Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Dell Inspiron won't boot after running tdsskiller


  • This topic is locked This topic is locked

#16
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,999 posts
:thumbsup:
  • 0

Advertisements


#17
bweeasel

bweeasel

    Member

  • Topic Starter
  • Member
  • PipPip
  • 31 posts
Actually I may have spoke to soon. When i try to download combofix it shows up on the desktop but the logo isn't there. Instead it's a generic "window/screen" icon?
  • 0

#18
bweeasel

bweeasel

    Member

  • Topic Starter
  • Member
  • PipPip
  • 31 posts
OK. Used Firefox instead of IE and it wouldn't let me download Combofix. McAfee keeps popping up (every few minutes or so) saying it's removed a Trojan and no further action needs to be taken. I turned it off and was able to download Combofix. Running it with the CFScript.exe now.
  • 0

#19
bweeasel

bweeasel

    Member

  • Topic Starter
  • Member
  • PipPip
  • 31 posts
Here's the Combofix log. I had to upload it as an attachment. The forum keeps telling me "Your post was too long. Please go back and shorten it a little."

The computer won't let me run the Security Check. I get "Illegal operation attempted on a registry key that has been marked for deletion"

Attached Files


  • 0

#20
bweeasel

bweeasel

    Member

  • Topic Starter
  • Member
  • PipPip
  • 31 posts
In fact, every program I try to open or run tells me that!
  • 0

#21
bweeasel

bweeasel

    Member

  • Topic Starter
  • Member
  • PipPip
  • 31 posts
OK. Rebooted the computer and it stopped doing that. Running Security Check now.
  • 0

#22
bweeasel

bweeasel

    Member

  • Topic Starter
  • Member
  • PipPip
  • 31 posts
Results of screen317's Security Check version 0.99.30
Windows 7 x64 (UAC is enabled)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Enabled!
ESET Online Scanner v3
McAfee SecurityCenter
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Wise Disk Cleaner 6.32
Java™ 6 Update 26
Java version out of date!
Adobe Reader 9 Adobe Reader out of date!
Mozilla Firefox 10.0. Firefox out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

``````````End of Log````````````
  • 0

#23
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,999 posts
Have these applications updated. Older versions will compromise your computer.

Java version out of date!
Adobe Reader out of date!
Firefox out of Date!

Once done, you should be clear. If there are no more issues with your computer, all is left is to do some howsekeeping.

Rename Combofix to Uninstall and click on it. That should remove the application and quarantine.

Delete the C:\FRST folder as it guards its own quarantine. Manually remove any other tool left.

The following is a list of tools and utilities that I like to suggest to people.

  • Always keep your JAVA updated. Older versions will make your computer vulnerable.
  • Windows Updates - It is very important to make sure that both Internet Explorer and Windows are kept current with the latest critical security patches from Microsoft. To do this just start Internet Explorer and select Tools > Windows Update, and follow the online instructions from there.
  • Google Toolbar - Free google toolbar that allows you to use the powerful Google search engine from the bar, but also blocks pop up windows.
  • Trillian or Miranda-IM - These are Malware free Instant Messenger programs which allow you to connect to multiple IM services in one program! (AOL, Yahoo, ICQ, IRC, MSN)
  • ERUNT (Emergency Recovery Utility NT) allows you to keep a complete backup of your registry and restore it when needed. The standard registry backup options that come with Windows back up most of the registry but not all of it. ERUNT however creates a complete backup set, including the Security hive and user related sections. ERUNT is easy to use and since it creates a full backup, there are no options or choices other than to select the location of the backup files. The backup set includes a small executable that will launch the registry restore if needed.
To find out more information about how you got infected in the first place and some great guidelines to follow to prevent future infections you can read this article by Miekiemoes.

Best wishes! Posted Image
  • 0

#24
bweeasel

bweeasel

    Member

  • Topic Starter
  • Member
  • PipPip
  • 31 posts
Thanks a million!
  • 0

#25
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,999 posts
Since the issue is resolved, we have proceeded to close this topic.
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP