I cannot restore.

TH40229 · Dec 15, 2011

Jacee said:
No, MalwarebytesAnti-Malware looks like this

Malwarebytes Anti-Malware 1.51.2 - Screenshot 1 - FileHippo.com

Should I uninstall Aro 2011 and install Microsoft security essentials before or after I run combofix? I just downloaded a fresh copy of combofix and have it saved to my desktop.

Jacee · Dec 15, 2011

uninstall Aro 2011!! Run Combofix

TH40229 · Dec 15, 2011

Jacee said:
uninstall Aro 2011!! Run Combofix

Doing it now. I will post back with the combofix log results as soon as it's done. Thank u so much!!

TH40229 · Dec 15, 2011

Ok Combofix has finished. Before Combofix started scanning it said Webroot may interfere with the scan but I uninstalled Webroot. I just now tried to search for it in the search bar and nothing came up. Im not sure what thats about. Other than that everything seems to have went ok. The process didnt take long as I expected. Here is the combofix log.

Jacee · Dec 15, 2011

It looks like you possibly got infected from an e-mail c:\Windows\SysWOW64\s6ovg.com(Trojan.Email)

Please download TFC by Old Timer TFC - Temp File Cleaner by OldTimer - Geeks to Go Forums and save it to your desktop.
Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista/Windows 7 right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.

Next, I'd like you to scan your machine with ESET OnlineScan

Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
Click the

button.
For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
1. Click on
  
  to download the ESET Smart Installer. Save it to your desktop.
2. Double click on the
  
  icon on your desktop.
Check
Click the

button.
Accept any security warnings from your browser.
Check
Push the Start button.
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
When the scan completes, push
Push

, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
Push the

button.
Push

TH40229 · Dec 16, 2011

I forgot to hit finish. Everything was finished though. I hope thats ok?

Jacee · Dec 16, 2011

You're doing good!

Now, download MalwarebyesAnti-Malware (click Download Now button) ... don't click the 'purchase' link. This is free, unless you want to activate/enable real time protection.
Save it to your desktop
* Right click mbam-setup.exe, to run as Administrator, and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform full scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad. Please save it to a convenient location. Copy and Paste that log into your next reply.

TH40229 · Dec 16, 2011

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Database version: 8382
Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421
12/16/2011 6:05:20 PM
mbam-log-2011-12-16 (18-05-20).txt
Scan type: Full scan (C:\|)
Objects scanned: 416050
Time elapsed: 1 hour(s), 14 minute(s), 19 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)

Jacee · Dec 16, 2011

Wh00t --- You're look'n good!!! :party:

:Uninstall ComboFix:

turn off all active protection software
push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
please copy and past the following into the box ComboFix /Uninstall and click OK.
Note the space between the X and the /Uninstall, it needs to be there.

:Make your Internet Explorer more secure:

From within Internet Explorer click on the Tools menu and then click on Options.
Click once on the Security tab
Click once on the Internet icon so it becomes highlighted.
Click once on the Custom Level button.
Change the Download signed ActiveX controls to Prompt
Change the Download unsigned ActiveX controls to Disable
Change the Initialise and script ActiveX controls not marked as safe to Disable
Change the Installation of desktop items to Prompt
Change the Launching programs and files in an IFRAME to Prompt
When all these settings have been made, click on the OK button.
If it prompts you as to whether or not you want to save the settings, press the Yes button.
Next press the Apply button and then the OK to exit the Internet Properties page.

:Make Firefox more secure:

please visit this page to explain how to make Firefox more secure - How to Secure Firefox

Make sure your applications have all of their updates
It is also possible for other programs on your computer to have security vulnerability that can allow malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities. You can check these by visiting Secunia Software Inspector

:Turn On Automatic Updates:

Turn On Automatic Updates
1. Click Start, click Run, type sysdm.cpl, and then press ENTER.
2. Click the Automatic Updates tab, and then click to select one of the following options. We recommend that you select the Automatic (recommended) Automatically download recommended updates for my computer and install them
If you click this setting, click to select the day and time for scheduled updates to occur. You can schedule Automatic Updates for any time of day. Remember, your computer must be on at the scheduled time for updates to be installed.
After you set this option, Windows recognizes when you are online and uses your Internet connection to find updates on the Windows Update Web site or on the Microsoft Update Web site that apply to your computer. Updates are downloaded automatically in the background, and you are not notified or interrupted during this process. An icon appears in the notification area of your taskbar when the updates are being downloaded. You can point to the icon to view the download status.
To pause or to resume the download, right-click the icon, and then click Pause or Resume. When the download is completed, another message appears in the notification area so that you can review the updates that are scheduled for installation.
If you choose not to install at that time, Windows starts the installation on your set schedule.
or visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer.
If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

:antispyware programs:

I would recommend the download and install of some or all of the following programs (all free), and update them regularly:

WinPatrol As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.

Spyware Blaster - By altering your registry, this program stops harmful sites from installing things like ActiveX Controls on your machines. I have this on all my computers!
Malwarebytes' Anti-Malware Malwarebytes' Anti-Malware is a new and powerful anti-malware tool. It is

Here is some great reading about how to be safer online:

PC Safety and Security - What Do I Need? Tech Support Forum
and
COMPUTER SECURITY - a short guide to staying safer online from Malware Removal

Let me know how your computer is running now and if you've followed through with my instructions

TH40229 · Dec 23, 2011

Jacee said:
Wh00t --- You're look'n good!!!

:Uninstall ComboFix:

turn off all active protection software

push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)

please copy and past the following into the box ComboFix /Uninstall and click OK.

Note the space between the X and the /Uninstall, it needs to be there.

:Make your Internet Explorer more secure:

From within Internet Explorer click on the Tools menu and then click on Options.

Click once on the Security tab

Click once on the Internet icon so it becomes highlighted.

Click once on the Custom Level button.

Change the Download signed ActiveX controls to Prompt

Change the Download unsigned ActiveX controls to Disable

Change the Initialise and script ActiveX controls not marked as safe to Disable

Change the Installation of desktop items to Prompt

Change the Launching programs and files in an IFRAME to Prompt

When all these settings have been made, click on the OK button.

If it prompts you as to whether or not you want to save the settings, press the Yes button.
Next press the Apply button and then the OK to exit the Internet Properties page.

:Make Firefox more secure:

please visit this page to explain how to make Firefox more secure - How to Secure Firefox

Make sure your applications have all of their updates
It is also possible for other programs on your computer to have security vulnerability that can allow malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities. You can check these by visiting Secunia Software Inspector

:Turn On Automatic Updates:

Turn On Automatic Updates
1. Click Start, click Run, type sysdm.cpl, and then press ENTER.

2. Click the Automatic Updates tab, and then click to select one of the following options. We recommend that you select the Automatic (recommended) Automatically download recommended updates for my computer and install them

If you click this setting, click to select the day and time for scheduled updates to occur. You can schedule Automatic Updates for any time of day. Remember, your computer must be on at the scheduled time for updates to be installed.

After you set this option, Windows recognizes when you are online and uses your Internet connection to find updates on the Windows Update Web site or on the Microsoft Update Web site that apply to your computer. Updates are downloaded automatically in the background, and you are not notified or interrupted during this process. An icon appears in the notification area of your taskbar when the updates are being downloaded. You can point to the icon to view the download status.

To pause or to resume the download, right-click the icon, and then click Pause or Resume. When the download is completed, another message appears in the notification area so that you can review the updates that are scheduled for installation.

If you choose not to install at that time, Windows starts the installation on your set schedule.
or visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer.

If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

:antispyware programs:

I would recommend the download and install of some or all of the following programs (all free), and update them regularly:

WinPatrol As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.

Spyware Blaster - By altering your registry, this program stops harmful sites from installing things like ActiveX Controls on your machines. I have this on all my computers!

Malwarebytes' Anti-Malware Malwarebytes' Anti-Malware is a new and powerful anti-malware tool. It is

Here is some great reading about how to be safer online:

PC Safety and Security - What Do I Need? Tech Support Forum
and
COMPUTER SECURITY - a short guide to staying safer online from Malware Removal

Let me know how your computer is running now and if you've followed through with my instructions

Im finally back. My daughter was born Monday and we was just released today.

I followed all of your instructions and the computer seems to be running just fine. So has all of the viruses been removed from my computer?

I really appreciate all the help guys!!:D

Jacee · Dec 24, 2011

Oh my gosh! Congratulations and welcome to the world baby girl TH40229 :D

TH40229 · Dec 27, 2011

Thank u

So what should I do when my malwarebytes free trial runs out? I downloaded the other programs that you recommended. Should they be enough?

richc46 · Dec 27, 2011

As many other members, use the free Malwarbytes at least once a week to prevent future problems. Good luck and a great New Year to you.

TH40229 · Dec 28, 2011

richc46 said:
As many other members, use the free Malwarbytes at least once a week to prevent future problems. Good luck and a great New Year to you.

How can I use it once a week if the free trial is about to expire in 3 days?

Yard Dog · Dec 28, 2011

Mbam will , from my understanding, at the end of the 30 day free trial , which was Real Time protection, at the end of that trial , will revert to on demand and cease to protect you in Real Time.
In other words, for it to function, you will have to update it and then scan with it, as it will not update itself nor will it be running to block threats.
So, using a layered approach to your security, your anti virus, if you are using MSE , ( my choice ) in addition , use Mbam once a week or so to ensure that nothing has been missed.
If you are having any issues with this , then simply uninstall it, and then reinstall it. Just get free version .

TH40229 · Jan 5, 2012

Yard Dog said:
Mbam will , from my understanding, at the end of the 30 day free trial , which was Real Time protection, at the end of that trial , will revert to on demand and cease to protect you in Real Time.
In other words, for it to function, you will have to update it and then scan with it, as it will not update itself nor will it be running to block threats.
So, using a layered approach to your security, your anti virus, if you are using MSE , ( my choice ) in addition , use Mbam once a week or so to ensure that nothing has been missed.
If you are having any issues with this , then simply uninstall it, and then reinstall it. Just get free version .

Oh ok I didn't know I could still continue to scan after the trial ran out. Thanks for the info! Should I go ahead and install MSE also?

So what if I uninstalled Mbam then reinstalled it would my viruses reappear and could I get real time protection with the reinstall?

Yard Dog · Jan 5, 2012

What anti virus are you currently using ? Whatever it is, to use MSE , you would want to download it, Uninstall the other one you have using its uninstaller , note: all antivirus programs will normally require more than just a remove / uninstall in programs , they have their own uninstaller in addition to the Windows uninstaller. Post back what you currently use and i will advise further.
As far as Mbam goes, they recently have been doing a 30 day free trial of the paid version, as i said, i believe it will nag you to purchase it , but , to my knowledge just stops full time protection and has to be manually updated and set to scan by user , whereas before with the free trial , it auto updated and performed as you had set it to.

I cannot restore.

My Computer

Security

My Computer

My Computer

Attachments

My Computer

Security

My Computer

Attachments

My Computer

Security

My Computer

Attachments

My Computer

Security

My Computer

My Computer

Security

My Computer

My Computer

My Computer

My Computer

My Computer

My Computer

My Computer