Welcome guest. Before posting on our computer help forum, you must register. Click here it's easy and free.

Author Topic: ZeuS  (Read 10119 times)

0 Members and 1 Guest are viewing this topic.

SuperDave

  • Malware Removal Specialist
  • Moderator


  • Genius
  • Thanked: 991
  • Certifications: List
  • Experience: Expert
  • OS: Windows 8
Re: ZeuS
« Reply #15 on: August 23, 2012, 04:29:41 PM »
That looks good. Please tell me how your computer is working before we cleanup.
Intel(R) Core (TM) i3-3220 CPU 3.30 GHz 8.0 Gb RAM Windows 8.1 with a dual boot to Windows XP  Home with SP3, Comodo  with Windows Firewall & Windows Defender

tilman_berlin

    Topic Starter


    Rookie

    • Experience: Beginner
    • OS: Unknown
    Re: ZeuS
    « Reply #16 on: August 24, 2012, 05:46:42 PM »
    As far as I can tell, everything works as before. I didn't notice any irregularity.

    SuperDave

    • Malware Removal Specialist
    • Moderator


    • Genius
    • Thanked: 991
    • Certifications: List
    • Experience: Expert
    • OS: Windows 8
    Re: ZeuS
    « Reply #17 on: August 25, 2012, 04:27:49 PM »
    Ok. We can do some cleanup.

    Download this program and run it Uninstall ComboFix .It will remove ComboFix for you

    ************************************************
    To set a new Restore Point.

    Click Start button , click Control Panel, click System and Maintenance, and then clicking System. In the left pane, click System Protection.  If you are prompted for an administrator password or confirmation, type the password or provide confirmation. To turn off System Protection for a hard disk, clear the check box next to the disk, and then click OK. Reboot to Normal Mode.
    Click the Start button , click Control Panel, click System and Maintenance, and then click System.
    In the left pane, click System Protection.  If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
    To turn on System Protection for a hard disk, select the check box next to the disk, and then click OK.
    This will give you a new, clean Restore Point.
    ********************************************************
    Clean out your temporary internet files and temp files.

    Download TFC by OldTimer to your desktop.

    Double-click TFC.exe to run it.

    Note: If you are running on Vista, right-click on the file and choose Run As Administrator

    TFC will close all programs when run, so make sure you have saved all your work before you begin.

    * Click the Start button to begin the cleaning process.
    * Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
    * Please let TFC run uninterrupted until it is finished.

    Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
    *********************************************************
    Use the Secunia Software Inspector to check for out of date software.

    •Click Start Now

    •Check the box next to Enable thorough system inspection.

    •Click Start

    •Allow the scan to finish and scroll down to see if any updates are needed.
    •Update anything listed.
    .
    ----------

    Go to Microsoft Windows Update and get all critical updates.

    ----------

    I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

    SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
    * Using SpywareBlaster to protect your computer from Spyware and Malware
    * If you don't know what ActiveX controls are, see here

    Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

    Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

    Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
    Safe Surfing!
    Intel(R) Core (TM) i3-3220 CPU 3.30 GHz 8.0 Gb RAM Windows 8.1 with a dual boot to Windows XP  Home with SP3, Comodo  with Windows Firewall & Windows Defender

    tilman_berlin

      Topic Starter


      Rookie

      • Experience: Beginner
      • OS: Unknown
      Re: ZeuS
      « Reply #18 on: August 26, 2012, 09:58:56 AM »
      Done! Thanks for your help, Dave.

      I only have one more minor thing:
      - Secunia Software Inspector keeps telling me that my Java and Adobe Flash Player are not up-to-date, although I downloaded the newest versions and restarted the computer. Furthermore, the update programs Secunia offers (right below "Update instructions") seem not to work. When I open them nothing happens. I got the newest versions now from the official Java- and Flash Player-websites. Still Secunia says, they are not up-todate

      - can I be sure that what we removed from my computer was really ZeuS? Can I use my computer for banking and the like without concern?

      Thank you again for your help. You already saved my digital sit-upons twice!

      Tilman

      SuperDave

      • Malware Removal Specialist
      • Moderator


      • Genius
      • Thanked: 991
      • Certifications: List
      • Experience: Expert
      • OS: Windows 8
      Re: ZeuS
      « Reply #19 on: August 26, 2012, 06:25:14 PM »
      Quote
      Secunia Software Inspector keeps telling me that my Java and Adobe Flash Player are not up-to-date, although I downloaded the newest versions and restarted the computer. Furthermore, the update programs Secunia offers (right below "Update instructions") seem not to work. When I open them nothing happens. I got the newest versions now from the official Java- and Flash Player-websites. Still Secunia says, they are not up-todate.
      There could be parts of a previous version left which would prompt those messages. It is most important to keep your Windows OS and Java up-to-date. I did notice that you have this on your computer: C:\Users\user\AppData\Roaming\Pocomail\Attach\keygen.zip
      ==> Cracks & Keygens <==
      Crackware is illegal and certainly very dangerous for the safety of your computer.


      Quote
      can I be sure that what we removed from my computer was really ZeuS? Can I use my computer for banking and the like without concern?
      There were some infections that affected your MBR (Master Boot Record). If you want to use this computer for banking I would strongly  suggest a third-party firewall. I can be cumbersome at first to use but it will give added protection.

      Firewalls protect against hackers and malicious intruders.

      Remember only install ONE firewall

      1) Comodo Personal Firewall (Uncheck during installation "Install Comodo SafeSurf..", Make Comodo my default search provider" and "Make Comodo Search my homepage" and uncheck any HopSurf and/or Ask.com options if you choose this one)
      2) Online Armor
      3) Agnitum Outpost
      4) PC Tools Firewall Plus

      If you are using the built-in Windows XP firewall, it is not recommended as it does not block outgoing connections. This means that any malware on your computer is free to "phone home" for more instructions. Simply put, Windows XP contains a mediocre firewall. This firewall is NO replacement for a dedicated software solution. Remember to use only one firewall at the same time.

      You're welcome. I will lock this thread. If you need it re-opened, please send me a pm.
      Intel(R) Core (TM) i3-3220 CPU 3.30 GHz 8.0 Gb RAM Windows 8.1 with a dual boot to Windows XP  Home with SP3, Comodo  with Windows Firewall & Windows Defender