[sundayla]

Btw, were those infections MBAM found real bad?

[Advertisements]

The same thing happend again - but judging from the scan report, im assuming when it becomes null status it means scan completed. Here is the scan report:


--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0: scan report
Saturday, April 3, 2010
Operating system: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner version: 7.0.26.13
Last database update: Saturday, April 03, 2010 19:07:59
Records in database: 3913920
--------------------------------------------------------------------------------

Scan settings:
scan using the following database: extended
Scan archives: yes
Scan e-mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\
F:\
G:\
H:\

Scan statistics:
Objects scanned: 83938
Threats found: 0
Infected objects found: 0
Suspicious objects found: 0
Scan duration: 01:25:37

No threats found. Scanned area is clean.

Selected area has been scanned.

[sundayla]

The same thing happend again - but judging from the scan report, im assuming when it becomes null status it means scan completed. Here is the scan report:


--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0: scan report
Saturday, April 3, 2010
Operating system: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner version: 7.0.26.13
Last database update: Saturday, April 03, 2010 19:07:59
Records in database: 3913920
--------------------------------------------------------------------------------

Scan settings:
scan using the following database: extended
Scan archives: yes
Scan e-mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\
F:\
G:\
H:\

Scan statistics:
Objects scanned: 83938
Threats found: 0
Infected objects found: 0
Suspicious objects found: 0
Scan duration: 01:25:37

No threats found. Scanned area is clean.

Selected area has been scanned.

[Cruise475]

Good News sundayla,

We have cleaned up your system.

Btw, were those infections MBAM found real bad?

It was nothing too major. The main problem it fixed was your broken file associations due to the malware. The malware attached itself to your .exe associations, so that is why we did not anything to run correctly. Other than that, everything was relatively minor, compared to some of the infections out there,

We need to take care of a few housekeeping tasks now.


Program Cleanup
Please open OTL/OTS.

• Make sure you have internet connection..
  
• Click the CleanUp! button.
  
• Select Yes when the "Begin cleanup Process?" prompt appears.
  
• If you are prompted to Reboot during the cleanup, select Yes

Create a restore point.

Click Start Menu > Run > type (or copy and paste) (Windows Vista users and up, hold your Windows Key and then press R)

%SystemRoot%\System32\restore\rstrui.exe (Windows XP and below)
%systemroot%\system32\rstrui.exe(Windows Vista)

Press OK. Choose Create a Restore Point then click Next. Name it and click Create, when the confirmation screen shows the restore point has been created click Close.


Disk Cleanup
Next goto Start Menu > Run > type (Windows Vista users and up, hold your Windows Key and then press R)
cleanmgr


Click OK, Disk Cleanup will open and start calculating the amount of space that can be freed, Once thats finished it will open the Disk Cleanup options screen, click the More Options tab then click Clean up on the system restore area and choose Yes at the confirmation window which will remove all the restore points except the one we just created.

To close Disk Cleanup and remove the Temporary Internet Files detected in the initial scan click OK then choose Yes on the confirmation window.


Update Windows

It is a good idea to keep Windows updated by visiting Http://windowsupdate.microsoft.com.

We are going to ensure that Windows Automatic Updating is turned on, to ensure that you will get all available updates.

• Goto your Control Panel.
  
• Select Automatic Updates
  
• Make sure Automatic is selected.

Now we will talk about some prevention steps

Antispyware Programs:
I recommend the following programs to help keep your computer safe from future attacks. Be sure to keep them updated, and scan your computer at least once a month.

• SpywareBlaster to help prevent spyware from installing in the first place.
• SpywareGuard to catch and block spyware before it can execute.
• IESpy-Ad to block access to malicious websites so you cannot be redirected to them from an infected site or email.

Antivirus Protection.
This is basically a necessity! Be sure to have an up-to-date antivirus program installed and running on your computer. But remember, only one program should be installed at a time to prevent conflicts. As with any other tool, It needs to be updated regurarly to help combat the newest threats. I recommend the following FREE Antivirus Programs.

• AntiVir
• Avast

Firewall.
A firewall is just as important as a reliable antivirus program. A firewall acts as a barrier between you and the rest of the world. It blocks all internet traffic from reaching your computer that you have not approved. If you don't use a firewall it will open up your computer to attacks Criminals can break into your computer and steal your personal information, or to even use your computer for anything they please.

Additional, Just as you should only have one antivirus program installed on your system, you should only have ONE firewall installed. If you have more than one installed, they will conflict with each other and not work properly.

Here are a few Free Personal Firewalls

• Comodo Free Firewall
• Zone Alarm Free
• Sunbelt-Kerio

Next, you can use the MVPS Hosts file replaces your current HOSTS file with one containing well known ad sites and other bad sites. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer, meaning it will be difficult to infect yourself in the future.
http://mvps.org/winhelp2002/hosts.htm


Lastly, To find out more information about how you got infected in the first place, and some pointers to follow to prevent future infections. Check out this article by Tony Klein. How did I get infected in the first place?


Good Luck
Cruise

[sundayla]

Good News sundayla,

We have cleaned up your system.

That is real good news!



I'm going to carry out those housekeeping tasks now.

It was nothing too major. The main problem it fixed was your broken file associations due to the malware. The malware attached itself to your .exe associations, so that is why we did not anything to run correctly. Other than that, everything was relatively minor, compared to some of the infections out there,

Phew! So there was nothing that dangerous that could, for example, steal information from the system ? Because I was always in normal windows mode, not safe mode.



Is it recommended to have all three Antispyware Programs (SpywareBlaster, SpywareGuard and IESpy-Ad) installed on the system at the same time? Should MBAM be also used to scan monthly?

Edited by sundayla, 04 April 2010 - 08:39 AM.

[Cruise475]

Hi There,

Is it recommended to have all three Antispyware Programs (SpywareBlaster, SpywareGuard and IESpy-Ad) installed on the system at the same time? Should MBAM be also used to scan monthly?

MBAM is a good tool to keep around and run every so often.

Each of the programs would not be a bad idea to keep around.

Phew! So there was nothing that dangerous that could, for example, steal information from the system ? Because I was always in normal windows mode, not safe mode.

Not that I saw!


~Cruise

[sundayla]

Hi there,

I've completed the housekeeping tasks as you instructed. My system seems to be running smoothly once again!

Cruise, THANK YOU for taking the time and patience to guide me through in this thread and fix this malware problem, I really appreciate it.

If it wasn't for you and Geeks to Go, my system would in a horrendous mess by now and I would have been none of the wiser about malware.

Is there anything else I could do to make my system safer?

Edited by sundayla, 05 April 2010 - 07:31 AM.

[Cruise475]

Hey sundayla,

Thank you for your kind words! This is why we are here

Is there anything else I could do to make my system safer?

The best way to stay protected is to surf smart. Websites that host porn and cracks for example are likely places you can pickup malware. Plus downloads from P2P file sharing programs are very likely to to be infected.

The malware world is always changing, there are always new ones coming out, and unfortunately it is nearly impossible for the AV companies to catch them all immediately. It usually takes a few days up to weeks for new strains to be added into the AV programs.

Mainly, know what your are downloading, stay away from bad websites.

If you use FireFox, WebOfTrust is a good program that will tell you a security rating of websites.

Take Care,
Cruise

[sundayla]

Hi Cruise,

I just added the WebOfTrust programme to firefox - hopefully it will help me avoid venturing into dodgy sites seeing as I'll be more cautious with my browsing activities. I won't be taking my system security for granted again thats for sure!

Once again, a BIG thanks for your help, you and the folks of Geeks to Go do a fantastic job!

Take care,
sundayla

[Cruise475]

Hi There,

It was my pleasure I am glad I could be of some assistance!

Thanks Again,
Cruise

[Cruise475]

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.