Malware not removed

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by scubaman, Mar 18, 2006.

  1. scubaman

    scubaman Private E-2

    Hi,

    I've followed the instructions on

    http://forums.majorgeeks.com/showthread.php?t=35407

    but still show problems when running Adware SE. I click to remove the objects but some still re-appear after rebooting, though they vary.

    Original problem was mainly Vcodec being found and Spyfalcon loading. These seem to have been cured.

    Trojan.zolob was found by Windows Defender and removed. It now shows clean.

    I also run AVG anti virus, which is updated automatically and this is now showing clean.

    I've attached the logs of Bitedefender and Panda Activescan, as well as the log from Adware SE. All were run in normal boot mode, as I couldn't seem to connect to the web in safe mode.

    I would appreciate any help in removing these last problems, or advice if you feel they are not a problem (though Adware lists them as 'Critical').

    Thanks in advance.
     

    Attached Files:

    scubaman, Mar 18, 2006
    #1
  2. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Welcome to Major Geeks.

    Please post a HijackThis log as an attachment.
     
    Shadow_Puter_Dude, Mar 18, 2006
    #2
  3. scubaman

    scubaman Private E-2

    Hi, HJT log is attached.

    Appreciate any advice.

    Thanks in advance.
     

    Attached Files:

    scubaman, Mar 21, 2006
    #3
  4. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    run CCleaner. If you have Windows XP delete the contents of C:\WINDOWS\Prefetch.

    Then, as an added precaution, Go to Start -> Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
    Temporary Files
    Temporary Internet Files
    Recycle Bin

    And Click OK.

    Scan With HijackThis and fix the following:
    Download
    - Pocket Killbox
    - ExplorerXP

    Now run Pocket Killbox:

    Choose Tools -> Delete Temp Files and click the RED X.

    Run Killbox.exe. Paste the below filenames into KILL BOX one at a time. Check mark the box that says "Delete on Reboot" and checkmark the box "Unregister DLL" (If available) Click the RED X and it will ask you to confirm the file for deletion…say YES and when the next box opens prompting you to reboot now...click NO...and proceed with the next file. Once you get to the last one click YES and it will reboot. Note many of the file list below may not exist but we need to check for them anyway.
    If Killbox does not reboot or you get a Pending Operations type error message just reboot your PC yourself.

    Now boot into SAFE MODE

    Open ExplorerXP navigate to and DELETE the following: (Some of these may have already been deleted by Pocket Killbox)
    Now run CCleaner. If you have Windows XP delete the contents of C:\WINDOWS\Prefetch.

    Then, as an added precaution, Go to Start -> Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
    Temporary Files
    Temporary Internet Files
    Recycle Bin

    And Click OK.

    REBOOT to Normal Mode.

    Disable System Restore then Enable System Restore. System Restore

    Post a Fresh HijackThis log
     
    Shadow_Puter_Dude, Mar 21, 2006
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds