Jump to content

SpySentinel

Honorary Members
  • Posts

    1,847
  • Joined

  • Last visited

Posts posted by SpySentinel

  1. Glad to see the Avira and Comodo issue is resolved and that you installed Microsoft Security Essentials instead of Avira.

    Sir, friend, i believe anyvideoconverter isnt a open candy virus is it?

    It is not a virus. What I would be worried about is BitTorrent and uTorrent. Many times, they are the reasons that computers can get infected so I recommend you uninstall them. However if you choose not to, please refrain from using them until we are all done.

    1)what about the SPR Hacktools? Is that a big threat? You can see it from the images in my previous post

    Any type of hack tools are dangerous and I recommend you delete it.

    4) Is it safe to buy online?

    After seeing the recent scans from MSE, no please wait to buy online.

    Rootkit Unhooker:

    • Please download Rootkit Unhooker and save it to your desktop.
    • Now double-click on RKUnhookerLE.exe to run it.
    • Click the Report tab, then click Scan.
    • Check (Tick) Drivers, Stealth. Uncheck the rest and then click OK.
    • Wait till the scanner has finished and then click File, Save Report.
    • Save the report somewhere where you can find it. Click Close.

    Copy the entire contents of the report and paste it in a reply here.

    Note** you may get the following warning, just click OK and continue.

    "Rootkit Unhooker has detected a parasite inside itself!

    It is recommended to remove parasite, okay?"

  2. Hi noeffort,

    Welcome to the Malwarebytes Forum :)

    To set Malwarebytes' Anti-Malware Pro to update automatically:

    • Open Malwarebytes' Anti-Malware.
    • Go to the Settings tab.
    • Go to Scheduler settings and click on Add.
    • Under type, choose Update.
    • Make sure the frequency is set to Hourly (which is recommended) or choose how often you want MBAM to check for updates.
    • Then click on Add.

    Hope this helps,

  3. Plus my daughter has had 6 skin cancer surgeries, she's only 6 years old imho, but no chemo needed or anything yet and she's a trooper so we're very lucky.

    I'm very sorry to hear about your daughter and I hope she gets better.

    I made it quickly since I have to leave tonight so forgive the rough edges. I will try to stop in from time to time to say hi.

    The banners and images do look great. Thanks! :)

  4. Ok here are the pictures of the antivirus and comodo problems.

    I have successfully deleted the quarintined files in the dr cureit web thing quarintine. But i havnt got any time today to clear the system restore, i will do this tomorow morning.

    Thanks, glad to hear you were successful with cleaning out the Dr.Web quarantine.

    In regards to Avira detecting the files in Comodo, it seems that others have the same issue:

    http://forums.comodo.com/other-security-products/hcrstcodll-is-malware-t73006.0.html;prev_next=next

  5. Hi Otherguyx,

    Sorry for the delay.

    1) I think you missed this question but i asked how do i clean out the DR WEb Cureit quarintine?

    To remove the quarantined files from Dr.Web, please navigate to %USERPROFILE%\DoctorWeb\Quarantine\ and you can delete the files in that folder.

    5) You missed this question i think too. The avira, not now but it did yesterday or day before, kept on conflicting with comodo antivirus saying there was a virus in the temp quarintine thing of comodo. When i looked in there, there was nothing in there... so im confused about this.

    Can you please post a screenshot when this happens. I want to see what Avira is detecting.

  6. Hi Mtown,

    Please try this:

    Set Exclusions for McAfee in Malwarebytes' Anti-Malware:

    • Open Malwarebytes' Anti-Malware and click on the Ignore List tab
    • Click the Add button on the lower left
    • In the small browse window that opens, navigate to C:\Program Files and click once on McAfee and click OK.
    • Click the Add button on the lower left
    • In the small browse window that opens, navigate to C:\Program Files and click once on McAfee.com and click OK.
      Note: For 64 bit Windows versions this will be C:\Program Files (x86)
    • Close Malwarebytes' Anti-Malware

    Set Exclusions for Malwarebytes' Anti-Malware in McAfee on 32 bit Windows Versions:

    • Open McAfee and click on Navigation in the upper right hand corner.
    • Click on Firewall located under Features.
    • Click on Program Permissions and wait for the list to populate.
    • Click the Add button and then click browser.
    • Add the following files to the firewall with full access:
      • C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
      • C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

      [*]Click OK

      [*]Close the McAfee main window and restart your computer.

    Set Exclusions for Malwarebytes' Anti-Malware in McAfee on 64 bit Windows Versions:

    • Open McAfee and click on Navigation in the upper right hand corner.
    • Click on Firewall located under Features.
    • Click on Program Permissions and wait for the list to populate.
    • Click the Add button and then click browser.
    • Add the following files to the firewall with full access:
      • C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
      • C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

      [*]Click OK

      [*]Close the McAfee main window and restart your computer.

    Let me know if this helps. :)

  7. You're very welcome, glad to hear everything went smoothly. :)

    What do you advise the user to do about end of life programs?

    The user has Microsoft Office 2000. Installing a later version would be quite expensive.

    Yes it can be very expensive. Since it is really outdated, you can have him/her try a free alternative such as OpenOffice, which includes word processing, spreadsheets, presentations, graphics, databases and more.

  8. You're very welcome!

    Your log looks clean, Great Job! :)

    Follow these steps to uninstall Combofix and tools used in the removal of malware

    • Click START then RUN
    • Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
      CF_Uninstall-1.jpg


      Now for some cleanup..
      Please download OTC and save it to Desktop.
      • Please make sure you are connecting to the Internet
      • Double-click OTC.exe
      • Click the CleanUp! button.
      • Select Yes when the "Begin cleanup Process?" prompt appears.
      • If you are prompted to Reboot during the cleanup, select Yes

    Now that you are clean, please follow these simple steps in order to keep your computer clean and secure:

    1. Disable and Enable System Restore. - Set a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Since System Restore is a protected directory, your tools can not access it to delete these bad files which sometimes can reinfect your system. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.
      The easiest and safest way to do this is:
      • Go to Start > Programs > Accessories > System Tools and click "System Restore".
      • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
      • Then go to Start > Run and type: Cleanmgr
      • Click "OK".
      • Click the "More Options" Tab.
      • Click "Clean Up" in the System Restore section to remove all previous restore points except the newly created one.

    [*]I recommend you install an alternate web browser such as FireFox. FireFox is a more secure browser than Internet Explorer and it has some additional tools you can install to help secure it even more.

    [*]Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

    [*]Install SpywareBlaster - SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.

    [*]Install SpywareGuard - SpywareGuard offers realtime protection from spyware installation attempts. Make sure you are only running one real-time anti-spyware protection program or there will be a conflict.

    [*]Malwarebytes’ Anti-Malware <= The best free antimalware application to remove malware and keep your computer clean. The free version is a great scanner to compliment your current antivirus software. However, if you upgrade to Malwarebytes’ Anti-Malware PRO, you will get real-time protection against the latest malware threats.

    [*]Norton Safe Web <= Norton Safe Web protects your browser against malicious sites and warns you when you go to one.

    [*]Update all these programs regularly - Please keep these programs up-to-date. Without regular updates you WILL NOT be protected when new malicious programs are released.

    [*] Update Non-Microsoft Programs - You can also use these free resources to check if there are any available updates to the programs you have installed: Secunia Software Inspector and Calendar of Updates.

    Follow this list and your potential for being infected again will reduce dramatically.

  9. I am going to have you create a new restore point and then the popups from Avira should stop.

    1. Disable and Enable System Restore. - Set a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Since System Restore is a protected directory, your tools can not access it to delete these bad files which sometimes can reinfect your system. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.
      The easiest and safest way to do this is:
      • Go to Start > Programs > Accessories > System Tools and click "System Restore".
      • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
      • Then go to Start > Run and type: Cleanmgr
      • Click "OK".
      • Click the "More Options" Tab.
      • Click "Clean Up" in the System Restore section to remove all previous restore points except the newly created one.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.