[heir]

Goto Start -Run ...
In the Copy this

chkdsk /r

into the textfield and click OK.
Answer Yes when the check is to be scheduled at next restart.

Reboot your computer

Did it report any errors/repairs?

[Advertisements]

Goto Start -Run ...
In the Copy this

chkdsk /r

into the textfield and click OK.
Answer Yes when the check is to be scheduled at next restart.

Reboot your computer

Did it report any errors/repairs?

I did this and it went through checking for things, but when It was over, no log came out. There was no report. Was there suppose to be? Or does one only come out if it finds something wrong?

[Master Spade]

Goto Start -Run ...
In the Copy this

chkdsk /r

into the textfield and click OK.
Answer Yes when the check is to be scheduled at next restart.

Reboot your computer

Did it report any errors/repairs?

I did this and it went through checking for things, but when It was over, no log came out. There was no report. Was there suppose to be? Or does one only come out if it finds something wrong?

[heir]

Did it present any error on the screen when it was run?
(The results are only presented on the screen while it runs.)
If you don't remember, rerun and watch and then let me know.

Edited by heir, 26 July 2009 - 03:11 AM.

[Master Spade]

Did it present any error on the screen when it was run?
(The results are only presented on the screen while it runs.)
If you don't remember, rerun and watch and then let me know.

I ran that Test again. Last time I thought a Log of that scan would be produced like the other scans. This time however I waited in front of the PC to see if there were any Errors. It ran through Step 1 very fast with no Errors reported. It just said File Verification Completed.

Then stage 2 of 5 went fast with no problems. Index File Verification Completed.

Stage 3 of 5 also went fast with no problems. Security Descriptor Verification Completed.

Stage 4 of 5 went slow with no problems. File Data Verification Completed.

Stage 5 of 5 went even slower and took more time, but it showed no Errors. When it was done it quickly restarted the PC. Then a blue screen came out and had 3 sentences. It showed for only about 3 seconds. It went by too fast to read it thouroughly, but it basicaly just said that the Scan was complete and word for word it said this in the middle sentence: "The Volume is Clean".

I didn't see what the 3rd line said as it went by too fast and I thought it was going to wait for me to press something to continue.


It seems like good news, as no Errors were detected. If it would've detected any Errors, would it show them as it finds them? Would there be an option to correct those Errors? Also, is there anything else we should check?


Thanks for all the help so far.

[heir]

Let's run that OTL-fix now then.

Run OTL.exe

• Under the Custom Scans/Fixes box at the bottom, paste in the following
  
  

  :OTL
  O15 - HKCU\..Trusted Domains: internet ([]about in Trusted sites)
  :Files
  C:\DOCUME~1\Jaime\APPLIC~1\BitTorrent
  C:\DOCUME~1\Jaime\APPLIC~1\DNA
  C:\Program Files\BitTorrent
  C:\Program Files\DNA
  F:\Documents and Settings\Jazmin\Local Settings\Temporary Internet Files\Content.IE5\39KJJ7CE\00000000[1].htm
  :Commands
  [purity]
  [Reboot]

• Then click the Run Fix button at the top
• Let the program run unhindered, reboot when it is done
• Then post the OTL fixlog

Edited by heir, 27 July 2009 - 03:47 PM.

[Master Spade]

I ran that OTL fix and pasted the info. This time it worked. It said it needed to restart the PC, so I restarted it. But when it restarts, where do I get the OTL fixlog?

[heir]

Browse your computer to this folder

C:\_OTL\MovedFiles

In that folder locate the the newest created file.
(The filename is the date and time also)

[Master Spade]

Is this it?

========== OTL ==========
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\internet\ deleted successfully.
========== FILES ==========
C:\DOCUME~1\Jaime\APPLIC~1\BitTorrent\locale moved successfully.
C:\DOCUME~1\Jaime\APPLIC~1\BitTorrent\data\torrents moved successfully.
C:\DOCUME~1\Jaime\APPLIC~1\BitTorrent\data\resume moved successfully.
C:\DOCUME~1\Jaime\APPLIC~1\BitTorrent\data\metainfo moved successfully.
C:\DOCUME~1\Jaime\APPLIC~1\BitTorrent\data moved successfully.
C:\DOCUME~1\Jaime\APPLIC~1\BitTorrent moved successfully.
File\Folder C:\DOCUME~1\Jaime\APPLIC~1\DNA not found.
C:\Program Files\BitTorrent moved successfully.
File\Folder C:\Program Files\DNA not found.
F:\Documents and Settings\Jazmin\Local Settings\Temporary Internet Files\Content.IE5\39KJJ7CE\00000000[1].htm moved successfully.
========== COMMANDS ==========

OTL by OldTimer - Version 3.0.10.3 log created on 07302009_003916








There are 7 other folders in there where this one is, but these 7 are empty. Are those the ones it tried to create when it failed to run the other times? If so, since they are empty, should I just delete them?

[heir]

Is this it?

should I just delete them?

We'll take care of that in this post.


Hey there, Master Spade!

OK! Well done, your log is clean again!

Time for some housekeeping.

Step 1.
Clean up:


We need to do is to remove all the tools that you have used. This is so that should you ever be re-infected, you will download updated versions. It will also remove the quarantined Malware from your computer.

First:

• Click START then RUN
• Now type Combo-Fix /u in the runbox and click OK. Note the space between the X and the /u, it needs to be there.
  

Second:

Double-click OTL.exe to start it.
Click the CleanUp button
Click Yes to the reboot.

Now delete any tools/logs that is left over after you ran OTL CleanUp.

Step 2.
Prevention:

OK, lets carry out a few preventative steps to make sure you reduce the risk of further infections.

First:
Your Adobe Acrobat Reader is out of date. Older versions are vunerable to attack.

Please go to the link below to download an update.

http://www.adobe.com.../readstep2.html

Remove the older versions and install the latest,


Second:
One of the essentials is to keep your computer updated with the latest operating system patches and security fixes. Windows Updates are constantly being revised to combat the newest hacks and threats, Microsoft releases security updates that help your computer from becoming vunerable. It is best if you have these set to download automatically.

Automatic Updates for Windows

• Click Start.
• Select Settings and then Control Panel.
• Select Automatic Updates.
• Click Automatic (recommended)
• Choose a day and a time when you know the computer will be on and connected to the internet.
• Click Apply then OK.

Third:
Now lets download some preventative programs that will help to keep the nasties away! We will start with Anti Spyware programs. I would advise getting a couple of them at least, and running each at least once a month.

Anti Spyware

• SpywareBlaster to help prevent spyware from installing in the first place. A tutorial can be found here.
• SpywareGuard to catch and block spyware before it can execute. A tutorial can be found here.
• IESpy-Ad to block access to malicious websites so you cannot be redirected to them from an infected site or email. A tutorial can be found here

.
Note: If you find your system slows down after installing any of these, just uninstall it, or disable it from running at startup.


Fourth:
Nearly done! If you like to use chat, MSN and Yahoo have vunerabilities that can leave you open to infections. There are however a couple of very good, Malware free Instant Messenger programs which allow you to connect to multiple IM services in one program! (AOL, Yahoo, ICQ, IRC, MSN):

Instant Messengers

• Trillian or,
• Miranda-IM

Lastly:
It is a good idea to clear out all your temp files every now and again with ATF Cleaner. This will help your computer from bogging down and slowing. It also can assist in getting rid of files that may contain malicious code that could re-infect your computer.


To find out more information about how you got infected in the first place and some great guidelines to follow to prevent future infections you can read this article by Tony Klein.


I will keep this log open for the next couple of days, so if you have any further problems post another reply here.

OK, all the best, and stay safe!

[Master Spade]

I've completed Step 1.

I've completed the first and second parts in Step 2. But for the third part in Step 2, it says to install Anti Spyware programs. I still have the 2 others that I downloaded in this thread, Malwarebytes and SUPERanitSpyware. Should I keep those, or remove those and install the ones you suggest in part 3 of Step 2? I'll wait for you response before I add or remove anything else.



Also, now that everything is clean, how do I make a Restore point to Restore the PC to this point?



THANK YOU for everything so far!!!!!

[heir]

You can keep both Malwarebytes Antimalware and Super Antispyware. That's two good scanners. Remember that only one of them should be configured for realtime protection though. They will not interfere with my other recommendations. If you add to many it might affect the performance on your system. Then it's up to you to decide.

Also, now that everything is clean, how do I make a Restore point to Restore the PC to this point?

Already taken care of.
In the first step all your old restore points have been removed and a new current created.

Edited by heir, 31 July 2009 - 03:47 PM.

[Master Spade]

You can keep both Malwarebytes Antimalware and Super Antispyware. That's two good scanners. Remember that only one of them should be configured for realtime protection though. They will not interfere with my other recommendations. If you add to many it might affect the performance on your system. Then it's up to you to decide.

Also, now that everything is clean, how do I make a Restore point to Restore the PC to this point?

Already taken care of.
In the first step all your old restore points have been removed and a new current created.

I have McAfee for realtime protection currently. If I keep Malwarebytes and SuperAntiSpyware, would they interfere with McAfee? Should I only keep McAfee to be Realtime Protection and keep those others installed, but not in Realtime? This is something I'm confused about, as McAfee didn't protect the PC the first time.
How many of these Antimalware/Antispyware programs should I have? Exactly which ones do you recommend?



Also, if something like this happens again, how do I restore the PC to this Restore point? Where is that Restore point exactly?


Thanks!

[heir]

I have McAfee for realtime protection currently. If I keep Malwarebytes and SuperAntiSpyware, would they interfere with McAfee? Should I only keep McAfee to be Realtime Protection and keep those others installed, but not in Realtime? This is something I'm confused about, as McAfee didn't protect the PC the first time.
How many of these Antimalware/Antispyware programs should I have? Exactly which ones do you recommend?

McAfee is an antivirus and firewall software and not an Antispyware softwre. The antispywares MBAM and Superantispyware won't interfere with McAfee. You can have one Antispyware configured for real-time protection.

How many of these Antimalware/Antispyware programs should I have? Exactly which ones do you recommend?

That frankly is up to you. The more stuff you get on to your computer and run will affect the performance. On the other hand you need to feel that you are protected enough, depending on how you use your computer. There is no exact science behind this. The different softwares protect you in different ways. You need to study the tutorials readme's and howto's to find out which ones you need. Having MBAM and Superantispyware on your computer and using them to scan your computer regularly won't affect the performance though.

Also, if something like this happens again, how do I restore the PC to this Restore point? Where is that Restore point exactly?

Goto

Start -> All Programs -> Accessories -> System Tools -> System restore

From there you can create new points and restore to old one's. You should have on from the time you did step 1 and no prior to that one.

[Master Spade]

Like you said, since McAfee is Not an Antispyware or Antimalware program, I can have one of SUPERantiSpyware or Malwarebytes running in Real time and it wont affect McAfee, Right?



Does SUPERantiSpyware also handle malware? Or is it just for Spyware?

If it does just handle Spyware, then can I run both of those(SUPERantiSpyware and Malwarebytes) in real time with McAfee?

[heir]

Like you said, since McAfee is Not an Antispyware or Antimalware program, I can have one of SUPERantiSpyware or Malwarebytes running in Real time and it wont affect McAfee, Right?

Does SUPERantiSpyware also handle malware? Or is it just for Spyware?

If it does just handle Spyware, then can I run both of those(SUPERantiSpyware and Malwarebytes) in real time with McAfee?

Don't let the names of the softwares confuse you. See them as different vendors for the same purpose like different vendors for antivirus software.

Just use one for real-time protection. Having more then one might result that they come in conflict with each other and slows down your system.
Use the other one for regular scanning (manual)