Page 3 of 3 FirstFirst 123
Results 21 to 26 of 26

Thread: Laflurla adware not yielding to Spybot

  1. #21
    Junior Member
    Join Date
    Nov 2014
    Location
    Oregon, Ohio (east suburb of Toledo in northwest Ohio)
    Posts
    19

    Default daily protection log

    Malwarebytes Anti-Malware
    www.malwarebytes.org


    Update, 11/20/2014 8:38:39 PM, SYSTEM, DEBORAH-PC, Manual, Rootkit Database, 2014.9.18.1, 2014.11.18.1,
    Update, 11/20/2014 8:38:44 PM, SYSTEM, DEBORAH-PC, Manual, Malware Database, 2014.9.19.5, 2014.11.20.9,
    Scan, 11/20/2014 10:23:26 PM, SYSTEM, DEBORAH-PC, Manual, Start:11/20/2014 8:38:57 PM, Duration:25 min 29 sec, Threat Scan, Completed, 0 Malware Detections, 5 Non-Malware Detections,

    (end)

  2. #22
    Junior Member
    Join Date
    Nov 2014
    Location
    Oregon, Ohio (east suburb of Toledo in northwest Ohio)
    Posts
    19

    Default panda cloud cleaner txt log

    Malware. REGKEY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM[DISABLEREGISTRYTOOLS]. Value: DISABLEREGISTRYTOOLS To be deleted.

    Malware. REGKEY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM[DISABLETASKMGR]. Value: DISABLETASKMGR To be deleted.

    Thanks
    BRZ

  3. #23
    Security Expert-Emeritus Dakeyras's Avatar
    Join Date
    Sep 2008
    Location
    The Tundra
    Posts
    1,173

    Default

    Hi.

    All appears fine and the detection from Panda is what is known as a false positive and no further action is required.

    Next:

    Congratulations your computer appears to be malware free!

    Now I have some tasks for your good self to carry out as part of a clean up process and some advice about online safety.

    Importance of Regular System Maintenance:

    I advice you read both of the below listed topics as this will go a long way to keeping your Computer performing well.

    Slow Computer/browser?

    Also so is this:

    What to do if your Computer is running slowly

    Clean up with OTL:

    • Right-click OTL and select Run as Administrator to start the program.
    • Close all other programs apart from OTL as this step will require a reboot.
    • On the OTL main screen, depress the CleanUp button.
    • Say Yes to the prompt and then allow the program to reboot your computer.

    The above process should clean up and remove the vast majority of scanners used and logs created etc.

    Any left over merely delete yourself and empty the Recycle Bin.

    Reset the System Restore points:

    Create a new, clean System Restore point:-

    • Right click on Computer and select Properties >> System protection >> Create....
    • Give this restore point a descriptive name and click Create.
    • When the new restore point is created click on OK >> close the System Properties window.

    Note: Do not clear infected/old System Restore points before creating a new System Restore point first!

    Flush Old System Restore points:-

    • Click on Start(Windows 7 Orb) >> All Programs >> Accessories >> System Tools >> right-click on Disk Cleanup and select Run as Administrator.
    • Select the system drive, C >> OK.
    • Ensure the boxes for Recycle Bin, Temporary Files and Temporary Internet Files are checked, you can choose to check other boxes if you wish but they are not required.
    • Click on Clean up system files >> Select the system drive, C >> OK.
    • Now click on the More Options tab.
    • Under:-
    System Restore and Shadow Copies
    • Click on Clean up... >> Delete >> OK >> Delete Files.

    Now some advice for on-line safety:

    Malwarebyte's Anti-Malware:

    This is a excellent application and I advise you keep this installed. Check for updates and run a scan at least once per week.

    Other installed security software:

    Your presently installed security application, Norton Internet Security automatically checks for updates and downloads/installs them with every system reboot and or periodically if the machine is left running providing a internet connection is active.

    I advise you also run a complete scan with this also at least once per week.

    Registry Backup:

    Tweaking.com - Registry Backup, I advise you keep this installed as a means to keep a complete backup of your registry and restore it when needed.

    Myself I would actually create a new back up once per week as this along with System Restore may prove to be invaluable if something unforeseen occurs!

    Note: A tutorial for Registry Backup explaining the various features be viewed here.

