Got rid of redirected hosts but.....

Status
Not open for further replies.
RE: how's your computer now?

Dear Oldman,
The computer is working just as fine as the last time.
Though starting up internet and a few other (little) apps. makes the processor go wild to 100% and efter about 45 sec.
it cools down a bit to 70% and down.
That was not before this malware, but it is much better now that the malware is removed:laugh:
Thanks again for ur help, time and effort.

Regards,

Erik.
 
oldman960 said:
Hi Jointducky,

Did you attempt to install Avast recently?
Click to expand...

Dear Oldman,
I didn't attempt to install Avast, but i did installed it.
After i ran the scan it saw infections, however removing them made me purchase a license.
Because i rather not pay for a program im not acquainted with, i uninstalled it with REVO Uninstaller on safe removal.
Afterwards i deleted the register files that were left from that program. (Revo Uninstaller automaticly scans after uninstalling for register files that left behind and high lights them for a safe removal).

Regards,
Erik.
 
Hi Jointducky,

I don't know where you got the version of Avast that you installed as Avast does not require a "fee" to remove anything. The makers of Avast provide a free version that does pretty much the same as the paid for version. The only requirement for the free version is you register it. Again that is free.

There is still some of Avast in your logs. Revo uninstaller may have missed a bit.

Download aswclear.exe to your desktop
  • Start Windows in Safe Mode
  • Open (execute) the uninstall utility
  • When it opens there will be a small white box, make sure it is set to C:\Documents and Settings\All Users\Application Data\Alwil Software

    If you installed avast! in a different folder than the default, browse for it. (Note: Be careful! The content of any folder you choose will be deleted!)
  • Click REMOVE
  • Restart your computer

Next, Double click on OTL.exe
  • Under the Custom Scans/Fixes box at the bottom, paste in the following
  • Do Not copy the word CODE
  • please note the fix starts with the :
Code: 
:Services

:Files
C:\WINDOWS\avastSS.scr
C:\Documents and Settings\All Users\Application Data\Alwil Software

Then click the Run Fix button at the top
  • Let the program run unhindered
 
OTL Fix log

========== FILES ==========
C:\WINDOWS\avastSS.scr moved successfully.
File\Folder C:\Documents and Settings\All Users\Application Data\Alwil Software not found.

OTL by OldTimer - Version 3.2.22.3 log created on 03142011_201021
 
Hi Jointducky,

From your desktop, please delete, if present
  • any notepads/logs that we created
  • dds.scr
  • aswclear.exe

Next

* Create a new restore point

You must be logged on to an administrator account
  • Go to Start - All Programs - Accessories - System Tools - System Restore.
  • Click Create a restore point, and then click Next.
  • In the text box labeled Restore Point Description, type a name for this restore point
  • click create
* Remove old restore points

  • Go to Start - All Programs - Accessories - system tools.
  • Launch the Disk Cleanup tool and let it run.
  • When it finishes a box with tabs will appear, select the more options tab.
  • On this tab you will find a section for System Restore.
  • If you press the Clean Up button for that section, Windows will delete all restore points except for the most recent one.


Next

Open OTL then click the Clean Up button. You may get prompted by your firewall that OTL wants to contact the internet - allow this. A cleanup.txt will be downloaded, a message dialog will ask you if you want to proceed with the cleanup process, click Yes. This will do some clean up tasks and delete some of the tools you have downloaded plus itself.


I suggest you keep MBAM. Keep it updated and use it regularly.

ESET online scan can be removed via add/remove programs.

Don't forget to re-enable Teatimer.


Some Recommendations and prevention tips

Basic security consists of 1 antivirus program, 1 resident antispyware program, 1 on demand antispyware program and a firewall. Just add a firewall to what you have.

* If you are behind a router Windows firewall should be fine. Otherwise a 3rd party firewall with outbound monitoring is recommended.

Click FIREWALL for links and tutorials to good, free and paid for firewalls. (Note: Zone Alarm is becoming bloatware)


-Secure your Internet Explorer

From within Internet Explorer click on the Tools menu and then click on Options.
  • Click once on the Security tab
  • Click once on the Internet icon so it becomes highlighted.
  • Click once on the Custom Level button.
  • Change the Download signed ActiveX controls to Prompt
  • Change the Download unsigned ActiveX controls to Disable
  • Change the Initialize and script ActiveX controls not marked as safe to Disable
  • Change the Installation of desktop items to Prompt
  • Change the Launching programs and files in an IFRAME to Prompt
  • Change the Navigate sub-frames across different domains to Prompt
  • When all these settings have been made, click on the OK button.
  • If it prompts you as to whether or not you want to save the settings, press the Yes button.
Next press the Apply button and then the OK to exit the Internet Properties page.


- Keeping your Windows up-to-date is crucial to your computer's security. Please go to the Windows Update Site (using Internet Explorer) and download and install all critical updates on a regular basis


- Make sure you have reset Automatic Updates to your chosen optionClick your start button > Control Panel > System


- Keep your antivirus program updated, as well as any other security programs you have.


-More tips and programs can be found HERE


- You may also want to read this article By Tony Klein
http://www.freedomlist.com/forum/viewtopic.php?t=22879

Please post back if you have any problems.

Take care
 
Status
Not open for further replies.
Back
Top