Can't get rid of Win32 Cryptor, please help!

View previous topic View next topic Go down

Re: Can't get rid of Win32 Cryptor, please help!

Post by Belahzur on Sat Apr 04, 2009 6:37 pm

Hello.

Lets use the OTMoveIt again.

  • Please double-click OTMoveIt3.exe to run it.
  • Copy the bolded text below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose CopyCrying


    :files
    c:\windows\system32\WinVd32.sys
    c:\windows\system32\WinFl32.sys
    c:\docume~1\panz~1.ibm\applic~1\.#
    c:\docume~1\panz~1.ibm\applic~1\Folder Guard
    d:\Program Files\Folder Lock 6
    C:\Documents and Settings\panz.IBMLAPTOP\Desktop\dds.scr


  • Return to OTMoveIt3, right click in the "Paste instructions for items to be Moved" window (under the light blue bar) and choose Paste.
  • Click the red Moveit! button.
  • Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTMoveIt3
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

Please post the OTMoveIt log.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Can't get rid of Win32 Cryptor, please help!

Post by manfrmars on Sat Apr 04, 2009 6:46 pm

Hi, Here is the OTMoveIT log:

========== FILES ==========
c:\windows\system32\WinVd32.sys moved successfully.
c:\windows\system32\WinFl32.sys moved successfully.
c:\docume~1\panz~1.ibm\applic~1\.# moved successfully.
c:\docume~1\panz~1.ibm\applic~1\Folder Guard moved successfully.
Folder move failed. d:\Program Files\Folder Lock 6 scheduled to be moved on reboot.
C:\Documents and Settings\panz.IBMLAPTOP\Desktop\dds.scr moved successfully.

OTMoveIt3 by OldTimer - Version 1.0.10.0 log created on 04042009_144033

Files moved on Reboot...
d:\Program Files\Folder Lock 6 moved successfully.

manfrmars
Novice
Novice

Posts Posts : 17
Joined Joined : 2009-04-03
OS OS : xp
Points Points : 28059
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Can't get rid of Win32 Cryptor, please help!

Post by Belahzur on Sat Apr 04, 2009 6:49 pm

Hello.
Well done, I'd say were done here.

  • Please double-click OTMoveIt3.exe to run it again one final time.
  • Press the green CleanUp! button.
  • Press Yes clean up and reboot prompt.
  • No need for any logs this time.

How is the machine running now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Can't get rid of Win32 Cryptor, please help!

Post by manfrmars on Sat Apr 04, 2009 6:58 pm

It looks the machine runs perfect.
Thank you so much, Belahzur! Your guys are really wonderful!
I'm going to make a donation to you guys.

manfrmars
Novice
Novice

Posts Posts : 17
Joined Joined : 2009-04-03
OS OS : xp
Points Points : 28059
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Can't get rid of Win32 Cryptor, please help!

Post by Belahzur on Sat Apr 04, 2009 6:59 pm

Hello.
Thank you so much, and well done, I'd say your clean. Just need to install new update of Java now. Remember, STAY AWAY FROM CRACKS, otherwise you'll end up back here.

Updating Java:

  • Download the latest version of [You must be registered and logged in to see this link.].
  • Select the first option where it says "This release includes the highly anticipated...".
  • Click the "Download" button to the right.
  • In the Window that opens, select your platform and language, check the "agree" box, and click Continue.
  • Click on the link to download Windows Offline Installation and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Then from your desktop double-click on jre-6u13-windows-i586-p.exe that you downloaded to install the newest version.
Please make sure the new version of Java is installed before you run JavaRa.

Please download JavaRa from [You must be registered and logged in to see this link.]

  • First, unzip it.
  • Then run JavaRa. (If you are running Vista, you will need to right click JavaRa > select "Run as administrator")
  • Select English from the drop down menu and press Select.
  • This will open JavaRa.
  • Press Remove older versions
  • Press yes to the prompt.
  • No need for any logs.

=========================

We need to make a new restore point.

To turn off System Restore, follow these steps:
1. Click Start, right-click My Computer, and then click Properties.
2. Click the System Restore tab.
3. Click the Turn off System Restore check box (or the Turn off System Restore on all drives check box), and then click OK.
4. Click Yes when you receive the prompt to the turn off System Restore.

Now we need to make a new restore point.
To turn on System Restore, follow these steps:
1. Click Start, right-click My Computer, and then click Properties.
2. Click the System Restore tab.
3. Click the Turn off System Restore check box (To turn on System Restore), and then click OK.

Below I have included a number of recommendations for how to protect your computer in order to prevent future malware infections. Please take these recommendations seriously; these few simple steps can stave off the vast majority of spyware problems. As happy as we are to help you, for your sake we would rather not have repeat customers. Goofy

1) Please navigate to [You must be registered and logged in to see this link.] and download all the "critical updates" for Windows. This can patch many of the security holes through which attackers can gain access to your computer.

Please either enable Automatic Updates under Start -> Control Panel -> Automatic Updates , or get into the habit of checking for Windows updates regularly. I cannot stress enough how important this is.

2) In order to protect yourself against spyware, you should consider installing and running the following free programs:

[You must be registered and logged in to see this link.]
A tutorial on using Ad-Aware to remove spyware from your computer may be found [You must be registered and logged in to see this link.].

[You must be registered and logged in to see this link.]
A tutorial on using Spybot to remove spyware from your computer may be found [You must be registered and logged in to see this link.]. Please also remember to enable Spybot's "Immunize" and "TeaTimer" features.

[You must be registered and logged in to see this link.]
A tutorial on using SpywareBlaster to prevent spyware from ever installing on your computer may be found [You must be registered and logged in to see this link.].

[You must be registered and logged in to see this link.]
A tutorial on using SpywareGuard for realtime protection against spyware and hijackers may be found [You must be registered and logged in to see this link.].

Make sure to keep these programs up-to-date and to run them regularly, as this can prevent a great deal of spyware hassle.

3) Please consider using an alternate browser. Mozilla's Firefox browser is fantastic; it is much more secure than Internet Explorer, immune to almost all known browser hijackers, and also has the best built-in popup blocker (as an added benefit!) that I have ever seen. If you are interested, Firefox may be downloaded from here:
[You must be registered and logged in to see this link.]
I also recommand the following add-ons for Firefox, they will help keep you safe from malicious scripts or activeX exploits.
[You must be registered and logged in to see this link.]
[You must be registered and logged in to see this link.]
[You must be registered and logged in to see this link.]

4) Also make sure to run your antivirus software regularly, and to keep it up-to-date.

To help you keep your software updated, please considering using this free software program that will check for program updates.
[You must be registered and logged in to see this link.]

5) Finally, consider maintaining a firewall. Some good free firewalls are [You must be registered and logged in to see this link.], or
[You must be registered and logged in to see this link.]
A tutorial on understanding and using firewalls may be found [You must be registered and logged in to see this link.].

Please also read Tony Klein's excellent article: [You must be registered and logged in to see this link.]

If you would take a moment to fill out our feedback form, we would appreciate it.
The link can be found [You must be registered and logged in to see this link.].

Hopefully this should take care of your problems! Good luck. Big Grin


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: Can't get rid of Win32 Cryptor, please help!

Post by manfrmars on Sat Apr 04, 2009 7:32 pm

Thank you again, Belahzur! Good suggestions to follow.
I've filled up the form and will do my part to keep virus free.

manfrmars
Novice
Novice

Posts Posts : 17
Joined Joined : 2009-04-03
OS OS : xp
Points Points : 28059
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Can't get rid of Win32 Cryptor, please help!

Post by Belahzur on Sat Apr 04, 2009 7:35 pm

Hello.
Thanks for the feedback, just looked at it now. Smile

Stay clean and happy surfing again.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum