Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Virus & Other Malware Removal Virus & Other Malware Removal
Search Search
Search for:
Tech Support Guy > > >

Solved: hello and need help please "reveton trojan"


(!)

kevinf80's Avatar
kevinf80   (Kevin) kevinf80 is offline kevinf80 is authorized to help remove malware. kevinf80 has a Profile Picture
Computer Specs
Malware Removal Specialist with 9,536 posts.
 
Join Date: Mar 2006
Location: Sunderland UK
Experience: Intermediate
23-May-2012, 06:14 PM #196
Look as much as I`d like to help you I think we`ve gone as far as possible, probably more than most would have bothered. The infection definitely messed up those files, there was the random extension added and the files were locked, exactly the same happened to you Favorites folder.

If you really must continue with the crusade to get those files back your only option is to seek professional help. This will be very expensive, PC shops in my area charge £50 upwards for simple malware removal, extra for virii.

Data recovery may go into hundreds as opposed to tens, It really depends on time taken etc..... After a hit like you had I`m surprised we got you back at all....time to move on my friend.....

I`m calling time, I`ve had a long and very busy day... I look back in tomorrow......
jam1980uk's Avatar
jam1980uk jam1980uk is offline
Computer Specs
Member with 129 posts.
THREAD STARTER
 
Join Date: May 2012
Location: Bolton
Experience: Beginner
23-May-2012, 06:18 PM #197
think your right m8 mate we give up lol if you still willing to help me get a good safe system im more than happy to follow your advise and im sorry i dragged all this on to ya you done a fantastic job getting me as far as you have i couldnt have done it with out ya so thanks so much
kevinf80's Avatar
kevinf80   (Kevin) kevinf80 is offline kevinf80 is authorized to help remove malware. kevinf80 has a Profile Picture
Computer Specs
Malware Removal Specialist with 9,536 posts.
 
Join Date: Mar 2006
Location: Sunderland UK
Experience: Intermediate
24-May-2012, 04:33 AM #198
No problem with time issues, a fix takes as long as it take.

I`m not sure what tools ar left after all the work and System restore etc, do the following:

Step 1

Remove Combofix now that we're done with it
  • Please press the Windows Key and R on your keyboard. This will bring up the Run... command.
  • Now type in Combofix /Uninstall in the runbox and click OK. (Notice the space between the "x" and "/")

  • Please follow the prompts to uninstall Combofix.
  • You will then recieve a message saying Combofix was uninstalled successfully once it's done uninstalling itself.
The above procedure will delete the following:
  • ComboFix and its associated files and folders.
  • VundoFix backups, if present
  • The C:_OtMoveIt folder, if present
  • Reset the clock settings.
  • Hide file extensions, if required.
  • Hide System/Hidden files, if required.
  • Reset System Restore.

It is very important that you get a successful uninstall because of the extra functions done at the same time, let me know if this does not happen.

If Combofix is no longer on the Desktop, d/l and save to Desktop again. Then run the above...

Step 2

We need to remove ESET Online Scanner. (if installed)
  • Click Start, click Run, type control appwiz.cpl in the Open box, and then press ENTER.
  • Click to select ESET Online Scanner from the application list, and then click Remove. Only re-boot if prompted

Step 3
  • Download OTC by OldTimer and save it to your desktop. Alternative mirror
  • Double click icon to start the program.
    If you are using Vista or Windows 7, please right-click and choose run as administrator
  • Then Click the big button.
  • You will get a prompt saying "Begining Cleanup Process". Please select Yes.
  • Restart your computer when prompted.
  • This will remove tools we have used and itself.

Any tools/logs remaining on the Desktop can be deleted.

Step 4

Go here http://www.filehippo.com/updatechecker/ run FileHippo Update Checker, update all applications as suggested by theChecker, ignore any Beta updates..

