Bobbye
Posts: 16,313 +36
I cannot resist this! Since you used 'idk' 3 times in your short sentence, I had to look up idk and here's what I found:
==================================
Please run this Custom CFScript
Save this as CFScript.txt, in the same location as ComboFix.exe
Referring to the picture above, drag CFScript into ComboFix.exe
When finished, it will produce a log for you at C:\ComboFix.txt . No log needed.
====================
Comments:
Regarding Panda Security:
I understand that you think highly of the Panda Suite, but you should know the following:
1.There are 26 separate processes for Panda running- that's a lot.
2. While using Panda, the following malware got on your system:
(Adware.Softomate)
(Trojan.FakeAlert)
(Hijack.Zones)
All were quarantined and deleted by Mbam and I don't see any evidence of remaining entries.
========================
Regarding the Startup menu:
The only processes that need to start on boot are:
1. The antivirus program
2. Firewall if you have 3rd party firewall like Zone Alarm or Comodo. (You should have a firewall.
3. Touchpad if using a laptop.
4. Network processes if using ntw. like Pure Magic/Cisco.
Nothing else.
===========================
Regarding Java: This program is out of date and a vulnerability to your system. Please update to current v6u24 here: Java Updates Uninstall any earlier versions in Add/Remove Programs.
Regarding the Click Potato extension on Firefox:
I recommend that you remove this addon. It is a 'dirty' app that will product malware on the system:
FF - plugin: c:\program files\mozilla firefox\plugins\npclntax_ClickPotatoLiteSA.dll
============================
Since the redirects have been resolved:
Removing all of the tools we used and the files and folders they created
Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.
Empty the Recycle Bin
Let me know if you have any more questions.
So this opens a world- are you a 'teenybopper' (it was defined as 13 year old). Are you use to IM so you don't know how to use full words any more? Do you know what it means!No answer needed.
==================================
Please run this Custom CFScript
[1]. Close any open browsers.
[2]. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
[3]. Open notepad> click on Format> Uncheck 'Word Wrap> and copy/paste the text in the code below into it:
Code:
File::
c:\windows\unins000.exe
c:\documents and settings\Administrator\My Documents\Downloads\8u28kesn.exe
Folder::
c:\documents and settings\All Users\Application Data\TEMP
Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WSearch"=-Referring to the picture above, drag CFScript into ComboFix.exe
When finished, it will produce a log for you at C:\ComboFix.txt . No log needed.
====================
Comments:
Regarding Panda Security:
I understand that you think highly of the Panda Suite, but you should know the following:
1.There are 26 separate processes for Panda running- that's a lot.
2. While using Panda, the following malware got on your system:
(Adware.Softomate)
(Trojan.FakeAlert)
(Hijack.Zones)
All were quarantined and deleted by Mbam and I don't see any evidence of remaining entries.
========================
Regarding the Startup menu:
The only processes that need to start on boot are:
1. The antivirus program
2. Firewall if you have 3rd party firewall like Zone Alarm or Comodo. (You should have a firewall.
3. Touchpad if using a laptop.
4. Network processes if using ntw. like Pure Magic/Cisco.
Nothing else.
===========================
Regarding Java: This program is out of date and a vulnerability to your system. Please update to current v6u24 here: Java Updates Uninstall any earlier versions in Add/Remove Programs.
Regarding the Click Potato extension on Firefox:
I recommend that you remove this addon. It is a 'dirty' app that will product malware on the system:
FF - plugin: c:\program files\mozilla firefox\plugins\npclntax_ClickPotatoLiteSA.dll
============================
Since the redirects have been resolved:
Removing all of the tools we used and the files and folders they created
- Uninstall ComboFix and all Backups of the files it deleted
- Click START> then RUN
- Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
- Download OTCleanIt by OldTimer and save it to your Desktop.
- Double click OTCleanIt.exe.
- Click the CleanUp! button.
- If you are prompted to Reboot during the cleanup, select Yes.
- The tool will delete itself once it finishes.
Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.
- You should now set a new Restore Point and remove the old restore points to prevent infection from any previous Restore Points.
- Go to Start > All Programs > Accessories > System Tools
- Click "System Restore".
- Choose "Create a Restore Point" on the first screen then click "Next".
- Give the Restore Point a name> click "Create".
- Go back and follow the path to > System Tools.
[*]Choose Disc Cleanup
[*]Click "OK" to select the partition or drive you want.
[*]Click the "More Options" Tab.
[*]Click "Clean Up" in the System Restore section to remove all previous Restore Points except the newly created one.
Empty the Recycle Bin
Let me know if you have any more questions.
lol IM HIGH (go figure and tired too) but im not going to go into anymore detail as to why i dont know. but i think ill be straight after this. u could of simplify that message a lot but thanks if whatever this did fix the problem. who knows i might show up for something else later. c ya on the boards lol
