Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Followed the Start Here thread for removing malware [RESOLVED]


  • This topic is locked This topic is locked

#16
koko_crunch

koko_crunch

    Trusted Helper

  • Retired Staff
  • 1,751 posts
Ok, will post with the recommendations later.
About Adobe, you use Firefox right? Version 3 is already out.
A plugin is already available when you run install the new one.

Here a link: http://www.spreadfir...US/worldrecord/
  • 0

Advertisements


#17
koko_crunch

koko_crunch

    Trusted Helper

  • Retired Staff
  • 1,751 posts
Now time to wrap things up.

Congratulations, your log is clean! :)
We have a couple of last steps to perform and then you're all set.


First,

Download OTCleanit then save it to your Desktop.
  • Double-click on OTCleanIt.exe to run
  • Click on the CleanUp! button
  • Click Yes to begin the Cleanup process and remove these components, including this application.
  • You may be asked to reboot the machine to finish the Cleanup process. If you are asked to reboot the machine choose Yes.


Next, let's reset your hidden/system files and folders. System files are hidden for a reason and we don't want to have them openly available and susceptible to accidental deletion.

* Click Start.
* Open My Computer.
* Select the Tools menu and click Folder Options.
* Select the View tab.
* Under the Hidden files and folders heading UNSELECT Show hidden files and folders.
* CHECK the Hide protected operating system files (recommended) option.
* Click Yes to confirm.
* Click OK.

Then, let's clean your restore points and set a new one:

Reset and Re-enable your System Restore to remove infected files that have been backed up by Windows. The files in System Restore are protected to prevent any programs from changing those files. This is the only way to clean these files: (You will lose all previous restore points which are likely to be infected)
1. Turn off System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
Check Turn off System Restore.
Click Apply, and then click OK.

2. Restart your computer.

3. Turn ON System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
UN-Check Turn off System Restore.
Click Apply, and then click OK.
[/list]
System Restore will now be active again.

Now that you are clean, to help protect your computer in the future I recommend that you get the following free programs:
  • SpywareBlaster to help prevent spyware from installing in the first place.
  • IESpy-Ad to block access to malicious websites so you cannot be redirected to them from an infected site or email.

If you don't have one yet, you should install a good firewall. Here are 3 free ones available for personal use:
and a good antivirus (these are also free for personal use):
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.

And to keep your system clean run these free malware scanners
weekly, and be aware of what emails you open and websites you visit.

To keep your operating system up to date visit
monthly.
To learn more about how to protect yourself while on the internet read this article by Tony Klien: So how did I get infected in the first place?

Goodluck! :)
  • 0

#18
koko_crunch

koko_crunch

    Trusted Helper

  • Retired Staff
  • 1,751 posts
And to work on your system performance, let's do some maintenance. :)

Disclaimer: Following these instructions will increase system performance.
Consequently, certain programs may not open as quickly as they once did due to the fact that they need time loading into memory. They are purely optional.

Let's begin...

Step1.

Your current memory is 526MiB. Although this is the recommended amount, having 1Gib RAM would be better for optimal performance. If you have spare cash lying around somewhere, I suggest upgrading.


Step2.

Disable SuperAntispyware?

SuperAntispyware Professional has Realtime protection that is required to run on start up.
If you are using SuperAntispyware Free Edition, this feature is disabled, so might as well disable it loading with Windows.

  • Double-click on SuperAntispyware on your system stary.
  • SuperAntispyware Control window will now open.
  • Locate "Preferences" button then click on it.
  • Under "Start-up Options", uncheck "Start SuperAntispyware when Windows starts" then close.
  • Exit program.

Step3.

Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below.

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: dlbcserv.lnk = C:\Program Files\Dell Photo Printer 720\dlbcserv.exe

O24 - Desktop Component 0: (no name) - C:\Documents and Settings\Scott\My Documents\00663_ghostfog_1600x1200.jpg ---
This is your desktop background. Please choose a picture with less resolution or better yet, remove background if that's ok by you.

Now close all windows other than HiJackThis, then click Fix Checked.
Exit HiJackThis.

Notes:
Listed above are programs that are not required to load on startup.
The following programs are not deleted/uninstalled from the system.
If you want to access programs that you usually find on your system tray, just go to Start >> Programs then navigate to program needed.


Step4.

Please download ATF Cleaner by Atribune.
This program is for XP and Windows 2000 onlyDouble-click ATF-Cleaner.exe to run the program.
Under Main choose: Select All
Click the Empty Selected button.
If you use Firefox browserClick Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browserClick Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.
For Technical Support, double-click the e-mail address located at the bottom of each menu.


Step5.

Perform CheckDisk

  • Double-click on My Computer then right-click on the Drive that you want to check.
  • Select Properties then click on Tools tab.
  • You will see under Error checking a "Check Now" button, click on it.
  • Chkdsk Utility will open. Place a check on the following then click on Start.
Automatically fix file system errors
Scan for and attempt recovery of bad sectors

[/list]
  • You will then receive a message saying,
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
[/list]
  • Click Yes to schedule the disk check then restart your computer to perform the task.

Step6.

Defragment you Hard drive

  • On your desktop, please double-click on My Computer
  • Right-click on Local Disk then select Properties.
  • On the Tools tab, click on Defragment Now. The Disk Defragmenter will open with a list of hard disk drives present on your system.
  • Select primary hard disk and then click Analyze. This will determine if your harddisk needs Disk Defragmentation.
  • If required, click on Defragment.
  • Please be patient as Disk Defragmenter may take sometime to finish. This may take several hours depending on the amount of data that needs to be moved.
  • Once complete, you can continue and select remaining drives you wish to defrag.

Step7.

Download PageDefrag then save to your Desktop.

  • Right-click on PageDefrag.zip then select "Extract All"
  • Extraction wizard will open, just lick on "Next", extract to C:\.
  • Next, click Start >> Run >> Copy and Paste contents of codebox below.

    c:\pagedfrg -o
  • Press Enter then Reboot Computer.
  • During system boot it will attempt to defrag your paging files and Registry hives.

Have nice day! :)

Edited by koko_crunch, 02 July 2008 - 12:30 AM.

  • 0

#19
koko_crunch

koko_crunch

    Trusted Helper

  • Retired Staff
  • 1,751 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP