Solved Good afternoon, problem with another virus

[Jay Pfoutz]

The two previous ones are shown along with the current one at the bottom.

Any more issues?

We need to know any other issues that are plaguing your computer. Kindly give a summary so we know how to continue from here.

Many of the things to note for us would be:

• Slow computer
• Error messages
• Fake antivirus alerts or the icon in the system tray
• svchost.exe running at 100%
• System crashes or blue screen of death

 

[Rick van Ginkel]

As far as I know my PC works perfectly again, thank you

 

[Jay Pfoutz]

Okay, almost done...

Clean up System Restore

Now, to get you off to a clean start, we will be creating a new Restore Point, then clearing the old ones to make sure you do not get reinfected, in case you need to "restore back."

To manually create a new Restore Point

• Go to Control Panel and select System and Maintenance
• Select System
• On the left select Advance System Settings and accept the warning if you get one
• Select System Protection Tab
• Select Create at the bottom
• Type in a name I.e. Clean
• Select Create

Now we can purge the infected ones

• Go back to the System and Maintenance page
• Select Performance Information and Tools
• On the left select Open Disk Cleanup
• Select Files from all users and accept the warning if you get one
• In the drop down box select your main drive I.e. C
• For a few moments the system will make some calculations:
  
  
• Select the More Options tab
  
  
• In the System Restore and Shadow Backups select Clean up
  
  
• Select Delete on the pop up
• Select OK
• Select Delete

Run OTC to remove our tools

To remove all of the tools we used and the files and folders they created, please do the following:
Please download OTC.exe by OldTimer:

• Save it to your Desktop.
• Double click OTC.exe.
• Click the CleanUp! button.
• If you are prompted to Reboot during the cleanup, select Yes.
• The tool will delete itself once it finishes.

Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

Purge old temporary files

Please download TFC by OldTimer to your desktop

• Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
• It will close all programs when run, so make sure you have saved all your work before you begin.
• Click the Start
  button to begin the process. Depending on how often you clean temp
  files, execution time should be anywhere from a few seconds to a minute
  or two. Let it run uninterrupted to completion.
• Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.

Security Check

Please download Security Check by screen317 from SpywareInfoforum.org or Changelog.fr.

• Save it to your Desktop.
• Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
• A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Tell me in your next reply, if you have completed these tasks:

• Cleaned System Restore
• Ran OTC
• Ran TFC
• Ran Security Check

Also, let me know how your computer is running, and don't forget to post the contents of the Security Check log.

 

[Rick van Ginkel]

With the system Protection, I cant select "Create". Apparently I have to enable protection first, but I don't know which option that is.

 

[Jay Pfoutz]

To turn on System Restore (see attached picture):

Go to Start > Control Panel - Press on System.

Choose the link on the left: System Protection.

Picture:

Once in the System Restore window, select your OS (C:\) from the list.

Then, click the Configure button and you will get a popup (shown on right in screenshot).

Then, select "Restore system settings and previous versions of files" and then hit Apply and OK.

 

[Rick van Ginkel]

Im getting an error when trying, this is what it says: "The restore point could not be created for the following reason: The creation of a shadow copy has timed out. Try this operation again. (0x81000101) please try again.

 

[Jay Pfoutz]

Okay. Go ahead with Security Check, please.

 

[Rick van Ginkel]

As you wish

Results of screen317's Security Check version 0.99.43
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.62.0.1300
JavaFX 2.1.1
Java(TM) 7 Update 5
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Firefox (14.0.1)
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 10%
````````````````````End of Log``````````````````````

 

[Jay Pfoutz]

Adobe Reader Update!

Please download the newest version of Adobe Acrobat Reader from Adobe.com

Before installing: it is important to remove older versions of Acrobat Reader since it does not do so automatically and old versions still leave you vulnerable.
Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
Search in the list for all previous installed versions of Adobe Acrobat Reader. Uninstall/Remove each of them.

Once old versions are gone, please install the newest version.

\-----------------------------------------------\

Open Control Panel.
Click the Classic View in the Tasks pane.
Double click Administrative Tools.
Double click Services.

Scroll down and double click the Microsoft Software Shadow Copy Provider.
In the Startup Type menu, select Automatic.
Click the Start button.
Click Apply / OK.

Next, scroll down to the Volume Shadow Copy service and perform the same steps.

Exit everything and reboot the computer.

Tell me afterward if System Restore will work.

 

[Rick van Ginkel]

Apologies for the late response, Sir. And I'm sorry to say that it still does not work

 

[Jay Pfoutz]

Not a problem.

Go Start type in CMD and right-click on it in the results pane and select Run as Administrator.
Type in: sfc /scannow
Press enter.

After the first run, reboot your computer. Do a second run. Now the scan and fix is finished.

Tell me what results are, if any.

 

[Rick van Ginkel]

I did as you told me and there were no errors to be fixed.

 

[Jay Pfoutz]

Download and install the Hotfix from this article: http://support.microsoft.com/kb/915331

Then do the following:

Open Control Panel.
Click the Classic View in the Tasks pane.
Double click Administrative Tools.
Double click Services.

Scroll down and double click the Microsoft Software Shadow Copy Provider.
In the Startup Type menu, select Automatic.
Click the Start button.
Click Apply / OK.

Next, scroll down to the Volume Shadow Copy service and perform the same steps.

Exit everything and reboot the computer.

Let me know if System Restore will work.

 

[Rick van Ginkel]

When I try to install the hotfix, it gives me an error :"Not enough storage is available to process this command. Installation did not complete." I have 237 GB of free space on my C:\ drive

 

[Jay Pfoutz]

Move on to step below it for now. Let me know what happens...

 

[Rick van Ginkel]

The startup type was already set to automatic, but it still did not work.

 

[Jay Pfoutz]

Please post for help in this forum for that: https://www.techspot.com/community/forums/windows-os.15/

This is your referral.

As for this topic > SOLVED. √