E mail junk

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by driley43, Dec 25, 2005.

  1. driley43

    driley43 Private E-2

    If it weren't for trying to get me to remorgage, buy foriegn stock a hundred times a day and don't for get to have my penis enlarged, (by the way I don't have one) my E mail wouldn't be to bad. This is just getting plain rediculus. Don't suggest an e mail filter as the one Outlook Express has is not user friendly. All this mail comes with different address's. So blocking sender doesn't work. Oops I hear the the bell...Yep, forgot the one trying to sell me a watch. This isn't even me.

    Hey tabn@charter.net,

    Gift that lasts forever.

    It's the hand of man that makes every R3PL1KA product valuable.

    Zenith engineering, precision crafted timepieces are perfect gifts.

    Visit our site to order TODAY!!!


    ========================================================================

    CO PY the Ad dre,ss below and p aste in your webb bro,wser:

    azimuthal073.emailsnailmail.com

    ========================================================================

    for 24 hrs.



    So please help
    Thanks
     
  2. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Please follow the steps below:

    - Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
    • Make sure you check version numbers and get all updates.
    After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis:

    Downloading, Installing, and Running HijackThis
     
  3. driley43

    driley43 Private E-2

    I did all the steps and ran everything that you told me to before running the HiJack this log. Nothing was found, and computer came up clean. I use Trend for my Virus protector and have used CCleaner , Adaware and Spybot regularly. Clean Sweep is my installed spyware protector.
    I hope this is where you want my Hijack log. Thanks again.

    Edit by chaslang: Inline log removed! Online scans still not run.
     
    Last edited by a moderator: Dec 25, 2005
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You must read and follow all steps in the READ & RUN ME. In particular, you did not do step 6 and you did not follow the directions in step 7 (which SPD also gave to you). Please do not post any logs inline with your messages and you must install HJT properly.
     
  5. driley43

    driley43 Private E-2

    Thank you for your rudness, I will go elsewhere for help. I ran the scans. Have no idea why you say I did not install Hijack properly. Some of us are obviously not as intellegent as you.

    Don't bother answering.
     
  6. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    HijackThis is running from a temporary location, it appears that you are running it from with in the Zip file.
    You are running HijackThis from C:\DOCUME~1\Owner\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe; which is the zip file itself.

    If you had run the on-lines scans required in Step 6, then we would see the ActiveX controls in the O16 section of your log, that you posted improperly.
     
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    My definition of rude is coming here for help and telling us you followed all the directions when it is obvious that you have not. The cleaning steps are mandatory for everyone coming here for FREE help that we do in our spare time. If you don't like following the steps we require, that's fine. You can seek help elsewhere as you indicated. No one questioned your intelligence level.
     
  8. driley43

    driley43 Private E-2

    Thanks so much Dude, I'm trying the best I can . I am tryng right now to get rid of a couple of Trojan's. I'm attaching the file. So far no luck. I do know that my computer has really slowed down when it comes to opening files since I've downloaded so many programs that where recommended here. I have a new computer here. Gateway Media center 825GM.
     

    Attached Files:

  9. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    BitDefender shows infected restore points, we'll clear thoses after we get your system disinfected.

    Post the Panda ActiveScan and HijackThis logs. When you have those.
     
  10. driley43

    driley43 Private E-2

    The Panda confused me alittle, but think I got it. Here are the logs.
    Thanks:confused:
     

    Attached Files:

  11. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Scan with HijackThis and fix teh following:
    REBOOT to Safe Mode.

    Using the Search function in the Start Menu search for and delete ShowWnd.exe.

    REBOOT to Normal Mode.

    Disable Spy Sweeper.

    Follow the directions Running Hoster.

    REBOOT.

    If you have the Full Retail version of Spy Sweeper installed; update the definitions and run Spy Sweeper according to the instructions in Running Spy Sweeper.

    Post the Spy Sweeper log and a fresh HijackThis log when done.
     
  12. driley43

    driley43 Private E-2

    Here are the logs. Folders are still opening slow.
     

    Attached Files:

  13. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Your logs are clean.

    Run CCleaner before doing the below.

    Download WinPFind

    Extract it to the root folder of drive C ( C:\ ). This will create a folder called WinPFind in the C:\ folder. Inside C:\WinPFind is a file called WinPFind.exe. Double-click on this file to launch the program. Once it is launched, click on the Start Scan button and wait for it to finish. This program will scan large amounts of files on your computer for known patterns so please be patient while it works as it can take a while, upwards to 30 minutes or more.

    When it is done, it will show the results of the scan. Click on the Copy to Clipboard button and then paste the contents of the log in your clipboard. Then save it to a file using notepad and upload the text file here as an attachment.
     
  14. driley43

    driley43 Private E-2

    Here is the file: Gosh I hope we find something so I can fix this. It's my files that take forever to open. Ican't stand the idea of having a Trojan stalking me. I have always been so careful. Running my Trend and SprySweeper (which our both liscensed) but then again as you can see I do alot of surfing and downloading, but download and then scan before opening.
    Thanks so much again Dude for this help. It is really appreciated.
     

    Attached Files:

  15. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    WinPFind is clean.

    Programs opening slowly may be a resource issue. Look at what you have running in the background and desided what you need and don't need running at system startup.
     
  16. driley43

    driley43 Private E-2

     
  17. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Disable System Restore to flush your Restore Points, then enable System Restore to create a fresh clean Restore Point.

    How to Protect yourself from malware!


    Start hijackthis
    Click "open misc tools section"
    check both options beside "generate startup list log" and generate the log. Say OK.

    Post results.
     
  18. driley43

    driley43 Private E-2

    Are we sure the Trojan is gone from the System Restore?
     

    Attached Files:

  19. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Once you disabled System Restore all your restore points were deleted. No Trojan, no nothing.

    You Startup list shows nothing suspicious.
     
  20. driley43

    driley43 Private E-2

    Thank you for all your help. Just wish we could of figured out why when I click on my desktop icons it takes so long to bring things up. Still getting all the crap e mail thou.

    Guess I'll have to look for a real easy spam protector.

    It wasn't all a lose, we did find a Trojan and killed it.

    Thanks again

    Dee
     
  21. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Spam, spam, and more spam; you're not going to stop it completely. Get yourself a good spam filter or change your email client to Thunderbird which has a built in spam filter. THe ISP catches some of it, you have to filter the rest.

    As far as things opening slowly, could be a resource issue.

    Something we could do is look for root kits.

    Download, install and run BlackLight by F-Secure.

    Post the log once finished.
     
  22. driley43

    driley43 Private E-2

    As far as posting a log, I can't find one and can't copy one., It did say scan finished and no hidden items found. It took about 2 seconds to run. I saved it to my desktop and ran it from there.

    I ran ad aware and spybot again and nothing.

    Everything is updated. This has me stumped.
     
  23. driley43

    driley43 Private E-2

    Sorry, I knew something was wrong. Founnd log...I don't think I did something right.,So I installed http://www.sysinternals.com/Utilities/RootkitRevealer.html (Log attached)

    Things are running slow and hanging up during installation. Trying to install F Secure 2006 Trial and run it. It gets to certain stage and won't go further.

    I'm going to uninstall and try again. Do I have to shut done my Clean sweep or Trend for things to install?
     

    Attached Files:

  24. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Sometimes AV apps will interfer with the installation of a program. Try disabling Trend and installing BlackLight. If that doesn't work exit Trend completely and try installing the application. Of course you don't want to be connected to the Interent when your AV app is disabled.
     
  25. driley43

    driley43 Private E-2

    Yes, you are right. I uninstalled my SpySweeper and Trend and disabled my firewall. Installed F Secure and ran full system scan. As you can see there are 7 items that Couldn't be scanned????? This makes me nervous.

    I did find a Golden Palace in my Quaranteened folder of Spy bot that I deleted. It my be my imagination, but things seem better. Could it be????


    What is your opinion between Trend and F secure. I really want the best protection possible.

    Again Thanks for all you patience and help.

    Dee
     
  26. driley43

    driley43 Private E-2

    OOPS!! Don't see Attachment.. Says invalid file. Let me try again. Went back and saved it as Text :eek:
     
  27. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Those are system files that are in use, most of which are the registry hives.

    F-Sercure and Trend Micro are decent enough products. Security starts with the user.

    How to Protect yourself from malware! suggests some free alternatives, that will adequately protect your system.

    Load BlackLight not F-Secure 2006 AV.
     
  28. driley43

    driley43 Private E-2

    Well I think I loaded the back light and it didn't find anything...anyway we are zipping right along. Don't know why. Whatever I got rid of, it works.

    Thanks again.

    Have a great New Years.
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds