TechSpot

Another Win64 sirefef victim - constant auto reboot of PC

Solved
By MagsL
Jul 16, 2012
Topic Status:
Not open for further replies.
  1. MagsL

    MagsL TS Rookie Topic Starter Posts: 35

    Great it works now.
    Run everything as requested. Here is the text doc. Am I Ok to switch security back on again now?!

    Results of screen317's Security Check version 0.99.43
    Windows Vista Service Pack 2 x64 (UAC is enabled)
    Internet Explorer 9
    ``````````````Antivirus/Firewall Check:``````````````
    Windows Firewall Enabled!
    Microsoft Security Essentials
    (On Access scanning disabled!)
    Error obtaining update status for antivirus!
    `````````Anti-malware/Other Utilities Check:`````````
    Java(TM) 6 Update 30
    Java version out of Date!
    Adobe Reader 9 Adobe Reader out of Date!
    Adobe Reader X (10.1.3)
    Google Chrome 20.0.1132.57
    Google Chrome 21.0.1180.60
    Google Chrome VisualElementsManifest.xml..
    ````````Process Check: objlist.exe by Laurent````````
    Microsoft Security Essentials MSMpEng.exe
    Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe
    `````````````````System Health check`````````````````
    Total Fragmentation on Drive C: 0 %
    ````````````````````End of Log``````````````````````
  2. MagsL

    MagsL TS Rookie Topic Starter Posts: 35

    In case this is of use ...

    Malwarebytes Anti-Malware (Trial) 1.62.0.1300
    www.malwarebytes.org

    Database version: v2012.08.04.04

    Windows Vista Service Pack 2 x64 NTFS
    Internet Explorer 9.0.8112.16421
    Rob :: HOME-PC [administrator]

    Protection: Enabled

    04/08/2012 17:28:17
    mbam-log-2012-08-04 (17-28-17).txt

    Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|)
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 396026
    Time elapsed: 59 minute(s), 11 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)
  3. MagsL

    MagsL TS Rookie Topic Starter Posts: 35

    As I dont like being unprotected, I'm downloading Microsoft again for now, BUT have read your link and wopudl; appreciate advice. Clearly MSE and Windows firewall didnt protect us this time.
    I have downloaded Malwarebytes, and am torn between Kaspersky, ESEN & Avira? Bad experience with Norton so reluctant to use again
    This virus came (we think) from a Flash Player update - what would protect again?
    And which can run without cancelling each other out??

    Donation will be winging its way once I hear back that all clear - massively apprecate your help.

    And yes - all seems to be running ok ... ! :cool:
  4. Jay Pfoutz

    Jay Pfoutz Malware Helper Posts: 4,286   +49

    Working with Kaspersky was a great experience for me. I would recommend them definitely.

    It yields the highest results in antivirus testing groups, and is one of the most trusted. It's antivirus product is well worth its cost.

    While I would rather see you interested in Kaspersky Internet Security, the antivirus program will suffice enough. Both programs are well maintained and well above average for any security program. We're truly lucky Kaspersky exists as one of the best, because it beats most other products by miles.


    We cleaned up System Restore and are updating your computer because it is clean!

    ALL Flash Player updates should come from Adobe.com!

    Adobe Reader Update!

    Please download the newest version of Adobe Acrobat Reader from Adobe.com

    Before installing: it is important to remove older versions of Acrobat Reader since it does not do so automatically and old versions still leave you vulnerable.
    Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
    Search in the list for all previous installed versions of Adobe Acrobat Reader. Uninstall/Remove each of them.

    Once old versions are gone, please install the newest version.

    Java Update!

    Please download the newest version of Java from Java.com.

    Before installing: it is important to remove older versions of Java since it does not do so automatically and old versions still leave you vulnerable.
    Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
    Search in the list for all previous installed versions of Java. (J2SE Runtime Environment). Please uninstall/remove each of them.

    Once old versions are gone, please install the newest version.

    Read more about Java exploit problems


    May very well be the fact that a Java exploit occurred as well, since there was an old version on your machine.


    Personal Tips on Preventing Malware

    See this page for more info about malware and prevention.

    Any other questions before I mark this topic solved?
  5. MagsL

    MagsL TS Rookie Topic Starter Posts: 35

    Brilliant thank you - Downloading Kapersky One now - seemed to fit the bill.
    All done as instructed, Thank you so much. Please mark as solved - your help has been awesome!!
    :)(y)
  6. Jay Pfoutz

    Jay Pfoutz Malware Helper Posts: 4,286   +49

    Done as such! You're welcome. :)
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.