Confused About What To Do

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by rkd1990, Oct 18, 2014.

  1. rkd1990

    rkd1990 Private E-2

    Hi guys,

    I posted a while back asking for help with removing malware. I did most or all of the steps and forgot to follow up.

    Now, I have some new problems, go figure. I'm not sure if I follow the steps again because I don't know if they relate to what happened in the past.

    Symptoms:

    Sophos gave me a permissions violation. I was running off my school's subscription. Nothing with my school has expired to my knowledge. Although it is possible.

    I entered a script from the internet to fix the Sophos permission violation. I get a blue screen.

    I figure it's a software issue and keep doing work. I'm building a website (no I don't know about security and webservers). My local webserver on XAMPP gets an Access violation while I'm browsing a site for reading manga. It immediately shuts down.

    Now, I'm receiving spam on my Skype and kik accounts. They have the same username. I'm not sure what to do. If these are the symptoms than something real bad could be going on with my system.

    I think my Antivirus was completely crippled too. I just looked at it, and it said there was no protection.

    I don't want my identity stolen. My google drive crashed too. It's never done that before.

    I also received notices about login attempts, but the city matched where I am.
     
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    The last time you posted, Chaslang made a response, gave you a fix.....and then you didn't come back... :confused

    If you need help again and want to follow through you need to attach the requested logs in this thread. If you think your website is infected, I cannot help you with that unfortunately. :(
     
  3. rkd1990

    rkd1990 Private E-2

    My logs are attached:

    I apologize for not following up last time. I definitely will this time.

    It seems like the Access Violation for my development environment didn't relate to a virus from a search on the internet, but you know how often that can turn out to be untrue.

    Everyone on the internet claims they're telling the truth.

    Edit: RogueKiller didn't give a me log, or I couldn't find or request the log I was supposed to get.
     

    Attached Files:

  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Re run Hitman and have it remove the small chunk of entries it's finding.

    Apart from that I am seeing clean logs.
     
  5. rkd1990

    rkd1990 Private E-2

    I reran Hitman Pro and cleaned everything. What's next?
     
  6. rkd1990

    rkd1990 Private E-2

    Man, I used hitman pro to delete 5 entries and lost my internet connection. My PC still says internet access though. Plus, I tried a system restore and the screen said "said access is denied 0x80070005" I couldn't even completely load the program, just got to the opening screen.
     
  7. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    You will have to post about this in the software forum I'm afraid. :( What Hitman found was minor junk. Nothing valid that would have caused that.
     
  8. rkd1990

    rkd1990 Private E-2

    :-o

    Restarted my computer. Then I troubleshot the wireless connection. Lol, the wifi was turned off, but the computer didn't populate the info. Somehow, my system restore was still turned off.

    Turning it back on solved the other issue. :-D

    What are the final steps? I'm sure there is lots of stuff that should be undone. I thought about it and realized that I had my folder options set to show hidden files too.

    I might have done that on purpose though for some other programs that I use, not sure.
     
  9. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Renable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    3. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    4. If running Vista, Win 7 or Win 8, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Now goto the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.

    7. After doing the above, you should work thru the below link:
     
  10. rkd1990

    rkd1990 Private E-2

    done like a bun
     
  11. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    :-D Excellent!
     
  12. rkd1990

    rkd1990 Private E-2

    I do have a question though. I didn't see my AV in the list of programs that are acceptable.

    I'm running Sophos and wonder if I will have conflicts with Malware Bytes and Comodo Firewall.

    I also don't know how to setup encryption on the router. The router is already password protected and supposedly (hidden?)
     
  13. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    All topic for the software forum not here. ;)
     
  14. rkd1990

    rkd1990 Private E-2

    Ok, also, would you explain why there is Adware?

    Is the point to get credit card numbers? What's the difference between Adware, crimeware, and malware?

    Also, I got a virus using bittorent with my first computer back in high school. Of course some dude in high school says he knows how to fix it but doesn't. Later the laptop is stolen from my locker while I'm doing stuff for football.:cry

    Somehow, I was just logged into Bittorent and they hacked my system. Then my computer crashed. Then it told me that the MBR partition was corrupted.:cry

    Is that fixable and what was the point of that asshole wrecking my computer. How can he get a credit card number or do some fraud/identity theft when the computer won't even start.:-D
     
  15. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    I'm so sorry. I do not have the time to answer those questions. We are pretty busy at the moment. Most of the answers could probably be found by doing your own research. If you are extra keen there are special training forums for people to learn to remove malware. :)
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds