Some questions as I troubleshoot my Inlaw's computer remotely

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by hooligan495, Sep 1, 2004.

  1. hooligan495

    hooligan495 Private E-2

    My Inlaw's computer is infected with scumware. I just spent a bunch of time reading the FaQs and sticky threads here.

    The problem is that my inlaws live an hour and a half away so I can't get to their computer and I have to tell them what to do over the phone, OR use XP's remote administration utility to help them that way. When I was up there last week I spent time installing Adaware SE, and Spybot S&D, and Hijack This. I used Adaware and Spybot to get rid of a LOT of crap off their computer but now it's working it's way back :mad:

    I was wondering if anyone could answer a couple of questions as I go through the process of re-cleaining their PC.

    If I have them boot their PC in safe mode with networking support will I be able to still remotely administer their computer?

    I created a Hijack this report last nite after having them run Adaware and Spybot. But they weren't in safe mode, and the only programs running were MSN Messenger and Remote Admin(MSN messenger is how I have them ask for remote assistance). Does anyone know if Remote administration or MSNMessenger will interfere with the process of cleaning out their computer?

    Is the hijack this log file I have valid even tho we weren't in safemode? or is it somehow more relevant when we are in safe mode (I'm just trying to learn as much as I can)?

    Should I have them update to XP SP2? Is it more resistant to Scumware?

    I have some questions about what's in the Hijack this log I have now but I don't want to post it if I should have done more before getting it.

    Thanks a lot for any insight you are willing to share!
    Jay
     
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You really need to do ALL the steps indicated < READ ME FIRST: Basic Spyware, Trojan And Virus Removal >

    If you already have any of the programs linked in the tutorial please double check your version to make sure you have the latest one and that you have any/all updates for the programs.

    NOTE: In order to resolve the issues you are having it is very important that you at least try to perform all the steps as outlined. If you have any difficulty please post back letting us know what steps you have completed, what you found while doing the scans if anything and details about any problems you have encountered in completing the steps. The more details you can provide the better.

    The online scans (TrendMicro & PandaSoftware) should be run from normal boot.
    You need to run the scans as indicated in safe mode. Make sure you do not skip anything (you made no mention of some of the items like CCleaner, CWShredder). Your HijackThis log should be run from normal boot.

    I'm not sure if the Remote Admin will cause a problem. Anything is possible with spyware. But when you are booted in safe mode you will have not Remote admin.

    I would not install XP SP2 until you get problems fixed. Yes it is more resistant. But people are also having problems with SP2 too (see the software forum).

    Do not post a HJT until you have run all the items in the read me first thread and then make sure it is posted as an attachment and that you are using the correct version 1.98.2
     
  3. hooligan495

    hooligan495 Private E-2

    I have performed all the steps as outlined. I have the latest versions of all the programs mentioned but I can't get rid of the scumware on my inlaws computer. I ran Hijack this and have the log and went through the Hijack This help and Identfied some things that needed to go. Got rid of em and now stuff is back. If I post the HJT log can someone take a peak at it for me to see if I missed anything?

    Thanks so much!
     
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Yes, post your HJT log as a .txt file attachment (you may need to rename it from how you saved it to a .log file).
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds