Computer #2 (Desktop) Malware Removal Logs

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by TrocN98, Aug 26, 2009.

  1. TrocN98

    TrocN98 Private E-2

    Hello again.

    Thanks for the help with the laptop, now on to the recently received desktop.

    This thing is a mess lol. My dad gave it to me last week.

    System details:

    XP Home edition SP3
    eMachines T6212
    AMD Athlon 64 Processor
    3200+
    1.9 Ghz 384 MB Ram

    Why does it say 384 under "System" The front of the tower says 512 MB RAM.

    Strange. I ran all the stuff like I was supposed to. Uninstalled all the crap I could find. Some stuff still lingers in Add/Remove and in program files. Such as morpheus toolbar and viewpoint.

    Ran CCleaner,My Defrag.

    Ran SAS,MBAM,ComboFix,RR,and MgTools.

    Forgot to reconnect to internet before I ran ComboFix so it didn't install the system restore thing I needed to.

    Should I be running these on all user accounts in the future?

    Logs attached.
     

    Attached Files:

    TrocN98, Aug 26, 2009
    #1
  2. TrocN98

    TrocN98 Private E-2

    MgTools Log.
     

    Attached Files:

    TrocN98, Aug 26, 2009
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Because it has 512 MB installed but they are stealing 128 MB for something else (like for the video graphics card).

    If anyone plans on using this PC with Windows XP, another Gig of RAM should be installed or at an absolute minimum at least 512 MB more.

    This PC currently has no protection installed and when you install some, it is going to slow down to a crawl due to the lack of memory.


    The cleaning procedure took care of the worst of the problems. Only a little bit remains.

    Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

    O2 - BHO: XBTBPos00 - {E552EEFC-DE97-45D4-BA1A-F534A1B4A579} - (no file)
    O3 - Toolbar: Morpheus Toolbar - {119DBEDA-9c41-4F97-94B4-B6BCD01133CF} - (no file)
    O3 - Toolbar: Morpheus Toolbar - {3F3714A9-89A4-46be-8AF3-D0C9D1FB03F9} - (no file)
    O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA
    O9 - Extra button: Morpheus Toolbar - {119DBEDA-9c41-4F97-94B4-B6BCD01133CF} - (no file)
    O9 - Extra 'Tools' menuitem: Morpheus Toolbar - {119DBEDA-9c41-4F97-94B4-B6BCD01133CF} - (no file)
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
    O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

    After clicking Fix, exit HJT.

    Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    Make sure that you tell me if you receive a success message about adding the above
    to the registry. If you do not get a success message, it definitely did not work.

    Now run Ccleaner. Only use the Run Cleaner button. Do not run anything else on any other forms.

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

    Then attach the below log:
    • C:\MGlogs.zip
    Make sure you tell me how things are working now!
     
    chaslang, Aug 29, 2009
    #3

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds