[technoobie]

The netbook seems to be running great, I can't detect any problems and I'd say overall system speed seems to have improved a bit - from before the virus, which is great too .

[Advertisements]

That is great to hear!

Not that you are clean, let's remove our tools and flush out your old restore points, then I'll provide a few tips to stay clean and safe on your journey through cyberspace.

Uninstalling tools and creating a new restore point:

• Double-click OTL to start the program.
• Copy and paste the following text below into the Custom Scans/Fixes box at the bottom of OTL.
  
  

  :Commands
  [ClearAllRestorePoints]
  

• Then click the Run Fix button.
• Let the program run unhindered. When finished click on OK and close the log that appears.
• Note: I do not need to review the log produced.
• Now close all other programs apart from OTL as this step will require a reboot.
• On the OTL main screen, press the button.
• Say Yes to the prompt and then allow the program to reboot your computer.

The above process will flush old System Restore Points and create a new, clean one as well as uninstalling TDSSKiller and OTL itself. The other tools we will have to remove manually.


To Uninstall AdwCleaner:

Double-click on AdwCleaner.exe to run the tool again.

• Click on the Uninstall button.
• Click Yes when asked are you sure you want to uninstall.
• Both AdwCleaner.exe, its folder and all logs will be removed.

To Uninstall RKill, Junkware Removal Tool (JRT) :

Right click on the desktop icon and delete.


To Uninstall ESET Online Scanner:

Go to Start > Control Panel > Add\Remove Programs Look for ESET Online Scanner, right click and choose Uninstall

Keep MC Shield and Malwarebytes Antimalware (MBAM) installed. If you have the extra funds, I would suggest perchasing a life subscription to MBAM, which is under $25. to protect your system from the possibility of future infections.

All tools should now be uninstalled. You may also delete any logs found on your system at this time as well.


Basic maintenance and safety tips:
1st:

Stay away from registry cleaners, Tweaking Tools and Optimers of any kind as there have been reports of them clearing out needed registry entries and messing up PCs. In addition, what they do clean up is so small that little or no advantages are noticed.

Modifying registry keys incorrectly can cause Windows instability, or make Windows unbootable. No registry cleaner is completely safe and the potential is ever present to cause more problems than they claim to fix.

Registry cleaners cannot distinguish between good and bad. If you run a registry cleaner, it will delete all those keys which are obsolete and sitting idle; but in reality, those keys may well be needed by some programs or windows at a later time.

Miekiemoes wrote a great article about those types of programs that you can read more about from here, if you like.


2nd: - Download TFC (Temporary File Cleaner)

Double-click TFC.exe to run it.

Note: For anyone running on Vista or Win7, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin. And don't be alarmed when your desktop disappears, it will reappear upon reboot.

• Click the Start button to begin the cleaning process.
• Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
• Please do not be alarmed when your desktop disappears. It will reappear after reboot.
• Please let TFC run uninterrupted until it is finished.

TFC requires a reboot immediately after running. Be sure to save any unsaved work before running TFC.


3rd: - Disk cleanup which is included in Windows.

Go to > Start > All Programs > Accessories > System Tools > Disk Cleanup

4th: - Windows Defrag which is included with Windows.

Go to > Start > All Programs > Accessories > System Tools > Disk Defragmenter

Please note: Run MBAM, TFC, Disk Cleanup and Windows Defrag once to twice a month depending on how often you use your computer.

Programs I find to be a necessity:

Update Checker

Download and install FileHippo update checker. Update Checker will run in the background and it will notify you when programs on your system need to be updated and will provide a safe download link for you.

WOT = Web of Trust

• WOT, (Web of Trust), warns you about risky websites that try to scam visitors, deliver malware or send spam. Protect your computer against online threats by using WOT as your front-line layer of protection when browsing or searching in unfamiliar territory.
• WOT's color-coded icons show you ratings for 21 million websites, helping you avoid the dangerous sites:
  
  • Green to go
  • Yellow for caution
  • Red to stop
• WOT' has an addon available for Firefox, Google Chrome, Internet Explorer, Safari and Opera.

And finally! Some more of my very own tips for safe computing:

• Make sure Realtime AV scanning is enabled. A Firewall is a definite plus. If you like free, I recommend the Comodo Firewall, though you will have to uncheck the option for Geek Buddy that you will encounter after you choose Custom Install. Geek Buddy is a remote access service for online support. If you have any questions, you have us here at GTG, and we're only a click away!
• If you can't afford a cost effective virus protection then use some free online tools.
• Don't trust pop-ups that tell you that you may have spyware on your machine. Most of these are money making schemes designed to get you to buy their removal product, which in some cases also contain malware.
• Make back-ups of your most personal files frequently by whatever means you have available, i.e. Tape, CD, DVD, USB Drives, Ghost programs, etc. You never know when you'll have to reformat and start from scratch and without current backups of your personal files, you're basically at a lose. You can always reformat and reinstall programs, but you cannot replace your data if you haven't made backups.
• Be careful where you "surf". If you know you are going to click a site that is questionable, then at least be intelligent enough to disable javascript, java, ActiveX installations, etc... You "surf" these sites at your own risk.
• Uninstall and quit using P2P networking programs like uTorrent, Kazaa, BearShare, eMule and Limewire. These are your most likely weakest links if you're using them. Primarily most stuff transferred is illegally obtained and if you won't give it up you eventually pay the consequences.
• Don't give access to your computer to friends or family who appear to be clueless about what they are doing. Otherwise you'll come home from school/work one day and your computer will be trashed.
• In my opinion, a PC is just that, a PC (Personal Computer). Don't allow your children to talk you into any Windows cracks, hacks, or tweaks that could turn your computer into an expensive doorstop.
• When in doubt -- don't download it and don't install it until you've researched it.

Here are a few links you might find interesting that will educate and enhance your online surfing abilities:

"So how did I get infected in the first place?" by Tony Klein and updated by Corrine
How Malware Spreads - How did I get infected by quietman7
How to prevent Malware: by miekemoes

If you have any questions or concerns please don't hesitate to ask! Any member on this site will be more then happy to guide you in your quest for safe surfing and to prevent infection.

Happy and safe computing!

Donna

[DonnaB]

That is great to hear!

Not that you are clean, let's remove our tools and flush out your old restore points, then I'll provide a few tips to stay clean and safe on your journey through cyberspace.

Uninstalling tools and creating a new restore point:

• Double-click OTL to start the program.
• Copy and paste the following text below into the Custom Scans/Fixes box at the bottom of OTL.
  
  

  :Commands
  [ClearAllRestorePoints]
  

• Then click the Run Fix button.
• Let the program run unhindered. When finished click on OK and close the log that appears.
• Note: I do not need to review the log produced.
• Now close all other programs apart from OTL as this step will require a reboot.
• On the OTL main screen, press the button.
• Say Yes to the prompt and then allow the program to reboot your computer.

The above process will flush old System Restore Points and create a new, clean one as well as uninstalling TDSSKiller and OTL itself. The other tools we will have to remove manually.


To Uninstall AdwCleaner:

Double-click on AdwCleaner.exe to run the tool again.

• Click on the Uninstall button.
• Click Yes when asked are you sure you want to uninstall.
• Both AdwCleaner.exe, its folder and all logs will be removed.

To Uninstall RKill, Junkware Removal Tool (JRT) :

Right click on the desktop icon and delete.


To Uninstall ESET Online Scanner:

Go to Start > Control Panel > Add\Remove Programs Look for ESET Online Scanner, right click and choose Uninstall

Keep MC Shield and Malwarebytes Antimalware (MBAM) installed. If you have the extra funds, I would suggest perchasing a life subscription to MBAM, which is under $25. to protect your system from the possibility of future infections.

All tools should now be uninstalled. You may also delete any logs found on your system at this time as well.


Basic maintenance and safety tips:
1st:

Stay away from registry cleaners, Tweaking Tools and Optimers of any kind as there have been reports of them clearing out needed registry entries and messing up PCs. In addition, what they do clean up is so small that little or no advantages are noticed.

Modifying registry keys incorrectly can cause Windows instability, or make Windows unbootable. No registry cleaner is completely safe and the potential is ever present to cause more problems than they claim to fix.

Registry cleaners cannot distinguish between good and bad. If you run a registry cleaner, it will delete all those keys which are obsolete and sitting idle; but in reality, those keys may well be needed by some programs or windows at a later time.

Miekiemoes wrote a great article about those types of programs that you can read more about from here, if you like.


2nd: - Download TFC (Temporary File Cleaner)

Double-click TFC.exe to run it.

Note: For anyone running on Vista or Win7, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin. And don't be alarmed when your desktop disappears, it will reappear upon reboot.

• Click the Start button to begin the cleaning process.
• Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
• Please do not be alarmed when your desktop disappears. It will reappear after reboot.
• Please let TFC run uninterrupted until it is finished.

TFC requires a reboot immediately after running. Be sure to save any unsaved work before running TFC.


3rd: - Disk cleanup which is included in Windows.

Go to > Start > All Programs > Accessories > System Tools > Disk Cleanup

4th: - Windows Defrag which is included with Windows.

Go to > Start > All Programs > Accessories > System Tools > Disk Defragmenter

Please note: Run MBAM, TFC, Disk Cleanup and Windows Defrag once to twice a month depending on how often you use your computer.

Programs I find to be a necessity:

Update Checker

Download and install FileHippo update checker. Update Checker will run in the background and it will notify you when programs on your system need to be updated and will provide a safe download link for you.

WOT = Web of Trust

• WOT, (Web of Trust), warns you about risky websites that try to scam visitors, deliver malware or send spam. Protect your computer against online threats by using WOT as your front-line layer of protection when browsing or searching in unfamiliar territory.
• WOT's color-coded icons show you ratings for 21 million websites, helping you avoid the dangerous sites:
  
  • Green to go
  • Yellow for caution
  • Red to stop
• WOT' has an addon available for Firefox, Google Chrome, Internet Explorer, Safari and Opera.

And finally! Some more of my very own tips for safe computing:

• Make sure Realtime AV scanning is enabled. A Firewall is a definite plus. If you like free, I recommend the Comodo Firewall, though you will have to uncheck the option for Geek Buddy that you will encounter after you choose Custom Install. Geek Buddy is a remote access service for online support. If you have any questions, you have us here at GTG, and we're only a click away!
• If you can't afford a cost effective virus protection then use some free online tools.
• Don't trust pop-ups that tell you that you may have spyware on your machine. Most of these are money making schemes designed to get you to buy their removal product, which in some cases also contain malware.
• Make back-ups of your most personal files frequently by whatever means you have available, i.e. Tape, CD, DVD, USB Drives, Ghost programs, etc. You never know when you'll have to reformat and start from scratch and without current backups of your personal files, you're basically at a lose. You can always reformat and reinstall programs, but you cannot replace your data if you haven't made backups.
• Be careful where you "surf". If you know you are going to click a site that is questionable, then at least be intelligent enough to disable javascript, java, ActiveX installations, etc... You "surf" these sites at your own risk.
• Uninstall and quit using P2P networking programs like uTorrent, Kazaa, BearShare, eMule and Limewire. These are your most likely weakest links if you're using them. Primarily most stuff transferred is illegally obtained and if you won't give it up you eventually pay the consequences.
• Don't give access to your computer to friends or family who appear to be clueless about what they are doing. Otherwise you'll come home from school/work one day and your computer will be trashed.
• In my opinion, a PC is just that, a PC (Personal Computer). Don't allow your children to talk you into any Windows cracks, hacks, or tweaks that could turn your computer into an expensive doorstop.
• When in doubt -- don't download it and don't install it until you've researched it.

Here are a few links you might find interesting that will educate and enhance your online surfing abilities:

"So how did I get infected in the first place?" by Tony Klein and updated by Corrine
How Malware Spreads - How did I get infected by quietman7
How to prevent Malware: by miekemoes

If you have any questions or concerns please don't hesitate to ask! Any member on this site will be more then happy to guide you in your quest for safe surfing and to prevent infection.

Happy and safe computing!

Donna

[technoobie]

Thanks for all your help Donna you've been amazing!!! At the moment I'm having trouble with the cleanup option in OTL it seems to be stuck on [delete self] but is frozen and isn't doing anything. Does it usually take quite a while for the cleanup option to work? From memory I don't think I actually installed it, I just kept opening the programming from my downloads folder, does this make a difference? Sorry for more questions, I really appreciate all the time you've spent helping me .

[DonnaB]

You're welcome technoobie.

Try dragging and dropping OTL to the desktop and see if you can uninstall from there.

Let me know if you trouble.

[technoobie]

Hi Donna,

I'm still having a bit of trouble uninstalling AdwCleaner and OTL. I did move OTL to the desktop and was able to reboot the computer once I clicked the cleanup button but on reboot the OTL and TDSSKiller shortcuts are still present on the desktop.

I tried following your instructions to uninstall AdwCleaner but I just get a message that pops up saying "Windows is searching for AdwCleaner.exe. To locate the file yourself click browse". Is this a problem?

**Edited to add should I also uninstall PCdecrapifier or keep it? If you recommend uninstalling any tips on how to do so?

Thanks, you can tell I live up to my screen name!

Edited by technoobie, 21 October 2013 - 06:43 PM.

[DonnaB]

Thanks, you can tell I live up to my screen name!

Never underestimate your abilities! You did a great job helping me to help you. You know more than many and not everyone was born with a mouse in their hand. I, for one resemble that last comment!

Go ahead and right click on those icons to remove the programs and logs. Some of the logs might be found in your downloads folder. Also have a peek on your C:\ drive to make sure no logs are left behind.

Once you are done with PC Decrapifier you can uninstall from Add/Remove Programs. Wouldn't hurt to clean out your downloads folder either. Once a program is installed the installation package is no longer needed.

If you have any questions or concerns, please don't hesitate to ask.

[technoobie]

Great, I've think I've followed all your instructions Donna, and have been enjoying a happy netbook for the last couple of days. I just wanted to pop back in here and say a HUGE thank you for everything you've done for me, I've learnt heaps and been so grateful for your advice .

Cheers,
Technoobie .

[DonnaB]

You're welcome Technoobie.

It's been a real pleasure helping you.

Keep safe and happy computing!

Donna

[DonnaB]

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.