Page 3 of 4 FirstFirst 1234 LastLast
Results 21 to 30 of 34

Thread: Spybot - Search & Destroy unable to remove Delta.Tollbar

  1. #21
    Junior Member
    Join Date
    Jan 2014
    Location
    Bangkok Thailand
    Posts
    25

    Default

    Should I rename the fixtxt.txt to the fixlist.txt ?

    FRST gives me an error:
    No fixlist.txt found.
    The fixlist.txt should be in the same folder/directory the tool is located.

  2. #22
    Security Expert Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    3,861

    Default

    lol
    yes, made a mistake
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  3. #23
    Junior Member
    Join Date
    Jan 2014
    Location
    Bangkok Thailand
    Posts
    25

    Default

    Here is the fixlog.txt:

    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 29-01-2014 01
    Ran by Michael at 2014-02-03 01:07:11 Run:3
    Running from C:\Users\Michael\Desktop
    Boot Mode: Normal

    ==============================================

    Content of fixlist:
    *****************
    U2 楗敳潂瑯獁楳瑳湡tI"; 㩆停潲牧浡䘠汩獥坜獩履楗敳䌠牡⁥㘳尵潂瑯楔敭攮數＀￿" [x]
    *****************

    楗敳潂瑯獁楳瑳湡tI" => Service deleted successfully.

    ==== End of Fixlog ====

  4. #24
    Security Expert Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    3,861

    Default

    ok, that got it.
    How's it running now?
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  5. #25
    Junior Member
    Join Date
    Jan 2014
    Location
    Bangkok Thailand
    Posts
    25

    Default

    I tried to Google the above, and ...

    "" (and any subsequent words) was ignored because we limit queries to 32 words.
    Your search - U2 楗敳潂瑯 楳瑳湡tI"; 㩆 潲牧浡 汩 履楗敳 牡 㘳尵潂瑯楔*攮數＀￿" [x] - did not match any documents.

    Suggestions:

    Make sure all words are spelled correctly.
    Try different keywords.
    Try more general keywords.
    Try fewer keywords.
    Search Results

    -----
    Juliet, do you know what is that?

    I am trying to run GMER - will let you the outcome.

  6. #26
    Security Expert Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    3,861

    Default

    Quote Originally Posted by mikewill View Post
    I tried to Google the above, and ...

    "" (and any subsequent words) was ignored because we limit queries to 32 words.
    Your search - U2 楗敳潂瑯 楳瑳湡tI"; 㩆 潲牧浡 汩 履楗敳 牡 㘳尵潂瑯楔*攮數＀￿" [x] - did not match any documents.

    Suggestions:

    Make sure all words are spelled correctly.
    Try different keywords.
    Try more general keywords.
    Try fewer keywords.
    Search Results

    -----
    Juliet, do you know what is that?

    I am trying to run GMER - will let you the outcome.
    楗敳潂瑯獁楳瑳湡tI" was the service found, this was in your beginning logs of this topic. I don't know what it is.
    yes, it appears to look as Chinese characters but what I could find was unicode. Thats why I had to place it as an attachment because it was saved as a unicode file.

    also, did you receive a Private message from me?
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  7. #27
    Junior Member
    Join Date
    Jan 2014
    Location
    Bangkok Thailand
    Posts
    25

    Default

    Dear Juliet,

    Firstly, I want to inform you that my system is suddenly crushed (again) during the GMER scan. I got a "blue screen of death".
    But it seems that GMER didn't found the ROOTKIT (as before). At the beginning of scan, however, it mentioned some problem with the HDD, it can't recognize.

    Secondly, after the reboot, the systems feels snappier.

    I just read your Private message. I will delete these items.

  8. #28
    Security Expert Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    3,861

    Default

    Quote Originally Posted by mikewill View Post
    Dear Juliet,

    Firstly, I want to inform you that my system is suddenly crushed (again) during the GMER scan. I got a "blue screen of death".
    But it seems that GMER didn't found the ROOTKIT (as before). At the beginning of scan, however, it mentioned some problem with the HDD, it can't recognize.

    Secondly, after the reboot, the systems feels snappier.

    I just read your Private message. I will delete these items.
    I think we took care of the infection. Snappy is what I like.

    From here let's remove the tools used and quarantine folders.

    Open notepad. Please copy the contents of the quote box below. To do this highlight the contents of the box and right click on it and select copy.
    Paste this into the open notepad. save it to the Desktop as fixlist.txt
    NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

    Run FRST/FRST64 and press the Fix button just once and wait.
    no needed to post the log this time.
    start
    DeleteQuarantine:
    end
    *******************

    Don't miss or skip this next step, this will remove malicious files from quarantine and set a clean restore point.

    Go to Start > Run > copy and paste the full text path in the run box

    ComboFix /Uninstall

    Note the space between the x and the /U, it needs to be there.

    ********************

    Download and Run OTC

    We will now remove the tools we used during this fix using OTC.
    • Download OTC by OldTimer and save it to your desktop.
    • Double click icon to start the program. If you are using Vista, please right-click and choose run as administrator
    • Then Click the big button.
    • You will get a prompt saying "Being Cleanup Process". Please select Yes.
    • Restart your computer when prompted.



    ********************
    Any other tools and folders that remain can be deleted.


    Your good to go, good job!

    Please take the time to read over a few of my preventive tips.

    Computer Security
    http://malwareremoval.com/forum/view...557960#p557960
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    Be prepared for CryptoLocker:

    Cryptolocker Ransomware: What You Need To Know

    CryptoLocker Ransomware Information Guide and FAQ


    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Please navigate to Microsoft Windows Updates and download all the "Critical Updates" for Windows.


    Firefox 3
    The award-winning Web browser is now faster, more secure, and fully customizable to your online life. With Firefox 3, added powerful new features that make your online experience even better. It has more features and is a lot more secure than IE. It is a very easy and painless download and install, it will no way interfere with IE, you can use them both.
    *NoScript - Addon for Firefox that stops all scripts from running on websites. Stops malicious software from invading via flash, java, javascript, and many other entry points.

    AdblockPlus
    • AdblockPlus, Surf the web without annoying ads![/*]
    • Blocks banners, pop-ups and video ads - even on Facebook and YouTube[/*]
    • Protects your online privacy[/*]
    • Two-click installation, It's free![/*]
    • click the icon that corresponds to your browser and download.[/*]

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    WOT Web of Trust, warns you about risky websites that try to scam visitors, deliver malware or send spam. Protect your computer against online threats by using WOT as your front-line layer of protection when browsing or searching in unfamiliar territory. WOT's color-coded icons show you ratings for 21 million websites - green to go, yellow for caution and red to stop, helping you avoid the dangerous sites. WOT has an addon available for both Firefox and IE.

    Keep a backup of your important files - Now, more than ever, it's especially important to protect your digital files and memories. This article is full of good information on alternatives for home backup solutions.


    Stand Up and Be Counted ---> Malware Complaints <--- where you can make difference!
    This site offers people who have been (or are) victims of malware the opportunity to document their story.



    Extra note:
    Make sure your programs are up to date - because older versions may contain Security Leaks. To find out what programs need to be updated, please run the Secunia Software Inspector Scan. http://secunia.com/software_inspector/
    [/quote]
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  9. #29
    Junior Member
    Join Date
    Jan 2014
    Location
    Bangkok Thailand
    Posts
    25

    Default

    Dear Juliet,

    I do not Have ComboFix on my system.

    *******************

    Don't miss or skip this next step, this will remove malicious files from quarantine and set a clean restore point.

    Go to Start > Run > copy and paste the full text path in the run box

    ComboFix /Uninstall

    Note the space between the x and the /U, it needs to be there.

    ********************

  10. #30
    Security Expert Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    3,861

    Default

    Quote Originally Posted by mikewill View Post
    Dear Juliet,

    I do not Have ComboFix on my system.

    it's a standard reply, you can skip that part.
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •