Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malaware/Windows update problems or HDD failing??


  • Please log in to reply
14 replies to this topic

#1 anamika29501

anamika29501

  • Members
  • 59 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Boston,MA
  • Local time:11:10 AM

Posted 29 December 2011 - 04:56 PM

I noticed the first time the problems started after Windows Update failed to install updates successfully & my SONY VAIO(OS - Win7)froze.Had to disconnect completely and restarted & manually installed the 16 or so updates in Sept 2011.From then on,my laptop has been on a downward spiral with issues from
  • Being slow
  • Laptop freezing when left idle for long
Of late its not even booting up stating- 'Operating system not found'
I tried restoring it,created a system image on a disc & did a restore from that too.Went online to SONY VAIO support who did a remote logging and scanning(see report attached below).The report indicated a malaware though Norton Security suite doesn't pick up anything.
But nothing came of it.
When I look at my laptop's diagnostics report,it says everything's fine,when actually its not.
Can someone please help me & tell me what's wrong with my beloved laptop?
The only way I'm logging into my laptop is tapping F8 before it says OS not found!!!
All help is greatly appreciated.
Cheers
Sudha

PC Scan Summary Report


Tests Summary Table

Total Tests Passed Tests Failed Tests
Performance Tests 22 9 13
Security Tests 4 3 1
System Tests 5 4 1


Tests that require attention

Non Optimal Internet explorer cache size
The internet explorer cache size is non optimal when it is greater than the ideal size of 100 MB

Every time you browse, your internal explorer stores the downloaded files in a temporary location - the Internal Explorer cache. These files will be stored in the cache to speed up your browsing activities as it takes less time to call for a page or elements of a page from it. If the cache is not maintained at an optimal size, there is a risk of slowing down your browsing speed. Therefore it is very important that you maintain an ideal size for your Internet explorer cache.

Malware infection detected
An unwanted software called Malware was detected in your system

Malware are malicious software designed to gain access to the computer without your consent. You would know if Malware has infiltrated your computer if: There is an automatic change in your browser's default or start-up homepage, thus deterring your browsing ease, Frequent pop-ups, Crashes and the like. If you notice such symptoms, you should immediately run a scan on your computer.

The temporary files folder needs to be cleared from all user profiles


Operating systems like Windows Xp, Vista and 7 store temporary files in Windows\Temp, User Profile\Local Settings\Temp (or User Profile\AppData\Local\Temp) etc. These folders are used for various operations like installation, uninstallation of applications, writing data to local disk to save RAM and more. However these files occupy a lot of your computer disk space thereby affecting the speed of your computer. Thus, it is vital to delete these files to make more space available and better the performance of your computer.

The computer's video card is unsatisfactory
Your computer's video card has been checked and is found to be not as per recommendations

The video card application demands a lot of space and resources from your computer. Thus it is essential to assess the requirements of this application to determine the condition of your computer.

Windows Mail Splash Screen needs to be deactivated
Windows Mail and the Outlook Express of previous version windows have similar features. However Windows Mail has additional features like fast search, good junk mail filtering and more. But owing to its splash screen feature, this application of Windows Mail requires more time to load than Outlook express. Thus for faster and better browsing experience, it is recommended to disable the splash screen feature.



The Problem Reports and Solutions Control Panel Support Service need to be disabled
The Problem Reports and Solutions Control Panel Support Service feature has been enabled

The diagnostic services in your computer generate problem reports. The Problem Reports and Solutions Control Panel Support service helps to send error data to Microsoft. These reports can be viewed, sent or deleted by the same service. This is a very basic function and is not vital to the performance of your computer. Moreover since it occupies a lot of memory space and processor cycles, it is recommended to disable this feature.

Microsoft iSCSI Initiator Service needs to be disabled
The Microsoft iSCSI Initiator Service on your computer is currently activated

Microsoft iSCSI Initiator Service helps to manage the Internet SCSI (iSCSI) sessions from your computer to distant iSCSI target devices. This service is essential when you want to connect to an iSCSI device. However if this service is disabled, you will not be able to login or access iSCSI targets.

Non optimal internet configuration settings
Your current internet configuration settings is not optimally set

There are a varied number of windows settings that affect your internet browsing speed. Thus to ensure better performance while browsing or downloading, these settings need to be optimized.

The CD ROM Autoplay disabled
The CD ROM Autoplay feature needs to be enabled

If you activate the CD ROM (Read Only Memory) Autoplay on your computer, it will play the CD automatically every time you insert a CD into the drive.

Non optimal Recycle Bin size
Your recycle bin occupies 11.57 percent of the hard disk space, thus it needs to be cleaned.

When you delete a certain file or folder from your computer's hard disk, it goes to the Recycle Bin. The recycle bin thus serves a backup of those files or folders deleted, till it is permanently deleted or restored to its original location. However since the files or folders in the recycle bin occupies a lot of space on the hard disk, it is recommended to maintain the recycle bin size at 3% of the hard disk space. The recycle bin size by default occupies 10% of the hard disk space.

Simultaneous downloads non optimal
Simultaneous connections to a single HTTP 1.0 and HTTP 1.1 server is not optimal

Usually the internet explorer controls the number of simultaneous connections made to a single web server. Owing to this feature, only a limited number of files can be downloaded from a website at a single time. Simultaneous connections to a single HTTP 1.0 server will be limited to 4 and to a single HTTP 1.1 will be limited to 2. However this connection limit becomes restricted as the connection speed and the number of connections allowed to internet servers increase.

The WinHTTP Web proxy auto discovery service needs to be disabled
The WinHTTP Web proxy auto discovery service is activated

To create HTTP connections and auto detect connection settings, the WinHTTP Web proxy auto discovery service provides an API for applications. However since it is not a vital feature for your computer's better performance, it is recommended to disable this feature.

The Distributed link tracking client service enabled
The Distributed link tracking client service is not set to manually activate

It is essential to activate the distributed link tracking client service to maintain links with NTFS files within your computer or across a domain. It can be set to a manual start. However this is recommended only for a large network and not for your home computer network.

The SNMP Trap Service needs to be disabled
The SNMP Trap Service is activated

Trap messages generated by local or remote SNMP (Simple Network Management Protocol) agents are received by the SNMP trap service. These messages are then forwarded to the SNMP management programs existing on your computer. However this service is not vital to better the performance of standalone computers that are not a part of a network. Thus it is recommended to disable this service for such computers.

The critical Microsoft Windows 7 services need to be set to its default values
The critical Microsoft Windows 7 services is not enabled to its default values

Microsoft windows 7 functions efficiently with the support of various features like Background Intelligent Transfer Service, Plug and Play, Protected Storage, Windows Audio, Windows Management Instrumentation and more. It is vital that these services are set as per recommendations, for the better performance of your computer. Thus it is highly critical that the Microsoft windows 7 services are set to its default values.


Tests which passed

RAM sufficient
RAM available on your computer is adequate

The physical memory on your computer is called the RAM or Random Access Memory. It is the memory that is used by your computer when loading an operating system, other programs and files. It is very essential that there is enough RAM space in your computer to help you load your applications faster. You need to ensure that the memory space used is not greater than 85%.

Firewall status favorable
Firewall has been activated.

A Firewall helps you protect your computer from unauthorized access. Thus it ensures that no unwanted applications and processes are permitted to run on your computer without your consent. So activate a firewall as soon as possible to protect the security of your computer.

Computer's hard drive is satisfactory
Your computer's hard drive is as per recommendations and it has adequate space available

The primary hard disk size in a computer is vital to enable its better performance. Thus it is essential to maintain the size and clear space as per recommendations.

Computer memory is satisfactory
Your computer 's memory is as per recommendations and is adequate to perform all functions and processes

Among other important factors that determine your computer's performance, clear memory space available is also vital. Thus a check on the computer's memory will ensure that there are adequate resources to enable better performance of your computer.

The startup programs are satisfactory
The number of startup programs in your system is as per recommendations

There are a certain number of startup programs that need to be installed in your computer to ensure that the startup time is minimal. This makes sure that your computer gives you an enhanced performance.

The startup services are satisfactory
The number of startup services in your system is as per recommendations

There are a certain number of startup programs that need to be installed in your computer to ensure that the startup time is minimal. This makes sure that your computer gives you an enhanced performance.

The operating system on your computer is up to date
Your computer's operating system has been checked and found to be up to date

One of the key factors that decide the performance of your computer is the operating system. Thus a check on this operating system will determine if an appropriate operating system with the latest service pack has been used or not.

Antispyware is satisfactory
The Antispyware on your computer has been checked and is found to be enabled and up to date

Antispyware detects and removes spyware (A type of malicious software that gets installed and collects information without your knowledge or consent), thereby ensuring that your computer is protected. Thus it is vital to enable and ensure the proper functioning of Antispyware.

Antivirus software is satisfactory
The Antivirus software on your computer has been checked and is found to be enabled and up to date

Antivirus software detects and removes Malware (Malicious softwares like Virus, Worms, Rootkits and Trojans), thereby ensuring that your computer is protected. Thus it is vital to enable and ensure the proper functioning of Antivirus software.

Internet Explorer cache cleared
The Internet Explorer (IE) cache files occupy 1112.4131 Kb of your computer space

The IE Cache is a temporary storage space that records all the browsing details of all users. This helps in giving you a faster access of the frequently visited web pages. However a cache demands a lot of space from your computer, thereby slowing the speed of your computer. So to ensure better performance, you need to make sure that these files are deleted on a frequent basis, so as to make more disk space available.

Computer chip speed is satisfactory
Your computer chip speed has been checked and found to be adequate and as per recommendations

The speed of your computer is a sign of its performance. Thus it is vital to keep a check on the speed to enhance the performance of your computer.

The Internet Connection Sharing Service disabled
The Internet Connection Sharing Service feature has been disabled

The Internet Connection Sharing (ICS) service is applicable to provide network address translation, addressing, name resolution and/or intrusion prevention services to a home computer or small office network. This service helps multiple users on your network to browse through a single account. You need to enable this service if your computer is in a network but can be disabled otherwise.

The Netlogon Service disabled
The Netlogon Service feature on your computer has been set to manually start

If your computer is on a domain, the Netlogon service will help you establish a connection between the domain controller and your computer. However if your computer is not on a domain, it is advisable to set this service to a manual start.

The Recycle Bin is cleared
The Recycle Bin occupies 0.00 MB of your computer space

When you delete a certain file or folder from your computer's hard disk, it goes to the Recycle Bin. The recycle bin thus serves a backup of those files or folders deleted, till it is permanently deleted or restored to its original location. However since the files or folders in the recycle bin occupies a lot of space on the hard disk, it is recommended to frequently empty the recycle bin.

The browser opens links in new tabs
Your browser is set to open links in a new tab

If you need an enhanced browsing experience, configure your settings to open a new website in a new tab in the same window. This feature avoids opening new links in new windows, thereby giving you a better experience every time you browse.

The script debugger disabled
The script debugger in your internet explorer is deactivated

When internet explorer discovers an error on the current webpage, it enables a feature called Script debugger. This feature controls the script debugging functions of the internet explorer. However it is recommended to deactivate this feature to enhance your browsing experience.


Performance Details


Performance Tests There are some performance issues
Non Optimal


Security Details


Antivirus Name : Norton Security Suite
Enabled
Version :
Optimal

AntiSpyware Name : Norton Security Suite
Enabled
Version :
Optimal

Firewall Name : Windows Firewall
Enabled
Version :
Optimal


System Details


Operating System Windows 7
Optimal

Memory 3935 MB
Optimal

Primary Disk Driver Free space : 141972.18359375 MB
Total Space :294552.33203125 MB
Optimal

Video Card Mobile Intel® 4 Series Express Chipset Family
Non Optimal




Please go to Tech Support Serve to solve these problems or call on 1-866-610-3135.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,558 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 AM

Posted 03 January 2012 - 09:48 PM

Hello, you have many issues as you know.
Reboot into Safe Mode with Networking
How to start Windows 7 in Safe Mode

Next run Superantisypware (SAS):

Download and scan with SUPERAntiSpyware Free for Home Users
  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen.
  • Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click "Next" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.


Now reboot to Normal and run MBAM (MalwareBytes): if you have to go back to Safe Mode with Networking

Please download Malwarebytes Anti-Malware and save it to your desktop.
Download Link 1
Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

Troubleshoot Malwarebytes' Anti-Malware
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 anamika29501

anamika29501
  • Topic Starter

  • Members
  • 59 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Boston,MA
  • Local time:11:10 AM

Posted 04 January 2012 - 09:48 PM

Hello
I downloaded the Super Antispyware as suggested & the scan went on and on for over 2 hours. I noticed that after scanning several thousand items,it had detected 14 tracing cookies.Before it could end,my laptop 's much dreaded BSOD came & on reboot the windows pop up stating that it had recovered from a serious error came up.I'd saved the same which I've attached below:


Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7601.2.1.0.768.3
Locale ID: 1033

Additional information about the problem:
BCCode: 9f
BCP1: 0000000000000003
BCP2: FFFFFA80046D4050
BCP3: FFFFF80003A204D8
BCP4: FFFFFA800888CB60
OS Version: 6_1_7601
Service Pack: 1_0
Product: 768_1

Files that help describe the problem:
C:\Windows\Minidump\010412-29998-01.dmp
C:\Users\Suravita\AppData\Local\Temp\WER-53851-0.sysdata.xml

Read our privacy statement online:
http://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0409

If the online privacy statement is not available, please read our privacy statement offline:
C:\Windows\system32\en-US\erofflps.txt
*****************************
So,what do I do now?
I'm worried abt another BSOD if I start the scan again.
Would wait to hear from you as to why the BSOd & what the next step(s) should be?
Cheers
Sudha

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,558 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 AM

Posted 04 January 2012 - 09:53 PM

Run TFC by OT (Temp File Cleaner)
Please download TFC by Old Timer and save it to your desktop.
alternate download link

Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
Now try the MBAM sanner...
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 anamika29501

anamika29501
  • Topic Starter

  • Members
  • 59 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Boston,MA
  • Local time:11:10 AM

Posted 04 January 2012 - 10:31 PM

Cleaned the temp files.
Used MBAM as directed.
See log below:

Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.05.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Suravita :: SURAVITA-PC [administrator]

1/4/2012 10:18:25 PM
mbam-log-2012-01-04 (22-18-25).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 199407
Time elapsed: 6 minute(s), 23 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Users\Suravita\Documents\Downloads\WhiteSmokeWriterGeo9128_en.exe (PUP.BHO) -> Quarantined and deleted successfully.

(end)

#6 anamika29501

anamika29501
  • Topic Starter

  • Members
  • 59 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Boston,MA
  • Local time:11:10 AM

Posted 07 January 2012 - 10:27 AM

Hello
I'm waiting to hear since I posted the MBAM log that you requested me to.
I'd appreciate if you cold advise me of the next steps in identifying what's wrong with my laptop.
Thanks

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,558 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 AM

Posted 07 January 2012 - 11:23 PM

Hello ,sorry for the delay,,Had some family dealings.

With all these issues are you oppsed to reformatting?

Otherwise we need to run more tools to remove isssues.

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 anamika29501

anamika29501
  • Topic Starter

  • Members
  • 59 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Boston,MA
  • Local time:11:10 AM

Posted 09 January 2012 - 07:35 PM

Thanks for getting back inspite of your busy schedule. Im not opposed to formatting but just worried that when after reformatting when I back up my data from my ext HDD the former settings would be back in place(will that happen) & I 've to look for the cd's/software for some of the devices that I use.
Reg the ESET scanner I 'd run it nearly 3 times unsuccessfully each for a period of 3 hours as the system was getting hung(which was one of my main concerns to start with) at 99%.
I did notice that during the 1st time it did identify three threats as below
1.Win32/OpenCandy
2.a variant of Win32/Toolbar.Zugo
3.Win32/OpenCandy

Since the scans didn't finish 100% there's neither a log nor I'm sure if those threats 've been removed
Pls advise
I appreciate your time. I'm in awe of the wonderful job u guys do at BC ;)
Thanks

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,558 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 AM

Posted 09 January 2012 - 08:13 PM

OK, well yhose weren't the worst infections which reinforce the decision to reformat as it is software corruption issues.

when I back up my data from my ext HDD the former settings would be back in place(will that happen)


Do you mean will the infection be back?


