backdoor vulnerability

[johnha169]

Hey Dave, could you recommend another one because Eset online scanner stopped in the middle of the progress, the CPU used all the Usage so I stopped Eset

[SuperDave]

Scan your computer with Panda ActiveScan

* Once you are on the Panda site click the Scan your PC now button.
* A new window will open...click the Scan Now button.
* If it wants to install an ActiveX component allow it.
* It will start downloading the files it requires for the scan. (Note: It may take a couple of minutes)
* You may get a warning from Internet Explorer that Panda is ready to install, please allow it.
* The scan will begin. Please be patient as it can take an hour or more to complete.
* When the scan completes, if anything malicious is detected, click the Export to: button (looks like a little Notepad).
* Save the ActiveScan.txt to a convenient location like your desktop.
* Note: You do not need to select any of the Disinfect options. We will remove any threats manually.

* Post the contents of the ActiveScan report in your next reply.

[johnha169]

Hey Dave

Actually, do you have less time consuming program to run, if not I will try to run Panda later, Thanks

[SuperDave]

Run the F-Secure Online Scanner for Viruses, Spyware and Rootkits.

Note: This Scanner is for Internet Explorer Only!

•Click on Online Services and then Online Scanner
•Accept the License Agreement.
•Once the ActiveX installs,Click Full System Scan
•Once the download completes,the scan will begin automatically.
•The scan will take some time to finish,so please be patient.
•When the scan completes, click the Automatic cleaning (recommended) button.

•Click the Show Report button and Copy&Paste the entire report in your next reply.

[johnha169]

Hi Dave, sorry for my late response,  since my internet connection is so slow, it will take more than few  hours to complete the scanning, so do you have any better method? could I skip the online scanning step?

My computer speed seem work a little better now but it always show up a window saying something like my memory - 000000000, (I remember what exactly that was),  is it a problem or I simply need to cleanup and defragment of PC, thanks

[SuperDave]

could I skip the online scanning step?

The on-line scan is one of the most important scans to ensure your computer is clean. I would appreciate it if you could run it. Start the scan and go watch a movie.lol.

My computer speed seem work a little better now but it always show up a window saying something like my memory - 000000000, (I remember what exactly that was),  is it a problem or I simply need to cleanup and defragment of PC, thanks

The next time this happens, please give me a screenprint. A cleanup and a defrag wouldn't hurt.
How to post screenshots or images

[johnha169]

Happy New Year Dave

I have included the file reporting error on my pc below

Here is the report from Panda Cloud Cleaner, is it the correct one?

Malware. FILE: C:\DOCUMENTS AND SETTINGS\NONAME\LOCAL SETTINGS\TEMP\COOKIES\DR3XSW4M.TXT to be deleted.

Malware. FILE: C:\PROGRAM FILES\TEXTWARE\QUICKFIND\PLUGINS\IEHELP.DLL to be deleted.

Malware. REGKEY: HKCU\Software\Classes\CLSID\{C08DF07A-3E49-4E25-9AB0-D3882835F153}. Key to be deleted.

Malware. REGKEY: HKLM\Software\Classes\CLSID\{C08DF07A-3E49-4E25-9AB0-D3882835F153}. Key to be deleted.

Malware. REGKEY: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C08DF07A-3E49-4E25-9AB0-D3882835F153}. Key to be deleted.

Malware. FILE: C:\DOCUMENTS AND SETTINGS\NONAME\LOCAL SETTINGS\TEMP\COOKIES\JWA3P2KA.TXT to be deleted.



[year+ old attachment deleted by admin]

[SuperDave]

This should fix that popup problem.
Were you able to run any of the on-line scanners?

[johnha169]

Hey Dave, the "This" link does't work

I thought the Panda Cloud Cleaner is an online scanner, but anyway, I'll try Eset again and see whether it work now, cheers

[johnha169]

Hey, I think I am unable to run online scanner, I have tried Eset again, doesnt work and F-secure, doesnt seem to download the file, so is there any other scanner? thanks

[SuperDave]

Sorry, please try this one

[johnha169]

Hey, Dave, I think I should stop here and you have helped me a lot. I believe I cannot run any online scanner due to my slow computer and slow internet. Well, I am really appreciated your time in helping me. Thank you very much

[SuperDave]

Ok. Let's do some cleanup and we'll be finished.

Download this program and run it Uninstall ComboFix .It will remove ComboFix for you.

**********************************************
To turn off Windows XP System Restore:

NOTE: These instructions assume that you are using the default Windows XP Start Menu and have not changed to the Classic Start menu. To re-enable the default menu, right-click Start, click Properties, click Start menu (not Classic) and then click OK.

1. Click Start.
2. Right-click the My Computer icon, and then click Properties.
3. Click the System Restore tab.
4. Check "Turn off System Restore" or "Turn off System Restore on all drives"
5. Click Apply.
6.  When turning off System Restore, the existing restore points will be deleted. Click Yes to do this.
7. Click OK.
8. Restart the computer and follow the instructions in the next section to turn on System Restore.

To turn on Windows XP System Restore:

1. Click Start.
2. Right-click My Computer, and then click Properties.
3. Click the System Restore tab.
4. Uncheck "Turn off System Restore" or "Turn off System Restore on all drives."
5. Click Apply, and then click OK.
********************************************
Click Start> Computer> right click the C Drive and choose Properties> enter
Click Disk Cleanup from there.



Click OK on the Disk Cleanup Screen.
Click Yes on the Confirmation screen.



This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)
********************************************
Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing and Happy New Year!

[johnha169]

hey Dave, sorry for the late reply, every thing have been done and thanks again for ya help.

[SuperDave]

You're welcome. I will lock this thread. If you need it re-opened, please send me a pm.