Author Topic: Please help with Win32:BitCoinMiner-CA[Trj]  (Read 7568 times)

0 Members and 1 Guest are viewing this topic.

argus

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #15 on: September 11, 2013, 12:43:25 PM »
Hi, I will be working on your Malware issues.

Re-run OTL.exe.

  • Copy and paste the following text written inside of the quote box into the Custom Scans/Fixes box.

Code: [Select]

:OTL
O4 - HKU\S-1-5-21-969727876-1222006065-2701588059-1000..\Run: [tsiVideo] C:\Windows\SysWOW64\rundll32.exe C:\Users\SUGIXI~1\AppData\Local\Temp\\tsiVi132.dll,start File not found
O33 - MountPoints2\{c8986139-d43c-11e2-87c9-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{c8986139-d43c-11e2-87c9-806e6f6e6963}\Shell\AutoRun\command - "" = F:\AutoRun\AutoRunX\AutoRunX.exe
O33 - MountPoints2\{e6ceaed1-d43b-11e2-ba24-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{e6ceaed1-d43b-11e2-ba24-806e6f6e6963}\Shell\AutoRun\command - "" = F:\setup.exe

:commands
[CREATERESTOREPOINT]
[emptytemp]


  • Then click the Run Fix button at the top.
  • Let the program run unhindered; it will reboot the system when it is done and open notepad with logreport. Attach here that logreport.
If the log doesn't appear, it can be found here:

c:\_OTL\MovedFiles\mmddyyyy_hhmmss.log

pandamerah

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #16 on: September 11, 2013, 01:00:13 PM »
Dear Argus,

I run the command and here is the result.
Is it okay?
Thank you so much

argus

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #17 on: September 11, 2013, 01:06:30 PM »
Another check


Re-run OTL and click Run scan

Attach here log. (OTL.txt)

pandamerah

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #18 on: September 11, 2013, 01:35:42 PM »
Dear Argus,

I ran the scan just like http://forum.avast.com/index.php?topic=53253.0
minus the command on Custom Scans/Fixes.
Here's the log, thank you

argus

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #19 on: September 11, 2013, 01:47:12 PM »
OK, system is clean.



Please download DelFix by "Xplode" to your Desktop.

Run the tool and check the following boxes below;
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore

Now click on "Run" button. Wait for the programme completes his work.
All the tools we used should be gone.
Tool will create and open an log report (DelFix.txt)
Note: The report will also be stored on C:\DelFix.txt


> I don't need DelFix log report.

pandamerah

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #20 on: September 11, 2013, 01:55:30 PM »
Dear Argus,

Thank you so much for guiding me to clean up things. You are awesome   :)
However i still have adwcleaner, aswmbr, mbam-setup 1.75.0.1300, OTL, TFC, and all the log reports (but not the DelFix).
Probably because i move it (not on desktop). Do i need to delete them all?

argus

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #21 on: September 11, 2013, 02:06:08 PM »
Quote
Do i need to delete them all?

Yes.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37507
  • Not a avast user
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #22 on: September 11, 2013, 02:11:03 PM »
if you want..... recomended programs to keep

Malwarebytes .... works great as extra scanner alongside avast

MCShield   http://www.mcshield.net/    protect you from USB infections


argus

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #23 on: September 11, 2013, 02:13:45 PM »
if you want..... recomended programs to keep

Malwarebytes .... works great as extra scanner alongside avast

MCShield   http://www.mcshield.net/    protect you from USB infections

Like  :)

pandamerah

  • Guest
Re: Please help with Win32:BitCoinMiner-CA[Trj]
« Reply #24 on: September 11, 2013, 02:33:22 PM »
Dear Argus and Pondus,

Thank you so much for everything. You guys rocks  :)