2 guidelines/rules when backing up

1) Backup all your important data files, pictures, music, work etc... and save it onto an external hard-drive. These files usually include .doc, .txt, .mp3, .jpg etc...
2) Do not backup any executables files or any window files. These include .exe/.scr/.htm/.html/.xml/.zip/.rar files as they may contain traces of malware. Also, .html or .htm files that are webpages should also be avoided.


Does this look to difficult... How To Reinstall Windows 7
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 anamika29501

anamika29501
  • Topic Starter

  • Members
  • 59 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Boston,MA
  • Local time:11:10 AM

Posted 09 January 2012 - 08:39 PM

Thanks for getting back inspite of your busy schedule. Im not opposed to formatting but just worried that when after reformatting when I back up my data from my ext HDD the former settings would be back in place(will that happen) & I 've to look for the cd's/software for some of the devices that I use.
Reg the ESET scanner I 'd run it nearly 3 times unsuccessfully each for a period of 3 hours as the system was getting hung(which was one of my main concerns to start with) at 99%.
I did notice that during the 1st time it did identify three threats as below
1.Win32/OpenCandy
2.a variant of Win32/Toolbar.Zugo
3.Win32/OpenCandy

Since the scans didn't finish 100% there's neither a log nor I'm sure if those threats 've been removed
Pls advise
I appreciate your time. I'm in awe of the wonderful job u guys do at BC ;)
Thanks

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,558 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 AM

Posted 09 January 2012 - 09:21 PM

Well we can do this but it will be a good 5 days for a reply. The holiday malware infestation rush has us backlogged. But you will get a reply and the system cleaned.

You would need to start a new topic.
Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Include a link back to this topic.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 anamika29501

anamika29501
  • Topic Starter

  • Members
  • 59 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Boston,MA
  • Local time:11:10 AM

Posted 09 January 2012 - 09:39 PM

Im sorry my earlier reply got reposted instead of the new reply that I had typed about reformatting.
The reinstallation does seem straight forward.
My only concern is :
I've been backing up my data using Norton's back up settings.So when I restore data from my external HDD would it not bring back the corrupted program files again cos it was the mass Windows update that the issues started?

You mentioned in your earlier post about backing up data

2) Do not backup any executables files or any window files.

Would I be able to choose that option when I choose back up as part of the reinstallation process mentioned in the How To Reinstall Windows 7 ?

I'd prefer a clean reinstallation if that can be the easiest way forward ?

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,558 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 AM

Posted 09 January 2012 - 09:59 PM

What you should do is Connect your external and run a FULL nor quick MBAm (Full scans all drives)scam and this online scan to see iff there are any infections on that drive.

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.


For a clean install you would need to select this method .. Reinstall Windows (requires Windows installation disc): This option will reinstall Windows on your computer. Afterward, you can restore your files from a backup. Any programs you have installed will need to be reinstalled using the original installation discs or files. Existing might remain in the Windows.old folder on your hard disk after the reinstall completes.


Would I be able to choose that option when I choose back up as part of the reinstallation process mentioned in the How To Reinstall Windows 7 ?

To be honest,I have not yet done this on a 7. Ask this in WIN7 up top I am syyr they can answer that quickly.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 anamika29501

anamika29501
  • Topic Starter

  • Members
  • 59 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Boston,MA
  • Local time:11:10 AM

Posted 12 January 2012 - 12:27 PM

Hi

Have posted a query in Win & forum as u suggested.

http://www.bleepingcomputer.com/forums/topic437699.html

I started the MBAM scan including my ext HDD also in the scan & as usual after running for several hours,the system froze.

Should I try with ESET scanner again but I'm not hopeful that I'd see the end of it cos of all the previous unsuccessful attempts.

What do I do?

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,558 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 AM

Posted 12 January 2012 - 12:44 PM

Try it.. You may want to see if it will run in Safe Mode with Networking>
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users