17 replies to this topic

[Mignonster]

The computer has been working flawlessly since running the rkill stiff from before! -------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER 7.0: scan report Thursday, June 10, 2010 Operating system: Microsoft Home Edition (build 7600) Kaspersky Online Scanner version: 7.0.26.13 Last database update: Thursday, June 10, 2010 07:44:50 Records in database: 4247200 -------------------------------------------------------------------------------- Scan settings: scan using the following database: extended Scan archives: yes Scan e-mail databases: yes Scan area - My Computer: C:\ D:\ E:\ Scan statistics: Objects scanned: 169510 Threats found: 3 Infected objects found: 7 Suspicious objects found: 0 Scan duration: 03:00:25 File name / Threat / Threats count C:\Qoobox\Quarantine\C\Users\remipmc\AppData\Local\gxanstrdd\gcrhgvltssd.exe.vir Infected: Trojan.Win32.FraudPack.axio 1 C:\Qoobox\Quarantine\C\Users\remipmc\AppData\Roaming\e2dd7fe4.exe.vir Infected: Backdoor.Win32.TDSS.ro 1 C:\Qoobox\Quarantine\C\Windows\System32\spool\prtprocs\w32x86\9iQGMY179.dll.vir Infected: Backdoor.Win32.TDSS.ro 1 C:\Users\remipmc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\42aa7c82-79fc3a6b Infected: Exploit.Java.Agent.f 1 C:\Users\remipmc\Desktop\Files_for_submission.zip Infected: Backdoor.Win32.TDSS.ro 3 Selected area has been scanned.

[JonTom]

Hello Mignonster

Thank you for the log.

The computer has been working flawlessly

Thats great news. We have a few things to take care of and then you should be ready to go.

Please work your way through the following steps. If you encounter any difficulties come back and let me know.

• Please Clear Your Sun Java Cache
  
  
  
  • Click on "Windows Orb", then on "Control Panel" and then on the Java icon (looks like a coffee cup). If you do not see the icon, look to your left and click "Classic View".
  • On the "General" tab, under "Temporary Internet Files", click the "Settings" button.
  • Next, click on the "Delete Files" button.
  • There are two options in the window to clear the cache - ("Applications and Applets" and "Trace and Log Files").
  • Leave BOTH Checked
  • Click "OK" on Delete Temporary Files Window.
  • Note: This deletes ALL the Downloaded Applications and Applets from the Cache.
  • Click "OK" to leave the Temporary Files Window.
  • Click "OK" to leave the Java Control Panel.
  
  
• Please delete the following file
  
  
  
  • On your desktop, you will find a file called "Files_for_submission.zip".
  • DO NOT open this file!
  • Right click on the file once and select "Delete".
  • Follow any prompts you recieve then empty your recycle bin (do not miss this step).
  
  
• Temporary File Cleaner
  
  
  
  • Download TFC to your desktop.
  • Close any open windows.
  • Double click the TFC icon to run the program.
  • TFC will close all open programs itself in order to run.
  • Click the Start button to begin the process.
  • Allow TFC to run uninterrupted.
  • The program should not take long to finish.
  • Once complete it should automatically reboot your machine.
  • If your machine does not reboot automatically, manually reboot to ensure a complete clean.
  • Note: After running TFC your machine may take slightly longer to boot the first time. This is normal.
  
  
• Please Uninstall Combofix
  
  
  
  • Hold down the "Windows" key (has the Windows symbol printed on it), and then press the "R" key.
  • A Run box will open.
  • Type combofix /uninstall into the Run box. Please note the space between the "x" and the "/Uninstall", it needs to be there.
  • Click on "OK".
  
  
• Please perform the following cleanup procedure
  
  
  
  • Double click on the OTL.exe icon on your desktop to run the program. (Note: If you are running Vista/Windows 7, right-click on the file and choose Run As Administrator).
  • Once OTL has opened, click on the "CleanUp!" button.
  • Follow any prompts that you receive.
  
  
• Removal of Tools
  
  
  
  • You no longer need rkill or exehelper. Please delete them from your system.
  
  
  Once you have completed the above steps you should be good to go! If you have any further questions, please feel free to ask.
  
  
• Finally, please take the time to read through the information provided below:
  
  Enhance your System Security
  
  
  • For an excellent list of free anti virus software, free online virus scanners, free spyware detection/removal and free firewalls, click here.
  
  
  • IMPORTANT! Please make sure you only have ONE firewall and ONE real-time antivirus installed on your system. When using "on demand" scanners, first update the detection signature files, then disconnect from the internet and disable your resident security program before running the scan.
  • Once complete, remember to re-engage your resident security before going online.
  
  Web Browsers and Browser Security
  
  Firefox
  
  • Firefox is generally considered to have greater browsing security in comparison to other popular programs. You can download Firefox 3.0 from here.
  
  No-Script
  
  • If you use Firefox as your default browser, No-Script can provide additional security by preventing malicious scripts from being executed on your system.
  • You can download No-Script by clicking here.
  
  Internet Explorer
  
  • The newest version of Internet Explorer is available from here.
  
  SpywareBlaster
  
  • If you use Internet Explorer as your default browser, SpywareBlaster would be a valuable addition to your online security.
  • SpywareBlaster prevents malicious ActiveX objects from being downloaded onto your system.
  • You can download SpywareBlaster by clicking here.
  
  Web of Trust
  
  • When using search engines, Web of Trust provides you with an easy way of telling the good sites from the bad and is compatible with both Firefox and Internet Explorer.
  • Coloured symbols are displayed next to search results, giving you more confidence in the links you choose to click on: Green (To go), Yellow (Caution) and Red (Stop).
  • You can download Web of Trust by clicking here.
  
  Keep your Software Updated
  
  • Outdated software can sometimes have vulnerabilities that are exploitable by malware.
  • Check if there are available updates for your installed software with Secunia's Online Software Inspector by clicking here.
  
  Passwords
  
  • Learn how to create strong passwords by clicking here and test the strength of the passwords you already use by clicking here.
  
  General Reading
  
  • How did I get infected in the first place?
  • PC Safety and Security - What do I need?
  • How to prevent Malware (by Miekiemoes)
  
  Learn How To Combat Malware
  
  • Would you like to learn how to fight back against malware and help others? Enroll at the What The Tech (Formerly Tom Coyotes) Malware Classroom by clicking here.

[CatByte]

Since this issue appears to be resolved ... this Topic has been closed. Glad we could be of assistance.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please follow the instructions here http://forums.whatth...ed_t106388.html
and start a New Topic.