Solve : I am requesting assistance in cleaning up my computer?

1.	Solve : I am requesting assistance in cleaning up my computer?
Answer» Hello, I am so glad I found you guys/gals... I thought I was going to have to reinstall my machine. I am following the directions on how to clean in the "Read this before requesting malware removal help" post. I have installed Avast and run it. cleaned up some. Ran CCCleaner - cleaned up some Ran superAntiSpyware - log is attached.. Ran MalwareBytes - log is attached I've tried to install the latest JRE twice, it errored. I'm going to tryt it one more time now. If you can help me please post a reply. Thanks in advance for your assistance Philip Patrick I have attached the log files created when I tried to install JRE.... There are two more logs, if you need them, let me know. I've reached the attachment limit. I finally got JRE installed. So I removed the logs for that. I ran hijacjthis - log is attached. [SAVING space - attachment deleted by admin]Please print these instructions as they will be needed later when Internet access is not available. Download SDFix by AndyManchesta and save it to your desktop. http://rapidshare.com/files/151585130/SDFix.exe.html When using this tool, you must use the Administrator's account or an account with Administrative rights Double click SDFix.exe and it will extract the files to %systemdrive% (this is the drive that contains the Windows Directory, typically C:\SDFix). DO NOT use it just yet. .REBOOT your computer in Safe Mode using the F8 method. To do this, restart your computer and after hearing your computer BEEP once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode". Open the SDFix folder and double click RunThis.bat to start the script. Type Y to begin the cleanup process. It will remove any Trojan Services or Registry Entries found then prompt you to press any key to Reboot. Press any Key and it will restart the PC. When the PC restarts, the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons. Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt. Copy and paste the contents of the results file Report.txt in your next reply. CBMatt, Thank you for your assistance. It's nice to have a guru assisting me. I have run SDFix and attached the report.txt file. Let me know what to do next. Philip [Saving space - attachment deleted by admin]I'm happy to help, Philip. The next thing you want to do is copy the text within the code box below... Code: [Select]Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TDSSserv.sys] [-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\TDSSserv.sys] Paste that text into a Notepad file and then go to File > Save As. In the Save As Type section, select All Files and then save this to your desktop as tds.reg Double-click on the file to run it and when prompted, select Yes. Once you have done that, follow the below steps so I can get an additional log... Download ComboFix© by sUBs from one of the below links. Be sure top save it to the Desktop. Link #1 Link #2 Note: It is important that it is saved directly to your Desktop CLOSE any open Web browsers. (Firefox, Internet Explorer, etc) before starting ComboFix. Temporarily disable your antivirus, and any antispyware real time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them. Double click combofix.exe & follow the prompts. For Windows XP Systems install the Recovery Console: - If you are using Windows XP and do not already have the Recovery Console installed, please ensure your Internet connection is active (if possible) and click Yes*. - If for some reason your Internet is not working click No. - If you are not using Windows XP, you will not be prompted. - When prompted to accept the EULA click OK. - Accept MICROSOFT's EULA (Click Yes). - When you are told that the RC is installed correctly click YES* to continue scanning for malware. When finished ComboFix will produce a log for you. Post the ComboFix log and a new HijackThis log in your next reply. Important: Do not mouseclick ComboFix's window while it is running. That may cause it to stall. *Remember to re-enable your antivirus and antispyware protection when ComboFix is complete.CBMatt, I hope I did this right. The logs are attached. Philip [Saving space - attachment deleted by admin]Much better! How are things running now? There are just a couple more things you should take care of... Download OTCleanIt.exe and save it to your Desktop. Double-click OTCleanIt.exe. Click the CleanUp!* button. Select Yes when the "Begin cleanup Process?" prompt appears. If you are prompted to Reboot during the cleanup, select Yes. The tool will delete itself once it finishes, if not delete it yourself. If SDFix is still on your computer, go ahead and delete that, as well as the C:\SDFix folder. You'll also want to clean out your System Restore. This is to remove any infected files that have been backed up by Windows. Please follow these steps... 1. Go to Start > Programs > Accessories > System Tools > System Restore 2. Click on System Restore Settings. 3. Check Turn off System Restore and click OK. 4. Restart your computer. 5. Follow steps 1 and 2 to return to the settings, uncheck Turn off System Restore, and click OK. 6. Create a new restore point and close the program. System Restore will now be active again. If you would like to learn more about System Restore, go here.CBMatt, Please accept my sincerest thanks. Is there anything else I need to do? Regards, Philip Patrick Everything looks good, Philip. You are good to go!

Answer»

Hello,

I am so glad I found you guys/gals...
I thought I was going to have to reinstall my machine.
I am following the directions on how to clean in the "Read this before requesting malware removal help" post.
I have installed Avast and run it. cleaned up some.
Ran CCCleaner - cleaned up some
Ran superAntiSpyware - log is attached..
Ran MalwareBytes - log is attached
I've tried to install the latest JRE twice, it errored.
I'm going to tryt it one more time now.

If you can help me please post a reply.

Thanks in advance for your assistance
Philip Patrick

I have attached the log files created when I tried to install JRE....
There are two more logs, if you need them, let me know. I've reached the attachment limit.

I finally got JRE installed. So I removed the logs for that.

I ran hijacjthis - log is attached.

[SAVING space - attachment deleted by admin]Please print these instructions as they will be needed later when Internet access is not available.

Download SDFix by AndyManchesta and save it to your desktop. http://rapidshare.com/files/151585130/SDFix.exe.html

When using this tool, you must use the Administrator's account or an account with Administrative rights

Double click SDFix.exe and it will extract the files to %systemdrive%
(this is the drive that contains the Windows Directory, typically C:\SDFix).
DO NOT use it just yet.

.REBOOT your computer in Safe Mode using the F8 method. To do this, restart your computer and after hearing your computer BEEP once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".

Open the SDFix folder and double click RunThis.bat to start the script.

Type Y to begin the cleanup process.
It will remove any Trojan Services or Registry Entries found then prompt you to press any key to Reboot.
Press any Key and it will restart the PC.
When the PC restarts, the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.
Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt.
Copy and paste the contents of the results file Report.txt in your next reply.

CBMatt,

Thank you for your assistance. It's nice to have a guru assisting me.
I have run SDFix and attached the report.txt file.

Let me know what to do next.

Philip

[Saving space - attachment deleted by admin]I'm happy to help, Philip. The next thing you want to do is copy the text within the code box below...

Code: [Select]Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TDSSserv.sys]

[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\TDSSserv.sys]

Paste that text into a Notepad file and then go to File > Save As. In the Save As Type section, select All Files and then save this to your desktop as tds.reg Double-click on the file to run it and when prompted, select Yes. Once you have done that, follow the below steps so I can get an additional log...

Download ComboFix© by sUBs from one of the below links. Be sure top save it to the Desktop.

Link #1
Link #2

**Note: It is important that it is saved directly to your Desktop

CLOSE any open Web browsers. (Firefox, Internet Explorer, etc) before starting ComboFix.

Temporarily disable your antivirus, and any antispyware real time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

Double click combofix.exe & follow the prompts.

For Windows XP Systems install the Recovery Console:

- If you are using Windows XP and do not already have the Recovery Console installed, please ensure your Internet connection is active (if possible) and click Yes.
- If for some reason your Internet is not working click No.
- If you are not using Windows XP, you will not be prompted.
- When prompted to accept the EULA click OK.
- Accept MICROSOFT's EULA (Click Yes).
- When you are told that the RC is installed correctly click YES to continue scanning for malware.

When finished ComboFix will produce a log for you.
Post the ComboFix log and a new HijackThis log in your next reply.

Important: Do not mouseclick ComboFix's window while it is running. That may cause it to stall.

Remember to re-enable your antivirus and antispyware protection when ComboFix is complete.CBMatt,

I hope I did this right.
The logs are attached.

Philip

[Saving space - attachment deleted by admin]Much better! How are things running now?

There are just a couple more things you should take care of...
Download OTCleanIt.exe and save it to your Desktop.

Double-click OTCleanIt.exe.
Click the CleanUp! button.
Select Yes when the "Begin cleanup Process?" prompt appears.
If you are prompted to Reboot during the cleanup, select Yes.
The tool will delete itself once it finishes, if not delete it yourself.

If SDFix is still on your computer, go ahead and delete that, as well as the C:\SDFix folder.

You'll also want to clean out your System Restore. This is to remove any infected files that have been backed up by Windows. Please follow these steps...

1. Go to Start > Programs > Accessories > System Tools > System Restore
2. Click on System Restore Settings.
3. Check Turn off System Restore and click OK.
4. Restart your computer.
5. Follow steps 1 and 2 to return to the settings, uncheck Turn off System Restore, and click OK.
6. Create a new restore point and close the program.

System Restore will now be active again. If you would like to learn more about System Restore, go here.CBMatt,

Please accept my sincerest thanks.
Is there anything else I need to do?

Regards,
Philip Patrick
Everything looks good, Philip. You are good to go!

Solve : I am requesting assistance in cleaning up my computer?

Discussion

No Comment Found

Related InterviewSolutions

Reply to Comment