cdavfrew

Members
  • Content Count

    16
  • Joined

  • Last visited

About cdavfrew

  • Rank
    Member
  • Birthday 02/29/1912

Contact Methods

  • Website URL
    http://
  • ICQ
    0

Profile Information

  • Gender
    Male
  • Location
    Atlantis, Mystery Street 23, Block 45, #67

Previous Fields

  • Operating System
    Windows XP SP3, Vista Business
  1. Here are a few other things you must do once you are completely clean: 1. Time for some housekeeping • Click START then RUN • Now type (or Copy/Paste) Combofix /u in the runbox and click OK 2. Now Set a New Restore Point to prevent possible re-infection from an old one. Some of the malware you picked up could have been saved in System Restore. Since System Restore is a protected directory, your tools can not access it to delete these bad files which sometimes can re-infect your system. Setting a new restore point AFTER cleaning your system will help prevent this and enable your compu
  2. Hey sarahw You can uninstall VirtuaGirl HD from your Add/Remove Programs in the Control Panel. This will make the dancing girls go away, unless you installed this program and wish to keep it. I'll post back soon with more information for the future security of your computer. *so...have i passed? Best Regards Also uninstall these programs unless you want them on your PC: Al Roker Vs. Star Jones Boxing by Outerinfo pointgo
  3. Please follow all my instructions accordingly. Read through all of it. 1. • Start HijackThis. • Click on Misc Tools. • Then click Open Uninstall Manager. • Click Save list... • Notepad will open with the list. • Post the list here. 2. Please disable all security programs, such as antiviruses, antispywares, and firewalls. Also disable your internet connection. Open Notepad and copy/paste the text in the code box below into it: Folder:: C:\WINDOWS\system32\iDlo07 Save this as CFScript.txt in the same folder as ComboFix. Then drag the CFScript.txt into Combo-Fix.exe. This will star
  4. Great. Also post a new HijackThis log. What do you mean by not being able to access Virustotal on the computer? What problems do you have left? The girls are probably still dancing on your desktop, aren't they. Don't worry; they'll be fixed in the next step, after you've posted the virustotal results. Best Regards
  5. Hey sarahw First, I want you to enable the viewing of hidden files. • Click Start. • Open My Computer. • Select the Tools menu and click Folder Options. • Select the View Tab. • Under the Hidden files and folders heading select Show hidden files and folders. • Uncheck the Hide protected operating system files (recommended) option. • Click Yes to confirm. • Click OK. Next, please disable all security programs, such as antiviruses, antispywares, and firewalls. Also disable your internet connection. Open Notepad and copy/paste the text in the code box below into it: File:
  6. Wonderful. I have all the information I need. There are still a few malware files remaining on your computer, and Malwarebytes will fix them. I will answer all your questions later. It seems that you used to have Malwarebytes. If you have already uninstalled it, please follow the instructions regarding downloading and installing it.. Please download Malwarebytes' Anti-Malware to your desktop. • Double-click mbam-setup.exe and follow the prompts to install the program. • At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malw
  7. Hey sarahw Please note that running programs is what will fix this problem. To fix it manually will take a long time. Just do this one more step: run SuperAntispyware in safe mode again, and then post the log here. It seems that some of the malware still remains stuck on your computer, and I need to know which. This will allow for the most thorough cleanup of your computer, instead of directly fixing using online scanners and such. Best Regards
  8. Hey sarahw Please boot into safe mode and run Combo-Fix.exe from there once more. Post the ComboFix log here. After that, try doing a scan with SuperAntispyware in safe mode again. If it still doesn't work, do it in normal mode. Post the log here. Best Regards
  9. Hey sarahw Delete your previous version of SDFix Download SDFix and save it to your Desktop. Double click SDFix.exe and it will extract the files to %systemdrive% (Drive that contains the Windows Directory, typically C:\SDFix) Please then reboot your computer into Safe Mode by doing the following: • Restart your computer • After pressing the power button, repeatedly tap the F8 key. • Instead of Windows loading as normal, the Advanced Options Menu should appear; • Select the first option, to run Windows in Safe Mode, then press Enter. • Choose the administrator's account. • Open th
  10. Hey sarahw Please download Superantispyware Free and install it. Follow the prompts and reboot if required. Launch Superantispyware Free either by running C:\Program Files\SUPERANTISPYWARE.exe or right-click on the SuperAntispyware icon in your task bar (it looks like a bug) and click on Scan for Spyware, Adware, Malware... Configuring SuperAntispyware • Click on Preferences. • In the tab General and Startup, make sure the box Start SuperAntispyware when Windows starts is unchecked. This will prevent SuperAntispyware from starting everytime, because it may interfere with other fixes that m
  11. Hey sarahw Before I can continue to more drastic measures, I will need more analysis. 1. Are you running as Administrator? 2. Please download EXE File Association Fix, unzip the file, and run the .reg file. When a prompt pops up, click on Yes. After that, reboot, and try running Combo-Fix.exe again. Best Regards
  12. Hey sarahw Download SDFix and save it to your Desktop. Double click SDFix.exe and it will extract the files to %systemdrive% (Drive that contains the Windows Directory, typically C:\SDFix) • Open the extracted SDFix folder and double click RunThis.bat to start the script. • Type Y to begin the cleanup process. • It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot. • Press any Key and it will restart the PC. • When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press a
  13. Hey sarahw Thanks for the detailed report. Let's mix it up a little. Follow the instructions in my second post, reboot, and then run Combo-Fix.exe. Best Regards
  14. Please run HijackThis. • Click on the button which says Main Menu, then Do a system scan only. • Please wait for the scan to be completed. • After the scan has completed, check the following entries only if they are still there. If they are not there, ignore them. R3 - Default URLSearchHook is missing F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\shell.exe O2 - BHO: iSecurity - {A8311E8F-E459-4D22-89B4-CB9DCF10A425} - C:\WINDOWS\system32\ISECUR~1.CPL O2 - BHO: (no name) - {C1414B47-C261-4695-B157-3867F6649E93} - C:\WINDOWS\system32\geBtTMec.dll O3 - Toolbar: The retnsrp - {941FB260
  15. Hey SarahW Nice collection of malware there. Let's clean it up. First, please download ComboFix. With ComboFix, at the download window, please rename it to Combo-Fix(.exe) before downloading it. Please disable all security programs, such as antiviruses, antispywares, and firewalls. Also disable your internet connection. • Run Combo-Fix.exe and follow the prompts. **Understand that things like your system clock changing and your desktop disappearing might happen. Do not worry, because all will be restored later. • Wait for the scan to be completed. • If it requires a reboot, please do