7
  40. Replies
    10
    Views
    68,484

    Fixed: Thanks

    Thanks
  41. Replies
    10
    Views
    68,484

    Fixed: Yes. Category is Viruses and Rule# is SpybotAV. ...

    Yes. Category is Viruses and Rule# is SpybotAV.

    ...chris
  42. Replies
    10
    Views
    68,484

    Fixed: Another false positive from Dropbox?

    The situation is the same as earlier in this thread but I now have C:\Program Files\Dropbox\Client\80.4.126\win32job.cp37-win32.pyd . Before I had C:\Program...
  43. Replies
    10
    Views
    68,484

    Fixed: It disappeared from the Spybot report but has now...

    It disappeared from the Spybot report but has now re-appeared.
  44. Replies
    10
    Views
    68,484

    Fixed: Thanks This item has reappeared. As you can...

    Thanks

    This item has reappeared. As you can see, DropBox is used on this computer.

    ...chris
  45. Replies
    10
    Views
    68,484

    Fixed: I add: Win 7 SP1 fully patched Spybot 2.7...

    I add:

    Win 7 SP1 fully patched

    Spybot 2.7 with lasts updates
  46. Replies
    10
    Views
    68,484

    Fixed: Is Gen:Variant.Graftor a false positive?

    From the log:

    Gen:Variant.Graftor.116528: [SBI $SpybotAV] Executable (File, nothing done)
    C:\Program Files\Dropbox\Client\win32job.cp36-win32.pyd
    Category=Viruses
    ThreatLevel=5
    ...
  47. [Thanks. Will do

    [Thanks. Will do
  48. I rebooted then did a system scan. The threat...

    I rebooted then did a system scan. The threat was, myseriously, gone.

    This was on my wife's computer so may be she did something -- but she is too well "trained" to invoke SS&D without...
  49. Edit: Gen:Variant.Graftor.116528 ...chris

    Edit: Gen:Variant.Graftor.116528

    ...chris
  50. Gen.Variant.Graftor.116528 shows in System Scan but OK in File Scan

    Excerpt from System Scan log:


    Gen:Variant.Graftor.116528: [SBI $SpybotAV] Executable (File, nothing done)
    C:\Program Files\Dropbox\Client\win32job.cp36-win32.pyd
    Category=Viruses
    ...
Results 1 to 50 of 95
Page 1 of 2 1 2