Search

Hello

I am also getting this error

# AdwCleaner v6.030 - Logfile created 28/11/2016 at 05:51:43 # Updated on 19/10/2016 by Malwarebytes # Database : 2016-11-28.1 [Server] # Operating System : Windows 7 Ultimate  (X64) # Username : Gamefan - Gamefan-PC # Running from : C:\Users\Gamefan\Desktop\adwcleaner_6.030.exe # Mode: Scan # Support : https://www.malwarebytes.com/support



***** [ Servic...

bonjour,

oui ici ---->http://pjjoint.malekal.com/files.php?id=20161128_s13j10j11e9i8

merci 

Hello, Pelle!

It's sad to say, but all versions of Locky ransomware, including .shit can't be decrypted. The only thing that you can do is to delete the virus from your PC and try to avoid the suchlike infection next time. Of course, you should keep the encrypted files somewhere, to be able to decrypt them when the decryption tool will be released. If you're interested in this - this article m...

Hello,

Thanks!

So, we'll remove the tools we've used:

• Download DelFix from Xplode on your desktop;
• Launch it with administrator rights;
• Select all the option except the one proposing to save the registry;
• Then click on the "Execute" button;
• When everything is finish, the software will close itself;
• Then a report appear on the notepad, please copy paste it's content in your answer.

Final...

Hello,

Fixlog:

Fix result of Farbar Recovery Scan Tool (x64) Version: 23-11-2016 Ran by M2-1900 (26-11-2016 08:42:31) Run:1 Running from C:\Users\M2-1900\Downloads Loaded Profiles: M2-1900 (Available Profiles: M2-1900) Boot Mode: Normal ==============================================

fixlist content: ***************** CloseProcesses: R1 UCGuard; C:\WINDOWS\System32\DRIVERS\ucguard.sys [81792 ...

Hello,

Thanks. So, you can uninstall:

- McAfee,

- AdAware  

Then, we'll use FRST to remove the UCGuard remaining:

Download fixlist.txt file and save it to the Desktop (with the name "fixlist.txt")

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that ...

Voici le rapport et si je comprend bien, ce serait la protection internet de IObit  Surfing Protection qui serait un faux positif? C'est bien celle que je retrouve à chaque nettoyage d'Adwcleaner. 

http://pjjoint.malekal.com/files.php?id=FRST_20161125_j15n6v6i13r8

Rapport après ZHP Diag;

http://pjjoint.malekal.com/files.php?id=20161125_m8g13t13o15v5

Sorry, MBAM Scanlog (after restart): 

Malwarebytes Anti-Malware www.malwarebytes.org

Scan Date: 25-Nov-16 Scan Time: 09:14 Logfile:  Administrator: Yes

Version: 2.2.1.1043 Malware Database: v2016.11.25.02 Rootkit Database: v2016.11.20.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled

OS: Windows 10 CPU: x64 File System: NTFS User: ...

After running the adware cleaner this morning, it came back identifying WinZip programs folders as a malware.

Could that be false identification?

Here is the part of the log:

Folder Found:  

C:\Program Files\WinZip Folder Found:  C:\ProgramData\WinZip Folder Found:

 C:\ProgramData\Application Data\WinZip Folder Found:  

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip  

can...