[lynx560]

C:\Documents and Settings\Dad\Files\Apps\Installed\Freeware\WirelessKeyview.zip moved successfully.
C:\Documents and Settings\Dad\Files\Apps\Installed\Shareware\Nero-7.8.5.0.zip moved successfully.
C:\Program Files\(E)lephant\Plugins\(E)lephant - MU.Downloader.exe moved successfully.
C:\Program Files\ESET\cache\FND0.NFI moved successfully.
C:\Program Files\ESET\cache\FND1.NFI moved successfully.
C:\Program Files\ESET\cache\FND3.NFI moved successfully.
C:\Program Files\ESET\cache\FND4.NFI moved successfully.
C:\Program Files\ESET\cache\FND5.NFI moved successfully.
C:\Program Files\Nirsoft\Wireless Keyview\WirelessKeyView.exe moved successfully.

OTMoveIt2 by OldTimer - Version 1.0.21 log created on 03292008_181901

[cybertech]

How are things now?

[lynx560]

I am not getting any more NOD warnings It looks like everything is OK now. Thank you very much for your assistance !
I was wondering if I need to do any more deletions. Should I delete my restore points & build new ones ? Should I do this for each user on this computer (or do the points cover all users?)? Are there any apps that I should delete now that the cleaning process is complete ? Ive read that Combofix usually is deleted, also the folder with the infected files that OTMoveIt put in my root drive. Ive saved all the log files posted here so far - should I delete these ? Do I need to keep HJT installed? ... etc ... etc.
I'd also like to know your reccomendations for the security apps I should be using. I found it amazing that NOD didnt find any of the problems I had but Kaspersky Online did. Believe me, I checked every file with NOD before I ran it & all of them came up clean.
I am also going to d/l & install ZoneAlarm as soon as you let me know when we are done here. I didnt install it yet because I didnt want to do anything until you let me know it was OK.
Let me know what I need to do to finalize this process. Im sure you have alot of other people that need your help.
Thank you again !

[cybertech]

You should remove all of the tools I requested you to download and/or folders associated with them now. It is pointless to keep these tools around as they are updated so frequently that the tools can be outdated within a few days, sometimes within just hours.

OTMoveIt2 by OldTimer has a CleanUp! option you can use to remove most of the fixes and associated files and folders.

• Make sure you have an Internet Connection.
• Double-click OTMoveIt2.exe to run it.
• Click on the CleanUp! button
• A list of tool components used in the Cleanup of malware will be downloaded.
• If your Firewall or Real Time protection attempts to block OtMoveit2 to rech the Internet, please allow the application to do so.
• Click Yes to beging the Cleanup process and remove these components, including this application.
• You will be asked to reboot the machine to finish the Cleanup process. If you are asked to reboot the machine choose Yes.

It's a good idea to Flush your System Restore after removing malware:
Turn off system restore and then turn it back on: http://support.microsoft.com/kb/310405
System restore is not per user.


Now you should Clean up your PC


Here are some additional links for you to check out to help you with your computer security.

How did I get infected in the first place.

Secunia software inspector & update checker

Good free tools and advice on how to tighten your security settings.

Security Help Tools



You're welcome!

[lynx560]

Clean up has been completed as per your directions. I have read the four links you recommended and installed Secunia.
Thank you very much for your assistance. You have been very helpful.

Please consider this case "solved"

[cybertech]

My pleasure!