Malware removal logs

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by MC squared, May 26, 2009.

  1. MC squared

    MC squared Private E-2

    Hello,After the malware removal everything seems to be working better. Could someone spare some time to review my logs and make sure im clean? Thanks!

    P.S. i don't know if the files attached properly so i'll try again if they didnt.
    P.P.S. Yeah, they did. are they the right ones?
     

    Attached Files:

    MC squared, May 26, 2009
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your logs look pretty good. Let's have you do this:

    Use windows explorer to find and delete:
    c:\windows\system32\fqvslksoutxuozr.exe
    c:\windows\system32\nujolala

    Please use add/remove programs to uninstall:
    J2SE Runtime Environment 5.0 Update 9"
    Java 2 Runtime Environment, SE v1.4.2"
    Java 2 Runtime Environment, SE v1.4.2_03
    Java(TM) 6 Update 3"
    Java(TM) 6 Update 6"
    Java(TM) SE Runtime Environment 6 Update 1

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:
    * C:\MGlogs.zip
     
    TimW, May 28, 2009
    #2
  3. MC squared

    MC squared Private E-2

    i couldn't find the two files you mentioned. the rest is done.
     

    Attached Files:

    MC squared, May 29, 2009
    #3
  4. MC squared

    MC squared Private E-2

    sorry, i found the two files now, i looked in C:\WINDOWS\System before, i didnt realise it was in system32. anyways deleted them like you said to.
     
    MC squared, May 30, 2009
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You should not be allowing all users to have admin. privileges!!! You are still infected so I want you to run both SAS and MBAM on each user account and attach the logs, naming them for the accounts. In the meantime, we need to do this:

    Now download The Avenger by Swandog469, and save it to your Desktop.

    * Extract+ avenger.exe from the Zip file and save it to your desktop
    * Run avenger.exe by double-clicking on it.
    * -Do not change any check box options!!
    * Copy everything in the Quote box below, and paste it into the Input script here: part of the window:

    * Now click the Execute button.
    * Click Yes to the prompt to confirm you want to execute.
    * Click Yes to the Reboot now? question that will appear when Avenger finishes running.
    * Your PC should reboot, if not, reboot it yourself.
    * A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.
    -
    Now run Ccleaner to clean out only temp files and nothing else!

    Now check this folder and remove everything in it ( you will not be able to delete items from today):
    C:\Documents and Settings\Filliizzlee\Local Settings\temp\

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:

    * C:\Avenger.txt
    * C:\MGlogs.zip

    And any logs from SAS and MBAM that show infections.
     
    TimW, Jun 1, 2009
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds