Please copy this page to
Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out these instructions.
***************************************************
Please reboot your computer in
Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Use the up arrow key to highlight Safe Mode and press Enter.
5)
Login with your usual account.
--------------------------------------------------------------------
Go to Start->Run and type in
regedit and hit OK.
Open
notepad and copy/paste the entire text
in the quote box below: (don't forget to copy and paste REGEDIT4)
Quote:
REGEDIT4
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
|
Save the file as
"avast.reg".
Make sure to save it with the quotes. Choose to "Save type as - All Files"
It should look like this:
Double click on the
avast.reg file and choose
Yes to merge/add it to the registry. You may delete the file afterwards.
--------------------------------------------------------------------
Reboot into Normal Mode.
--------------------------------------------------------------------
Clear your Firefox cookies:
Launch Mozilla Firefox>Tools>Options
- Click the Privacy tab
Under 'Private Data', click 'Clear Now'
in the ensuing dialog box, ensure 'Cookies' is checked
Click 'Clear Private Data Now'
--------------------------------------------------------------------
The remainder of Panda's findings are tools that you'be used to try to clean your system, and items located in C:\System Volume Information\, which is where System Restore's cache is stored. Whatever is in there can't harm you unless you choose to perform a manual restore. Nevertheless, we shall be resetting/clearing the cache shortly.
Your logs are clean. If there aren't any more problems, please continue with these final instructions and helpful links:
Delete SmitfraudFix.exe as it's no longer needed and the tool is updated quite frequently.
------------------------------------------------------------------
The following procedure will clear out the backups and quarantines created by the fix. It will also reset your System Restore by flushing out previous restore points (which contain the infections) and create a new restore point.
Click Start > Run and copy/paste, or type the following bolded text into the Run box and click OK:
ComboFix /u
--------------------------------------------------------------------
To help protect your computer in the future I recommend that you get the following free programs if you do not already have them:
McAfee Site Advisor--free version. The folks there check out websites and based on their findings, rate it as Safe, Unknown, Caution, or Bad.
SpywareBlaster 4.0 to help prevent spyware from installing in the first place. Install & update SpywareBlaster with the latest definitions. After you have updated, click the button -
enable protection for all unprotected items.- It will block any bad ActiveX from running in Internet Explorer and Firefox if it's listed in their database (which you should update frequently). To view their database and list of restricted sites, launch the program and click on each of the tabs on the main display page.
IESpyAD Zoned Out to block access to malicious websites so you cannot be redirected to them from an infected site or email. This severely impairs attempts to infect your system as it basically prevents any downloads (Cookies etc) from the sites listed, although you will still be able to connect to the sites.
Update, and scan with your onboard Anti Malware and Anti Virus programs regularly. Without regular updates you
will not be protected when new malicious programs are released.
In light of your recent issue, I'm sure you'd like to avoid any future infections. Please take a look at these well written articles:
PC Safety and Security--What Do I Need?
Think Prevention
HOW DID I GET INFECTED IN THE FIRST PLACE? by Tony Klein
MAKING INTERNET EXPLORER SAFER
Understanding and Using Firewalls
**Be very wary with any security software that is advertised in popups or in other ways. They are not only usually of no use, but often have malware in them.
-----------------------------------------------------
Follow the list above and the potential for infection will reduce dramatically.
**Kindly respond one more time and let me know if we may consider this thread resolved.
__________________
Member of ASAP since 2005
Member of UNITE since 2006
"It is one life whether we spend it laughing or weeping." "Take the time to laugh--it is the music of the soul."