Help2Go - View Single Post

JohnB151 · 06-18-2009, 09:31 AM

Hi,

There is some malware in your log, so let's try to get rid of it.

You aren't running Firewall Software. Please download and install one of them first!

Use a Firewall - Using a Firewall on your computer can be very important. Without a firewall your computer is susceptible to being hacked and taken over. There are some different situations you can be in where a third-party firewall may or may not be a good addition to your system:

If you are not using Windows XP or Vista, but an older version I recommend you to use a firewall.
If you are using Windows XP or Vista, but are on dial-up I recommend you to use a firewall.
If you are using Windows XP or Vista and are using broadband, but are not experienced in using firewalls and getting the choice to allow or disallow things I recommend you to use Windows Firewall.
If you are using Windows XP or Vista, are using broadband and experienced, I recommend you to disable Windows Firewall (as it is not perfect) and get a third-party firewall.

Here are some firewalls which are free for personal use and most used:
Kerio Personal Firewall (Free version after 30 days)
Online Armor Free

Or you could buy their paid version online or in a shop nearby:
Kerio Personal Firewall (Continue paid version after 30 days)
Online Armor or Online Armor AV+ with Anti-Virus included

As you did this, we can begin with the fix.

Step 1: Disable SpySweeper
Please disable SpySweeper as it may interfere with the fix.

Double click on Webroot Spysweeper icon near the clock (it's a yellow shield) .
Click on Shields button on the left.
Select the Web Browser tab. Uncheck all the boxes there.
Select the Network tab. Under Critical Network Shields, uncheck Internet Communication box.
Select the Windows System tab. Uncheck all the boxes there.
Select the Startup Programs tab. Uncheck Startup Items box.
Click on the Options button on the left.
Select the Shields tab.
Uncheck Protect against viruses box under Antivirus Protection.
Close Webroot Spysweeper.

Once your log is clean you can re-enable those settings in SpySweeper.

Step 2: Download and Run ComboFix
Please visit this webpage for download links, and instructions for running the tool:
A guide and tutorial on using ComboFix

Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix. For information on how to disable your anti virus program please see this:
How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

If you have Avast as anti virus an additional thing has to be changed to make ComboFix work properly:

Go on with the ComboFix guide when it opens its log please post it together with a new HijackThis log.

Remember that the ComboFix log is saved here: C:\ComboFix.txt

Regards,
John.

06-18-2009, 09:31 AM	#4 (permalink)
JohnB151 Forum Moderator Helpful Member Join Date: Mar 2009 Location: The Netherlands Posts: 822 Points: 36	Hi, There is some malware in your log, so let's try to get rid of it. You aren't running Firewall Software. Please download and install one of them first! Use a Firewall - Using a Firewall on your computer can be very important. Without a firewall your computer is susceptible to being hacked and taken over. There are some different situations you can be in where a third-party firewall may or may not be a good addition to your system: If you are not using Windows XP or Vista, but an older version I recommend you to use a firewall. If you are using Windows XP or Vista, but are on dial-up I recommend you to use a firewall. If you are using Windows XP or Vista and are using broadband, but are not experienced in using firewalls and getting the choice to allow or disallow things I recommend you to use Windows Firewall. If you are using Windows XP or Vista, are using broadband and experienced, I recommend you to disable Windows Firewall (as it is not perfect) and get a third-party firewall. Here are some firewalls which are free for personal use and most used: Kerio Personal Firewall (Free version after 30 days) Online Armor Free Or you could buy their paid version online or in a shop nearby: Kerio Personal Firewall (Continue paid version after 30 days) Online Armor or Online Armor AV+ with Anti-Virus included As you did this, we can begin with the fix. Step 1: Disable SpySweeper Please disable SpySweeper as it may interfere with the fix. Double click on Webroot Spysweeper icon near the clock (it's a yellow shield) . Click on Shields button on the left. Select the Web Browser tab. Uncheck all the boxes there. Select the Network tab. Under Critical Network Shields, uncheck Internet Communication box. Select the Windows System tab. Uncheck all the boxes there. Select the Startup Programs tab. Uncheck Startup Items box. Click on the Options button on the left. Select the Shields tab. Uncheck Protect against viruses box under Antivirus Protection. Close Webroot Spysweeper. Once your log is clean you can re-enable those settings in SpySweeper. Step 2: Download and Run ComboFix Please visit this webpage for download links, and instructions for running the tool: A guide and tutorial on using ComboFix Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix. For information on how to disable your anti virus program please see this: How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs If you have Avast as anti virus an additional thing has to be changed to make ComboFix work properly: Go on with the ComboFix guide when it opens its log please post it together with a new HijackThis log. Remember that the ComboFix log is saved here: C:\ComboFix.txt Regards, John. __________________ Trained by MalWare Removal Proud Member Of: Alliance of Security Analysis Professionals Unified Network of Instructors and Trained Eliminators