Malware In Windows Vista.

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by wwalker555, Dec 9, 2015.

  1. wwalker555

    wwalker555 Corporal

    I started performing the steps in the Malware Removal Guide. Everything worked fine until I got to the Vista & Windows 7,8,10 Malware Removal/Cleaning.

    In step 1, Downloading Tools. I could not or didn't know how to download them to the desktop. So I let them go to my download folder then copied them to my desktop (except for MGTOOLs, which I copied to C:\). I already had MBAM installed but still downloaded it then copied to my desktop and renamed it MB.EXE.

    In step 3, I tried to start RogueKiller. Right click/Run as administrator but nothing started. I also attempted to start the rest of the tools, all took me to a run/start screen except TDSSkiller -- I didn't start them. So I deleted both RougeKiller and TDSSKiller and downloaded them again.

    I tried to start RogueKiller.exe again. It did not start. I have stopped at this point. Any suggestions on what I should do?
     
  2. wwalker555

    wwalker555 Corporal

    I went back and watched download video by TimW and after deleting all of the previous download software, I download them to the proper locations.

    RogueKiller.exe still did not start. So I am still stopped at this point. HELP please :)
     
  3. wwalker555

    wwalker555 Corporal

    Just in case you wanted the logs I could create I am uploading them now.

    As reported earier, I could not start RogueKiller.exe or TDSSKiller. MB.exe wanted to install MBAM so I just performed a scan and created a log from my installed MBAM. I ran HitmanPro and created a log. I ran MGtools and let it create the zip file.

    I hope these three files have been corrected created (everything seemed to run well).

    I will provide the RogueKiller andTDSSKiller logs but need help from you guys to get those products running.

    Thanks
     

    Attached Files:

  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Rerun Hitman and have it remove all the items under Potentially Unwanted Programs. Then use Windows explorer to find and delete:
    C:\Users\Wayne\AppData\Local\LogMeIn Rescue Applet

    How are things running?
     
    satrow likes this.
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You can just do a lite clean up:

    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Renable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    3. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    4. If running Vista, Win 7 or Win 8, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Now goto the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    7. After doing the above, you should work thru the below link:
     
    wwalker555 likes this.
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    The below needs to be uninstalled:

    Dealio Toolbar v5.9

    Also note that the LogMeIn folder may be part of the user's Citrix software..... possibly for work! So I would not delete it.
     
  7. wwalker555

    wwalker555 Corporal

    When I tried to uninstall Dealio Toolbar. I got the message -- The feature you are trying to use is on a network that is unavailable. So I couldn't delete it.

    If the LogMeIn folder the same item I was instructed by TimW to delete... it is gone.
     
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Was LogMeIn what the "tech" person used to access your system?
     
  9. wwalker555

    wwalker555 Corporal

    I really do not know.
     
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Are you planning on dumping this computer when you get the new desktop? Is everything working well now?
     
  11. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Was there a discussion somewhere that stated that a "tech" support person had accessed this PC? I did not notice such a discussion. I just noticed that there was Citrix software and this is frequently used by companies for IT maintenance and also has legit uses. My comment was purely due to this.
     
  12. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    chaslang likes this.
  13. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Thanks Tim. Now it make more sense. Perhaps the Citrix/GoToAssist 8.0.0.514 software is also related to the remote access that was performed and if so, it should be removed too.

    The Dealio Toolbar should also be manually cleaned up. Perhaps a better uninstall program like GeekUninstaller 1.3.5.55 (portable) or Revo Uninstaller 1.95 can be used.
     
  14. wwalker555

    wwalker555 Corporal

    I used both of the uninstall programs and stil could not remove Dealio Toolbar.
    When I tried to uninstall Dealio Toolbar. I got the same message -- The feature you are trying to use is on a network that is unavailable. So I couldn't delete it.

    My computer says it was installed in June of 2012. Since I am going to dump the computer soon, should I still get Dealio Toolbar removed?
     
  15. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Not if you are going to dump it soon.
     
    wwalker555 likes this.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds