Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: "WEB CAKE 3.0" infection - HELP

05 Aug 2013   #71
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

No multiple instructions here .... I need to see this log!! (pulling out the 'Big" guns, now)

Download Combofix from any of the links below, and save it to your desktop.<--Important
Link 1
Link 2
Link 3

Click on this link Here to see a list of programs that should be disabled.
The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
If your anti-virus or firewall complains, please allow this script to run as it is not malicious.
Next: Disconnect from the internet. If you are on Cable or DSL, unplug your computer from the modem.
Next: Please disable all onboard security programs (all running with back ground protection) as it may hinder the scanner from working.
This includes Antivirus, Firewall, and any Spyware scanners that run in the background.
  • Double click combofix.exe and follow the prompts.
  • When finished, it will produce a log for you.
Note: Do not mouseclick combofix's window while its running. That may cause it to stall
Please be patient while the scan runs, at times it may appear to stall.
When finished and after reboot (in case it asks to reboot), it should open a log, combofix.txt.
Post this log in your next reply
After rebooting ensure your Security applications have been re-enabled.

In your next reply post:
ComboFix.txt
***A guide and tutorial on "How to use Combofix" can be found here:
ComboFix: A guide and tutorial on using ComboFix

IF CF won't run:
During the download, rename Combofix.exe to sVchost.exe


My System SpecsSystem Spec
.
06 Aug 2013   #72
ship691

Windows 7 x64 Professional (SP1)
 
 

Can we assume this PC is clean?
I'm going to HAVE to start using this PC to earn my living...

Now what?
My System SpecsSystem Spec
06 Aug 2013   #73
ship691

Windows 7 x64 Professional (SP1)
 
 

Done.
i.e. I have downloaded combofix.exe. I have stopped realtime protection by MSE. I have switched off the Windows 7 firewall. I have run combofix. Results here:

log.txt

And I have turned on MSE and window firewall again.

So what next?


My System SpecsSystem Spec
.

06 Aug 2013   #74
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Okay, I can see you've run Combofix twice. Is this the same version you downloaded and used on 2012-11-06?
My System SpecsSystem Spec
06 Aug 2013   #75
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

If this is an older version of Combofix that you used, please delete it, then download the latest version from my link above .... CF is always being updated!

You need to totally uninstall:
Norton:
Download and run the Norton Removal Tool to uninstall your Norton product
*Norton AntiVirus, Norton Internet Security, or Norton 360
Using the "SymNRT" utility (Norton Removal Tool)

Anvisoft Anvisoft FAQS | Anvisoft

HitmanPro Hitman Pro Uninstall Tips-How to Fully Remove It?_removetips.com – Remove Programs Tips

BitDefender:
http://www.bitdefender.com/support/How-to-uninstall-BitDefender-333.html
*http://www.bitdefender.com/uninstall

Run TFC again, reboot.

Now give me a fresh Combofix log.
My System SpecsSystem Spec
06 Aug 2013   #76
ship691

Windows 7 x64 Professional (SP1)
 
 

No I downloaded the latest version of combofix.
My System SpecsSystem Spec
06 Aug 2013   #77
ship691

Windows 7 x64 Professional (SP1)
 
 

Sorry, but no I have no idea what norton utility I installed and immediately uninstalled.
On that Norton link, Norton say that they refuse to just supply you with a link to the Norton Removal Tool. Apparently you have to contact their technical support... AAAAAAAAAAARRRRRRRRRRRGGGGGGGGGGHHHHHHH!

I have to say I am getting utterly hacked off with this process. Why in G*d's name is it so hard to uninstall software.

more shortly

NORTON
It turns out that the information on the page you linked for me was lying - I did not have to contact their tecnnical support. Instead I found the FTP you supplied. So I have run SymNRT as requested.

ANVISOFT
I had already uninstalled Anvisoft, and as a result, none of the mechanisms for fully uninstalling it worked . Out of desperation I re-installed in completely and then uninstalled it from the menu items in the All Program menu that they supply rather than using the Control Panel. However this failed to remove the listing in the All Programs menu. And I can see that the following directory still exists:
"C:\Program Files (x86)\Anvisoft\Anvi Smart Defender"

HitmanPro
I this was already deleted. But I have deleted all files on my PC with "hitman" in their names. I have deleted all entries in my registry too with that name in it.

BitDefender
I ran the uninstall utility.

TFC
Ran that too, then rebooted.

Now what next?
My System SpecsSystem Spec
06 Aug 2013   #78
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Anvisoft removal
Through the uninstall tool:

1. Open windowsstart menu, click all programs and select Anvisoft.

2. Single click on Anvisoft to reveal Anvi Smart Defender.

3. Single click on Anvi Smart Defender to reveal its submenu.

4. click Uninstall and follow the steps provided.

5. Wait for the uninstallation process to complete.

You don't have to restart the computer after the uninstallation.

Next, go to C:\ProgramFiles\
And delete these folders
Norton
Anvisoft
HitmanPro
Bitdefender
Enigma Software Group

Reboot, run the newest version of Combofix and post the text log.
My System SpecsSystem Spec
06 Aug 2013   #79
ship691

Windows 7 x64 Professional (SP1)
 
 

Done.

log.txt

What next?


My System SpecsSystem Spec
06 Aug 2013   #80
ship691

Windows 7 x64 Professional (SP1)
 
 

Btw, when this is all over - what am I now working forward towards as a normal set of tools?
I mean

1. I dont mind spending 40 or even 50 (max) on antiviral software if it is significantly better than the free stuff.

2. Should I have something running all the time to stop malware as well as some AV software?

3. What else should I do by way of maintenance say once per week?

4. How often should all updates and scans be run? Every night at 4AM?
My System SpecsSystem Spec
Reply

 "WEB CAKE 3.0" infection - HELP




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
"access denied" when using "assoc" and "ftype" from cmdline?
I tried to associate the file extension .txt to a new editor program with the well known cmdline programs ASSOC and FTYPE. No, assigning them through WinExplorer menu does not work. But this is another problem which should not discussed here. When I type now one of the following...
General Discussion
Kyboard deos not respond to the keys: "e", "d", "c" and "3"
Example sentence: vrytim I prss ths kys, nothing happns. Now I'm writing with my on-sreen keyboard. I'm clueless when it comes to computer stuff. How do I fix this? Is this a software problem, or a hardware problem?Help is much appreciated!
Hardware & Devices
Changing the "minimize" "maximize" and "close" buttons of a theme
Ok so I'm using a custom visual style made by another user however I don't really like the buttons used that I mentioned above. The creator states it is acceptable to change the theme to however you like as long as you don't redistribute it anywhere. Ok so I opened up the .msstyles file (using...
Customization
BSOD every few hours: mostly "STOP: 0x00000F4", "c00021a" & "c0000135"
Hi everyone! Yesterday my HP laptop (Windows 7) started getting BSOD with various types of errors (mostly "STOP: 0x00000F4", "STOP: 0x0000007A", "c00021a" and one "missing %hs, c0000135"). Most of the time it restarts without any issues and works fine right after the BSOD and then an hour or two...
BSOD Help and Support
Need to add "TASKBARS" (MSese for "Launchpads", "Docks" NOT "Toolbars"
My office just upgraded, and I can no longer use Windows XP. On this system, I was able to add a separate taskbar to facilitate quick access to commonly-browsed folder locations on our vast network, and another one expedited the launching of useful programs and lists. Each task on each taskbar...
General Discussion
Remaking "My Music", "My Pictures", "My Videos" folders
hi, OK, this is a weird one. I wanted to move the "My Music", "My Pictures", "My Videos" folders to another HDD. I moved the "My Documents" Folder to this HDD without a problem but the others I accidentally set the whole HDD as the folder (if that makes sense). So now the music, videos and...
Customization


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 22:10.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App