Misc. ads, music, random noises on PC

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by res0i0ky, Aug 7, 2012.

  1. res0i0ky

    res0i0ky Private E-2

    Hi. I have Vista on my PC. I have random commercials, noises, music and sometimes it sounds like someone is breathing. A browser can be open or not. Of course it scares the crap out of me when I am not using it and loud voices start talking.

    I have followed the intructions for Malware removal and cleaning and really hoped it would be gone, no such luck.

    Will anyone read this? Should I post elsewhere? I have the logs and can attach them as well.
     

    Attached Files:

  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please download ComboFix to your desktop and run it. Do not do anything while it runs. Attach the log when it is finished. Disable any AV software you have before running Combo.

    Once done, please run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:

    * C:\ComboFix.txt
    * C:\MGlogs.zip

    Make sure you tell me how things are working now!
     
  3. res0i0ky

    res0i0ky Private E-2

    Here are the logs per your request..


    thanks
    Barb
     

    Attached Files:

  4. res0i0ky

    res0i0ky Private E-2

    Correction....reran combofix...pc rebooted and was able to find log.
    it is attached
     

    Attached Files:

  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    * Make sure that combofix.exe that you downloaded while doing the READ & RUN ME is on your Desktop but Do not run it!
    If it is not on your Desktop, the below will not work.
    * Also make sure you have shut down all protection software (antivirus, antispyware...etc) or they may get in the way of allowing ComboFix to run properly.
    * If ComboFix tells you it needs to update to a new version, make sure you allow it to update.
    * Open Notepad and copy/paste the text in the below code box into it (make sure you scroll all the way down in the code box to get all lines selected ):
    Code:
    ClearJavaCache::
    KILLALL::
    
    Folder::
    C:\Users\Circuit City\AppData\Roaming\Gucag
    C:\Users\Circuit City\AppData\Roaming\Ipkob
    
    FCopy::
    C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe | c:\windows\system32\services.exe
    
    * Save the above as CFscript.txt and make sure you save it to the same location (should be on your Desktop) as ComboFix.exe
    * At this point, you MUST EXIT ALL BROWSERS NOW before continuing!
    * You should have both the ComboFix.exe and CFScript.txt icons on your Desktop.
    If it asks you to overide the previous file with the same name, click YES.
    * Now use your mouse to drag CFscript.txt on top of ComboFix.exe
    [​IMG]
    * Follow the prompts.
    * When it finishes, a log will be produced named c:\combofix.txt
    * I will ask for this log below

    Note:

    Do not mouseclick combofix's window while it is running. That may cause it to stall.

    Note: If after running Combofix you discover none of your programs will open up, and you recieve the following error: "Illegal operation attempted on a registry key that has been marked for deletion". Then the answer is to REBOOT the machine, and all will be corrected.

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

    Then attach the below log:

    • C:\MGlogs.zip
    • C:\ComboFix.txt

    Make sure you tell me how things are working now!
     
  6. res0i0ky

    res0i0ky Private E-2

    Done....I have attached files
     

    Attached Files:

  7. res0i0ky

    res0i0ky Private E-2

    tried to upload and attach C:\MGlogs.zip, but it states on this site I have already attached this and it will not let me do it again. Any suggestions?

    thanks
    Barb
     
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Sounds like you didn't re-run getlogs.bat. Your Combo log is clean. What issues remain, if any?
     
  9. res0i0ky

    res0i0ky Private E-2

    Well,

    It had been for some time, whether or not a browser window was opened or not, there would be random music, ads, noises, etc. coming from the PC.

    Had ran on a daily basis SuperAnitspyware Professional and contacted them w/the same issue, but problem persisted.

    I found your site, joined and posted question to start out with in new member thread.

    Did what was suggested to remove malware on this site, still was randomly hearing "stuff" coming from speakers.

    If you didn't see anything on the log, maybe I should wait and see. It has only been a day and no sounds. Maybe it is fixed?

    I will give it a few more and we can see.

    I will be very happy if it is, though.

    Should I reply one way or the other in a few days on this same thread?

    thanks
    Barb:)
     
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I would still like to see a new MGLogs.zip. Please run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:

    * C:\MGlogs.zip
     
  11. res0i0ky

    res0i0ky Private E-2

    Here ya go
     

    Attached Files:

  12. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Ok, looks good. Tell me if you have any more issues. ;)
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds