[SleepyDude]

Thanks for all your help! It's all working smoothly now!

 

It has a pleasure. By the way, the problem was generated because of some really buggy updates Microsoft released this month, you should wait for the next month before installing new updates.

They already started releasing updated fix's for those problems.

[Advertisements]

 

Thanks for all your help! It's all working smoothly now!

 

It has a pleasure. By the way, the problem was generated because of some really buggy updates Microsoft released this month, you should wait for the next month before installing new updates.

They already started releasing updated fix's for those problems.

 

Alright, I'll wait for them

[Reascr]

 

Thanks for all your help! It's all working smoothly now!

 

It has a pleasure. By the way, the problem was generated because of some really buggy updates Microsoft released this month, you should wait for the next month before installing new updates.

They already started releasing updated fix's for those problems.

 

Alright, I'll wait for them

[SleepyDude]

Hi,

 

Before you go there are some cleaning we need to do now that the machine is clean.

 

Step 1 - Remove the Tools we use

Please open Start > Control Panel > then Add or Remove Programs, locate these programs on the list and uninstall them:

• ESET On-line Scanner

» Remove disinfection tools

• Download DelFix and save it to your Desktop, execute the tool. (If running on Windows Vista or above accept all the security prompts).
  
• place a checkmark next to:
  • Remove disinfection tools
  • Create registry backup
  • Purge system restore
  • Reset System Settings
• Click the Run button

When the tool is finished, a log will open in notepad. Please copy and paste the log in your next reply.

» Others

• Delete any .exe, .log, .txt, file created on the Desktop during the cleaning process.

Step 2 - How to prevent new infections

To protect your computer from being infected again its very important to keep Windows Updated and all the programs related with the internet, Web Browser, Flash Player, Adobe Reader and Java only to mention the most targeted by today security exploits.

• Follow the instructions below to keep these critical programs updated:
  • Windows and Internet Explorer
    To keep Windows and Internet Explorer updated make sure you have Windows Update enabled on the Control Panel applet, follow the instructions for Windows 7 on this MS article How to configure and use Automatic Updates in Windows or use the FixIt tool provided.
  • Antivirus and Antimalware programs
    Make sure you have a Antivirus program always updated and running.
    Sometimes Antivirus can miss some malware, when that happens its good to have Malwarebytes free installed, Update and run weekly to keep your system clean. Malwarebytes is also good to revert some system changes made by the malware.
  • Enable the Windows Firewall
    No system can be considered safe if not protected by a Firewall. If you are connected to the Internet by a Router you should check its configuration and make sure the firewall is active.
    If you connect by modem or to a open Local Network you should enable the Windows 7 built-in firewall.
  • Adobe Flash Player
    To update Adobe Flash Player accept any prompt to update or manually initiate the update by opening Start Menu > Settings > Control Panel open the applet called Flash Player, on the Advanced tab click the Check Now button. Accept any prompt to install an updated version.
  • Adobe Reader
    Adobe Reader, can be updated if you Open Adobe Reader from the Start Menu, when the program full load click on the Help menu next click the Check for updates now option. Follow the prompts to install any new update.
  • Java Runtime
    When java is installed its extremely important to update immediately when you get a notification pop-up from the Java Updater. Or update manually by opening the Start Menu > Settings > Control Panel, open the applet called Java on the Update tab click the Update Now button. The program will prompt you to install any new updated version available.
    Every time you update Java make sure you uncheck the box asking to Install the Ask Toolbar and make Ask my default search provider
    
    For safety you can have Java installed but disabled in your browsers and only enable it when you need it. You can Enable/Disable Java by executing the following steps:
    Click  Start > Control Panel > Java/Java (32-bit), click the Security tab and uncheck the box Enable Java content in the browser and click OK
    
• Keep Installed Programs Up to Date
  It's important to keep all other programs on your computer updated because they can also have security vulnerability explored by the malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications to fix vulnerabilities, this can be done manually by using the Update feature included in most programs or you can use one of the following programs to help you with this task:
  • Secunia Personal Software Inspector (PSI)
  • FileHippo.com Update Checker
• Surf the Net with extra Security
  Every web browser is a target for malware, the bad guys are always trying to explorer security holes to infect the computers, and this is especially true for Internet Explorer because is one of the most used. Using alternatives like Mozilla Firefox or Google Chrome can help protecting your computer from infections.
  And for Firefox and Chrome you can get an extra layer of protection by installing two add-ons AdBlockPlus and Web Of Trust (WOT). WOT can also protect Internet Explorer.

Security Alert

Eventually you may not know but there are several new threats that's currently doing the rounds, thei are particularly nasty piece of work as it scans your files for certain file types (*.doc, *.pdf, *.xls, *.jpg, *.odt, and many more) and encrypts them, rendering the files worthless unless you have a decryption key that is generated by the malware specifically for your computer and sent to the malware creators. This kind of malware is called RansomWare because they hold the key and ask for a ransom (from $300 USD to more) to unlock your files, also there is no warranty that you will actually recover your files!

There is no way to guarantee that you are 100% secure against this type of threats because the malware is constantly evolving. Presently there is a tiny utility that you can install to minimize the risk called CryptoPrevent, it will set some windows policy restrictions to block the execution of the malware.


The tool can be downloaded here.

::: Some final recommendations :::

• *Always* Keep a backup of your important files;
• When installing\updating any program, make sure you always select Custom Installation, this way you can Uncheck any possible drive-by-install (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click Next button without looking at any given page;
• Always try to download programs from the authors home pages. Today many big download sites are forcing users to install download helper tools that includes Adware, Spyware and extra crap you don't need to install. There is a new free program available called Unchecky, when installed it will try to automatically uncheck the checkboxs for you and alert when you are about to install extra crap;
• Finally, please read:
  • How did I Get Infected in the First Place?
  • Pitfalls of free downloads...
  • Simple and easy ways to keep your computer safe and secure on the Internet

 

Best Regards and have a Safe surfing!

 

[Reascr]

Here's the log

 

# DelFix v10.8 - Logfile created 29/08/2014 at 10:34:31
# Updated 29/07/2014 by Xplode
# Username : Owner - OWNER-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\TDSSKiller_Quarantine
Deleted : C:\AdwCleaner
Deleted : C:\Users\Owner\Desktop\FRST-OlderVersion
Deleted : C:\Users\Owner\Desktop\Addition.txt
Deleted : C:\Users\Owner\Desktop\aswMBR.txt
Deleted : C:\Users\Owner\Desktop\FRST.txt
Deleted : C:\Users\Owner\Desktop\FRST64.exe
Deleted : C:\Users\Owner\Desktop\JRT.txt
Deleted : C:\Users\Owner\Desktop\MBR.dat
Deleted : C:\Users\Owner\Desktop\TFC.exe
Deleted : C:\Users\Owner\Downloads\Addition.txt
Deleted : C:\Users\Owner\Downloads\adwcleaner_3.307.exe
Deleted : C:\Users\Owner\Downloads\aswmbr.exe
Deleted : C:\Users\Owner\Downloads\aswMBR.txt
Deleted : C:\Users\Owner\Downloads\esetsmartinstaller_enu.exe
Deleted : C:\Users\Owner\Downloads\Extras.Txt
Deleted : C:\Users\Owner\Downloads\Fixlog.txt
Deleted : C:\Users\Owner\Downloads\FRST.exe
Deleted : C:\Users\Owner\Downloads\FRST.txt
Deleted : C:\Users\Owner\Downloads\JRT.exe
Deleted : C:\Users\Owner\Downloads\MBR.dat
Deleted : C:\Users\Owner\Downloads\OTL.Txt
Deleted : C:\Users\Owner\Downloads\OTL.exe
Deleted : C:\Users\Owner\Downloads\tdsskiller.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #261 [Scheduled Checkpoint | 08/29/2014 09:01:14]
Deleted : RP #262 [Windows Update | 08/29/2014 10:00:10]

New restore point created !

~ Resetting system settings ... OK

########## - EOF - ##########
 

Everything else is deleted. I'll probably be buying Malwarebytes soon and have it set up to run scans every night. I forget otherwise

[SleepyDude]

Everything else is deleted. I'll probably be buying Malwarebytes soon and have it set up to run scans every night. I forget otherwise

 

The paid version of Malwarebytes (called Pro) includes real time protection, it creates an extra layer of protection and you will not need to run frequent scans.