Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Need help in making sure that Win32 and associated malware has been co


  • This topic is locked This topic is locked

#16
23red

23red

    Trusted Helper

  • Malware Removal
  • 1,797 posts
Hi :)

Not a problem, I'm not going anywhere ;)

As for the other issue In all probability it never installed properly.  I could not NOT explain what I see because that's what I do.  It doesn't belong, that is what it could do,  the file was detected.  Better you know than not know, better safe than sorry, better eyes open than closed.

Excellent work you did here,  Thank you for your assistance   :)
 
Let's clean up the tools, your logs look clean :thumbsup:
  • Download Delfix from here            
     
  • Ensure Remove disinfection tools is ticked
  • Also tick:
    • Create registry backup
    • Purge system restore
    delfix.JPG
  • Click Run
The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply.
 
If you haven't already, you may turn SpyBot back on.
 
When you return, please post the Delfix log.
 
Thank you :)
  • 0

Advertisements


#17
Jack_Random

Jack_Random

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

Delfix Log:

 

# DelFix v10.7 - Logfile created 22/06/2014 at 09:38:21
# Updated 27/04/2014 by Xplode
# Username : Austin - AUSTIN-COMPUTER
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\_OTL
Deleted : C:\TDSSKiller_Quarantine
Deleted : C:\AdwCleaner
Deleted : C:\TDSSKiller.3.0.0.38_04.06.2014_20.51.35_log.txt
Deleted : C:\TDSSKiller.3.0.0.38_06.06.2014_10.14.13_log.txt
Deleted : C:\TDSSKiller.3.0.0.38_08.06.2014_08.58.07_log.txt
Deleted : C:\TDSSKiller.3.0.0.38_08.06.2014_19.43.17_log.txt
Deleted : C:\TDSSKiller.3.0.0.38_09.06.2014_10.36.24_log.txt
Deleted : C:\TDSSKiller.3.0.0.38_09.06.2014_20.29.24_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_09.06.2014_20.30.43_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_09.06.2014_20.34.44_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_09.06.2014_20.35.34_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_09.06.2014_21.22.55_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_09.06.2014_23.04.21_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_09.06.2014_23.04.30_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_10.06.2014_08.22.06_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_10.06.2014_09.52.39_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_10.06.2014_18.59.00_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_10.06.2014_22.43.35_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_11.06.2014_08.31.51_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_11.06.2014_11.41.15_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_11.06.2014_16.12.59_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_12.06.2014_09.41.18_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_12.06.2014_20.33.56_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_13.06.2014_09.43.33_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_13.06.2014_11.29.53_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_14.06.2014_08.53.39_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_14.06.2014_20.56.50_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_15.06.2014_09.17.37_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_15.06.2014_19.53.13_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_16.06.2014_08.19.58_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_16.06.2014_20.23.37_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_17.06.2014_11.17.38_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_18.06.2014_02.48.58_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_18.06.2014_08.52.34_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_18.06.2014_20.27.56_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_19.06.2014_09.21.24_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_19.06.2014_20.17.34_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_20.06.2014_09.44.33_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_21.06.2014_10.00.38_log.txt
Deleted : C:\TDSSKiller.3.0.0.39_21.06.2014_21.30.47_log.txt
Deleted : C:\Users\Austin\Desktop\AdwCleaner.exe
Deleted : C:\Users\Austin\Desktop\aswmbr.exe
Deleted : C:\Users\Austin\Desktop\aswMBRlog.txt
Deleted : C:\Users\Austin\Desktop\JRT.exe
Deleted : C:\Users\Austin\Desktop\MBR.dat
Deleted : C:\Users\Austin\Desktop\OTL.exe
Deleted : C:\Users\Austin\Desktop\SecurityCheck.exe
Deleted : C:\Users\Austin\Desktop\TDSSKiller.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #264 [OTL Restore Point - 6/12/2014 9:44:56 AM | 06/12/2014 13:44:57]
Deleted : RP #265 [Windows Update | 06/12/2014 18:52:27]
Deleted : RP #266 [OTL Restore Point - 6/15/2014 8:22:58 PM | 06/16/2014 00:23:03]
Deleted : RP #267 [Windows Update | 06/17/2014 15:19:50]
Deleted : RP #268 [OTL Restore Point - 6/18/2014 3:09:35 AM | 06/18/2014 07:09:41]
Deleted : RP #269 [Windows Update | 06/20/2014 16:03:25]
Deleted : RP #270 [Installed Microsoft Fix it 50906 | 06/20/2014 16:31:38]
Deleted : RP #271 [Installed Microsoft Fix it 50906 | 06/20/2014 16:36:25]
Deleted : RP #272 [Removed Adobe Reader X (10.1.7). | 06/20/2014 16:59:56]

New restore point created !

~ Resetting system settings ... OK

########## - EOF - ##########


  • 0

#18
23red

23red

    Trusted Helper

  • Malware Removal
  • 1,797 posts

Hi :)

 

Alrighty ~ excellent! Everything looks good :thumbsup:

 

A few tips and some information that maybe helpful for you:

 

Preventing New Infections

 

1. Antivirus installed :yes:

 

2. Firewall up and running :yes:

 

3. Malwarebytes is an excellent program.  It is preferred over Spybot and it's way better ;) Do not install both. Only one. Update and use it weekly to scan for undesirables.

 

Windows Updates

 

• It is critical to have both a firewall and an anti virus to protect your system and to keep them updated, and to keep your operating system up to date make sure Windows Updates are kept current:

A major essential is to keep your computer updated with the latest operating system patches and security fixes. Windows Updates are constantly being revised to combat the newest hacks and threats, Microsoft releases security updates that help your computer from becoming vunerable. It is best if you have these set to download automatically.

If they are not already or if you need to check:

 

1. Open Windows Update by clicking the Start Orb. In the search box, type Update, and then, in the list of results, click Windows Update.

 

2. In the left pane, click Change settings.

 

3. Under Important updates, choose the option that you want. Recommended setting: Install updates automatically

 

4. Under Recommended updates, select the Give me recommended updates the same way I receive important updates check box, and then click OK. If you're prompted for an administrator password or confirmation, type the password or provide confirmation.

 

 

*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*

 

 

Program Updates

 

• Keep Installed Programs Up to Date

It's important to keep all other programs on your computer updated because they can also have security vulnerabilities exploited by the malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications to fix vulnerabilities, this can be done manually by using the Update feature included in most programs or you can use the following program to help you with this:

 

FileHippo Update Checker

 

 

*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*

 

 

CryptoLocker Warning

 

There is a particularly nasty infection out there at the moment.

 

Go here for information about CryptoLocker Ransomeware. Learning about what is out there may help prevent infection. The main thing with this infection here, Austin ~ is Backup. If you're using an external, keep it unplugged to the computer when you're not backing up files or using it. This will prevent the infection from getting to your backed up files if you ever do come across it.

 

Download CryptoPrevent free for home use. It will help prevent CryptoLocker.

 

 

*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*

 

 

When installing\updating ANY program, make sure you always select Custom installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

 

 

*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*

 

To find out more information about how you got infected in the first place and some great guidelines to follow to prevent future infections you can read this article by Miekiemoes.

 

 

Surf Safe! :wave:


  • 0

#19
Jack_Random

Jack_Random

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

Thanks for all the help man, I greatly appreciate the time and effort you put into this in helping me clean my computer.


  • 0

#20
23red

23red

    Trusted Helper

  • Malware Removal
  • 1,797 posts

You are most welcome :)  It was my pleasure :thumbsup:


  • 0

#21
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP