Software > Computer viruses and spyware
Help! Fatal System Error when trying to rid malware
sjn2009:
It's running ok from what I can tell, and the desktop is finally showing again instead of that annoying white screen.
evilfantasy:
[*] Click START then RUN
[*] Now type Combofix /u in the runbox
[*] Make sure there's a space between Combofix and /u
[*] Then hit Enter.[/list]
[*] The above procedure will:
[*] Delete the following:
[*] ComboFix and its associated files and folders.
[*] Reset the clock settings.
[*] Hide file extensions, if required.
[*] Hide System/Hidden files, if required.
[*] Set a new, clean Restore Point.[/list]
----------
Download ATF Cleaner by Atribune to your Desktop.
Alternate download link
Note: Vista users must use Run As Administrator
[*]Under Main: Select Files to Delete choose: Select All.
[*]Click the Empty Selected button.
[*]If you use Firefox browser click Firefox at the top and choose: Select All
[*]Click the Empty Selected button.
If you would like to keep your saved passwords click No at the prompt.
[*]If you use Opera browser click Opera at the top and choose: Select All
[*]Click the Empty Selected button.
If you would like to keep your saved passwords click No at the prompt.
[*]Click Exit on the Main menu to close the program.[/list]
Note that your system will run slower for a reboot or two after having used this tool so don't panic.
----------
Download OTCleanIt.exe and save it to your Desktop.
[*]Double-click OTCleanIt.exe.
[*]Click the CleanUp! button.
[*]Select Yes when the "Begin cleanup Process?" prompt appears.
[*]If you are prompted to Reboot during the cleanup, select Yes.
[*]The tool will delete itself once it finishes, if not delete it yourself.[/list]
.
Important: Restart the computer before continuing.
----------
Run the Kaspersky Online Scanner
In Microsoft Windows Vista, you must open the Web browser using the Run as Administrator command. From the Desktop right click the icon to open the browser and choose Run as Administrator.
[*]Click on SCAN NOW
[*]Click Accept.
[*] The program will then begin downloading the latest definition files.
[*] Once the files have been downloaded locate the Scan Settings and have it scan My Computer.
[*]The scan will take a while, so be patient and let it finish.[/list]
When the scan is done, in the Scan is complete window, any infection is displayed.
There is no option to clean/disinfect, however, we need to analyze the information on the report.
To obtain the report:
Click on: Save Report As[*] Next, in the Save as prompt, Save in area, select: Desktop.
[*] In the File name area use KScan, or something similar.
[*] In Save as type: click the drop arrow and select: Text file [*.txt]
[*] Then, click: Save[/list]
Copy and paste the Kaspersky Online Scanner Report in your next reply.
Note for Internet Explorer 7 users: If at any time you have trouble viewing the accept button of the license, click on the Zoom tool located at the bottom right of the IE window and set the zoom to 75%. Once the license is accepted, reset to 100%.
sjn2009:
Here's the log
[attachment deleted by admin]
evilfantasy:
Looks good :)
Use the Secunia Software Inspector to check for out of date software.
[*]Click Start Now
[*]Check the box next to Enable thorough system inspection.
[*]Click Start
[*]Allow the scan to finish and scroll down to see if any updates are needed.
[*]Update anything listed.[/list]
.
----------
Go to Microsoft Windows Update and get all critical updates.
----------
Here are some great FREE tools to help you keep from getting infected again. These tools use little or no resources so won't slow down your PC.
Concerned about Browser Security? Consider using Mozilla Firefox. With more than 15,000 improvements, Firefox 3 is faster, safer and smarter than ever before.
For Internet Explorer 7 users there is IE7Pro. IE7Pro is a must have add-on for Internet Explorer, which includes a lot of features and tweaks to make your IE friendlier, more useful, more secure and customizable.
To prevent unknown applications from being installed on your computer install WinPatrol 2008
* Using Winpatrol to protect your computer from malicious software
I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.
SpywareBlaster - Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here
Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.
Also see Slow Computer? It May Not Be Malware for free cleaning/maintenance tools to help keep your computer running smooth.
sjn2009:
I was scanning with http://secunia.com and tried to update everything it suggested me to. All worked except for these:
--- Quote ---Microsoft Internet Explorer 7.x 7.0.6000.16762
This installation of Microsoft Internet Explorer 7.x is insecure and potentially exposes your system to security threats!
Your system does not have all security related patches from Microsoft installed. Please see list below for details about the missing patches.
Update Instructions:
Download via Microsoft Windows Update.
Missing KB Articles:
KB958215
Installed on Your System in:
C:\Program Files\Internet Explorer\IEXPLORE.EXE
--- End quote ---
--- Quote ---Macromedia Flash Player 6.x 6.0.79.0
This installation of Macromedia Flash Player 6.x is insecure and potentially exposes your system to security threats!
The detected version installed on your system is 6.0.79.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 6.0.88.0.
Update Instructions:
Apply updates.
Flash Player 9.0.45.0 and earlier (update to version 9.0.47.0):
http://www.adobe.com/go/getflash
Flash Player 9.0.45.0 and earlier - network distribution (update to version 9.0.47.0):
http://www.adobe.com/licensing/distribution
Flash CS3 Professional (update to version 9.0.47.0):
http://www.adobe.com/support/flashplayer/downloads.html
Flash Professional 8, Flash Basic (update to version 8.0.35.0):
http://www.adobe.com/support/flashplayer/downloads.html
Flex 2.0 (update to version 9.0.47.0):
http://www.stage.adobe.com/support/flashplayer/downloads.html#fp9
Flash Player version 7.0.70.0 for Linux and Solaris reportedly fixes vulnerability #2 for Opera and Konqueror browsers.
Installed on Your System in:
C:\WINDOWS\SYSTEM32\Macromed\Flash\flash.ocx
--- End quote ---
--- Quote ---Adobe Flash Player 9.x 9.0.45.0
This installation of Adobe Flash Player 9.x is insecure and potentially exposes your system to security threats!
The detected version installed on your system is 9.0.45.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 9.0.151.0.
Update Instructions:
Download
Installed on Your System in:
C:\WINDOWS\SYSTEM32\NPSWF32.dll
--- End quote ---
--- Quote ---Macromedia Flash Player 5.x 5.0.42.0
This installation of Macromedia Flash Player 5.x is insecure and potentially exposes your system to security threats!
The detected version installed on your system is 5.0.42.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 9.0.151.0.
Update Instructions:
Download
Installed on Your System in:
C:\I386\SWFLASH.OCX
--- End quote ---
--- Quote ---Macromedia Flash Player 6.x 6.0.80.0
This installation of Macromedia Flash Player 6.x is insecure and potentially exposes your system to security threats!
The detected version installed on your system is 6.0.80.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 6.0.88.0.
Update Instructions:
Apply updates.
Flash Player 9.0.45.0 and earlier (update to version 9.0.47.0):
http://www.adobe.com/go/getflash
Flash Player 9.0.45.0 and earlier - network distribution (update to version 9.0.47.0):
http://www.adobe.com/licensing/distribution
Flash CS3 Professional (update to version 9.0.47.0):
http://www.adobe.com/support/flashplayer/downloads.html
Flash Professional 8, Flash Basic (update to version 8.0.35.0):
http://www.adobe.com/support/flashplayer/downloads.html
Flex 2.0 (update to version 9.0.47.0):
http://www.stage.adobe.com/support/flashplayer/downloads.html#fp9
Flash Player version 7.0.70.0 for Linux and Solaris reportedly fixes vulnerability #2 for Opera and Konqueror browsers.
Installed on Your System in:
C:\Documents and Settings\All Users\Application Data\AOL Downloads\kw_setupSTUS\comps\aol\flasha.ocx
--- End quote ---
--- Quote ---Macromedia Flash Player 6.x 6.0.80.0
This installation of Macromedia Flash Player 6.x is insecure and potentially exposes your system to security threats!
The detected version installed on your system is 6.0.80.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 6.0.88.0.
Update Instructions:
Apply updates.
Flash Player 9.0.45.0 and earlier (update to version 9.0.47.0):
http://www.adobe.com/go/getflash
Flash Player 9.0.45.0 and earlier - network distribution (update to version 9.0.47.0):
http://www.adobe.com/licensing/distribution
Flash CS3 Professional (update to version 9.0.47.0):
http://www.adobe.com/support/flashplayer/downloads.html
Flash Professional 8, Flash Basic (update to version 8.0.35.0):
http://www.adobe.com/support/flashplayer/downloads.html
Flex 2.0 (update to version 9.0.47.0):
http://www.stage.adobe.com/support/flashplayer/downloads.html#fp9
Flash Player version 7.0.70.0 for Linux and Solaris reportedly fixes vulnerability #2 for Opera and Konqueror browsers.
Installed on Your System in:
C:\Program Files\Common Files\AOL\Flasha.ocx
--- End quote ---
--- Quote ---Macromedia Flash Player 7.x 7.0.19.0
This installation of Macromedia Flash Player 7.x is insecure and potentially exposes your system to security threats!
The detected version installed on your system is 7.0.19.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 9.0.151.0.
Update Instructions:
Download
Installed on Your System in:
C:\I386\Flash.ocx
--- End quote ---
--- Quote ---Microsoft Internet Explorer 7.x 7.0.5730.13
This installation of Microsoft Internet Explorer 7.x is insecure and potentially exposes your system to security threats!
Your system does not have all security related patches from Microsoft installed. Please see list below for details about the missing patches.
Update Instructions:
Download via Microsoft Windows Update.
Missing KB Articles:
KB958215
Installed on Your System in:
C:\09b60bb240d17280e8e0\iexplore.exe
--- End quote ---
-Everytime I downloaded what they tell me nothing happened or in the case of IE it wouldn't download because I'm not using IE... So I opened IE and tried to do that but I get a "connection problem" screen.
Any ideas?
-I tried to download Firefox, because I'm more comfortable with it than Opera or IE, and I get an error when trying to install. when choosing where I want to make the folder (C:Program etc) I get a popup saying "0"... This is different than the one I got 2 months ago when trying to install it and it said not enough Space available even though I still have 18.7 MB available.
-McAfee hasn't worked in 3 years on this computer. It came with AOL when I mom upgraded and it hasn't seemed to do anything other than give us problems. I tried to uninstall it and get her something simpler like AVG but there is no uninstall for it anywhere.
-How reliable is AOL Secuity Center? She doesn't say she has any problems with it but than again she doesn't DO anything with it. She just lets it scan and never updates. It says her saftey status is poor because of multiple firewalls and Virus Protection (AOL's) but I can't download the AOL virus protection and it suggests I uninstall Microsoft Firewall which just sounds fishy to me.
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version