Step 5

Download TFC to your desktop, from either of the following links
Link 1
Link 2
  • Save any open work. TFC will close all open application windows.
  • Double-click TFC.exe to run the program. Vista or Windows 7 users right click and select “Run as Administartor”
  • If prompted, click "Yes" to reboot.
TFC will automatically close any open programs, including your Desktop. Let it run uninterrupted. It shouldn't take longer take a couple of minutes, and may only take a few seconds. TFC may re-boot your system, if not Re-boot it yourself to complete cleaning process <---- Very Important

Keep TFC it is an excellent utility to keep your system optimized, it empties all user temp folders, Java cache etc etc. Always remember to re-boot after a run, even if not prompted

Let me know if those steps complete OK, also tell what issues/concerns remain...

Thanks,

Kevin
jam1980uk's Avatar
jam1980uk jam1980uk is offline
Computer Specs
Member with 129 posts.
THREAD STARTER
 
Join Date: May 2012
Location: Bolton
Experience: Beginner
24-May-2012, 04:45 AM #199
says cant find combo fix

doing step 2 now
jam1980uk's Avatar
jam1980uk jam1980uk is offline
Computer Specs
Member with 129 posts.
THREAD STARTER
 
Join Date: May 2012
Location: Bolton
Experience: Beginner
24-May-2012, 04:45 AM #200
sorry doing 1 again downloading comfix again m8
jam1980uk's Avatar
jam1980uk jam1980uk is offline
Computer Specs
Member with 129 posts.
THREAD STARTER
 
Join Date: May 2012
Location: Bolton
Experience: Beginner
24-May-2012, 05:41 AM #201
ok still doing updates now i have that microsoft protection on you gave me do i still run superanti spyware all the time or just scan now and then
jam1980uk's Avatar
jam1980uk jam1980uk is offline
Computer Specs
Member with 129 posts.
THREAD STARTER
 
Join Date: May 2012
Location: Bolton
Experience: Beginner
24-May-2012, 06:06 AM #202
all done but this keeps wanting to install but can`t i click ignor but its come back about 10 times

Update for Windows XP (KB979306)
kevinf80's Avatar
kevinf80   (Kevin) kevinf80 is offline kevinf80 is authorized to help remove malware. kevinf80 has a Profile Picture
Computer Specs
Malware Removal Specialist with 9,536 posts.
 
Join Date: Mar 2006
Location: Sunderland UK
Experience: Intermediate
24-May-2012, 06:12 AM #203
Go Here follow instruction to fix that update issue..
jam1980uk's Avatar
jam1980uk jam1980uk is offline
Computer Specs
Member with 129 posts.
THREAD STARTER
 
Join Date: May 2012
Location: Bolton
Experience: Beginner
24-May-2012, 12:06 PM #204
done that m8 i heard of a programm that hide ip is that a good ider
kevinf80's Avatar
kevinf80   (Kevin) kevinf80 is offline kevinf80 is authorized to help remove malware. kevinf80 has a Profile Picture
Computer Specs
Malware Removal Specialist with 9,536 posts.
 
Join Date: Mar 2006
Location: Sunderland UK
Experience: Intermediate
24-May-2012, 02:51 PM #205
Why would you want to hide your IP address? Ok security, yes keep SAS as well as MSE, You also need a software Firewall, Online Armour Free Firewall is one of the best available, also go Here for an excellent tutorial that will show you how to use it.

Make sure to read the tutorial before you install the Firewall.....

If all is now OK here are some tips to reduce the potential for malware infection in the future:

Make proper use of your antivirus and firewall

Antivirus and Firewall programs are integral to your computer security. However, just having them installed isn't enough. The definitions of these programs are frequently updated to detect the latest malware, if you don't keep up with these updates then you'll be vulnerable to infection. Many antivirus and firewall programs have automatic update features, make use of those if you can. If your program doesn't, then get in the habit of routinely performing manual updates, because it's important.

You should keep your antivirus and firewall guard enabled at all times, NEVER turn them off unless there's a specific reason to do so. Also, regularly performing a full system scan with your antivirus program is a good idea to make sure you're system remains clean. Once a week should be adequate. You can set the scan to run during a time when you don't plan to use the computer and just leave it to complete on its own.

Install and use WinPatrol This will inform you of any attempted unauthorized changes to your system.

WinPatrol features explained Here

Use a safer web browser

Internet Explorer is not the most secure tool for browsing the web. It has been known to be very susceptible to infection, and there are a few good free alternatives:

Firefox,

Opera, and

Chrome.

All of these are excellent faster, safer, more powerful and functional free alternatives to Internet Explorer. It's definitely worth the short period of adjustment to start using one of these. If you wish to continue using Internet Explorer, it would be a good idea to follow the tutorial HERE which will help you to make IE MUCH safer.

These browser add-ons will help to make your browser safer:

Web of Trust warns you about risky websites that try to scam visitors, deliver malware or send spam. WOT's color-coded icons show you ratings for 21 million websites, helping you avoid the dangerous ones:

Available for Firefox and Internet Explorer.

Green to go,
Yellow for caution, and
Red to stop.


Available for Firefox only. NoScript helps to block malicious scripts and in general gives you much better control over what types of things webpages can do to your computer while you're browsing.

These are just a couple of the most popular add-ons, if you're interested in more, take a look at THIS article.

Here a couple of links by two security experts that will give some excellent tips and advice.

So how did I get infected in the first place by Tony Klein

How to prevent Malware by Miekiemoes

Finally this link HERE will give a comprehensive upto date list of free Security programs. To include - Antivirus, Antispyware, Firewall, Antimalware, Online scanners and rescue CD`s.

Don`t forget, the best form of defense is common sense. If you don`t recognize it, don`t open it. If something looks to good to be true, then it aint.

If no remaining issues hit the “Mark Solved” tab at the top of the thread,

Take care,

Kevin
jam1980uk's Avatar
jam1980uk jam1980uk is offline
Computer Specs
Member with 129 posts.
THREAD STARTER
 
Join Date: May 2012
Location: Bolton
Experience: Beginner
24-May-2012, 07:58 PM #206
kevin what can i say apart from your billiant and i thanks you i no i could never repay you in any way but i owe you 1i glad i have this experance and glad you was there to help thanks ever so much again m8 sorry just a few more question lol

i have a laptop running windows 7 can i do the same things i have with this like the same antivirus and firewall and all the info in this tread i will always want to refer back so if i mark as solved will i still be able to view it

thanks again i wish you and your family the very best for the future m8 really glad to have been able to be your student lol
kevinf80's Avatar
kevinf80   (Kevin) kevinf80 is offline kevinf80 is authorized to help remove malware. kevinf80 has a Profile Picture
Computer Specs
Malware Removal Specialist with 9,536 posts.
 
Join Date: Mar 2006
Location: Sunderland UK
Experience: Intermediate
25-May-2012, 12:44 AM #207
Thanks for the kind words, that is what makes it all worthwhile for me. Yep it was probably the worst log i`ve ever worked. I think we both learnt something along the way....

I use Windows 7 myself and have this set up for security:

Firewall - Online Armor (free) the best FW available IMHO....

AV, AS. etc - Microsoft Security Essentials.(free) very light on resources, very simple GUI makes it easy to read and set up.

I also have Malwarebytes Pro version, it is about £20 for a lifetime licence. It works very well with the other two, gives auto updates and the all important realtime protection...

If you mark the thread solved it just gives closer to it. You can still come back, read and leave comments or ask questions. After 45 days the log will Auto-close, you can still read but not comment....

Kevin...
jam1980uk's Avatar
jam1980uk jam1980uk is offline
Computer Specs
Member with 129 posts.
THREAD STARTER
 
Join Date: May 2012
Location: Bolton
Experience: Beginner
25-May-2012, 06:10 AM #208
ok will do and thanks again
kevinf80's Avatar
kevinf80   (Kevin) kevinf80 is offline kevinf80 is authorized to help remove malware. kevinf80 has a Profile Picture
Computer Specs
Malware Removal Specialist with 9,536 posts.
 
Join Date: Mar 2006
Location: Sunderland UK
Experience: Intermediate
25-May-2012, 11:55 AM #209
You`re very welcome...
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.


(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


WELCOME
You Are Using: Server ID
Trusted Website Back to the Top ↑