    Further reading/resources:

    This is a very helpful/useful set of advice from Microsoft: Microsoft Safety & Security Center

    As is this: Computer Security - a short guide to staying safer online

    And these are worth reading also: Understanding Windows Firewall settings & Securing Your Router

    Keep Your System Updated:

    Microsoft releases patches for Windows and other products regularly:

    • Click on Start(Windows 7 Orb) >> All Programs >> Windows Update.
    • In the navigation pane, click Check for updates.
    • After Windows Update has finished checking for updates, click View available updates.
    • Click to select the check box for any found, then click Install.
    • When completed Reboot(restart) your computer if not prompted to do so.

    Plus check Automatic Updates is enabled.

    Check your third party software is up to date:

    Via the FileHippo App Manager...

    As certain software such as Adobe related for example when out of date can be used a s conduit for malware to gain a foothold.

    Be careful when opening attachments and downloading files:

    1 - Never open email attachments, not even if they are from someone you know. If you need to open them, scan them with your antivirus program before opening.

    2 - Never open emails from unknown senders.

    4 - Beware of emails that warn about viruses that are spreading, especially those from antivirus vendors. These email addresses can be easily spoofed. Check the antivirus vendor websites to be sure.

    5 - Be careful of what you download. Only download files from known sources. Also, avoid cracked programs. If you need a particular program that costs too much for you, try finding free alternatives on FileHippo or MajorGeeks

    Stop malicious scripts:

    Windows by default allow scripts (which is VBScript and JavaScript) to run and some of these scripts are malicious. Use Noscript by Symantec or Script Defender by AnalogX to handle these scripts.

    Avoid Peer to Peer software:

    P2P may be a great way to get lots of seemingly freeware, but it is a great way to get infected as well. There's no way to tell if the file being shared is infected. Worse still, some worms spread via P2P networks, infecting you as well. It's really important, if you value your PC at all, to stay away from P2P file sharing programs, like utorrent, Bittorrent, Azureus, Limewire, Vuze. Criminals have "planted" thousands upon thousands of infections in the "free" shared files. Virtually all of these recent infections will compromise your Security, and some can turn your machine into a useless "doorstop".

    I will further add; P2P software has the ability to create a direct conduit onto your computer, their security measures are easily circumvented, and Malware writers are increasingly exploiting them to spread their infected dross onto your computer. Further to that, if your P2P software is not configured correctly you may be sharing more files than you realise. There have been cases where people's address books, passwords, other personal, private and financial details have been exposed to the file sharing network by a badly configured P2P applications

    My friendly advice is to avoid these types of software applications.

    Consider the below extra/layered security for your machine:

    Custom Host File:

    A Hosts file is like a phone book. You look up someone's name in the phone book before calling him/her. Similarly, your computer will look up the website's IP address before you can view the website.

    Hosts file will replace your current Hosts file with another one containing well-known advertisement sites, spyware sites and other bad sites. This new Hosts file will protect you by re-directing these bad sites to 127.0.0.1.

    Here are some Hosts files:


    Only use one of the above!

    CryptoPrevent Tool:

    How to prevent your computer from becoming infected by CryptoLocker

    WinPatrol:

    WinPatrol alerts you about possible system hijacks, malware attacks and critical changes made to your computer without your permission.

    Download it from here.

    You can find information about how WinPatrol works here.

    Next:

    Any questions? Feel free to ask, if not stay safe!
    Mammuthus Hibernian Scouserus, member of ASAP and UNITE.

  4. #24
    Junior Member
    Join Date
    Nov 2014
    Location
    Oregon, Ohio (east suburb of Toledo in northwest Ohio)
    Posts
    19

    Default clean machine

    Thanks very much for your continued assistance and your sage advice. Now that my grown children have their own computers this one will be less likely to be re-infected. I will follow your suggestions to maintain the health of this and future machines.
    Sincerely,
    BRZ

  5. #25
    Security Expert-Emeritus Dakeyras's Avatar
    Join Date
    Sep 2008
    Location
    The Tundra
    Posts
    1,173

    Default

    Acknowledged and you're most welcome!
    Mammuthus Hibernian Scouserus, member of ASAP and UNITE.

  6. #26
    Security Expert-Emeritus Dakeyras's Avatar
    Join Date
    Sep 2008
    Location
    The Tundra
    Posts
    1,173

    Default

    Since this issue appears to be resolved ... this Topic has been closed. Glad I could help.

    If it has been three days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh set of both awsMBR and FRST logs plus a link to your previous thread.

    If it has been less than three days since your last response and you need the thread re-opened, please send a private message (pm). A valid, working link to the closed topic is required.
    Mammuthus Hibernian Scouserus, member of ASAP and UNITE.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •