Hopefully clean

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by andy5520, Mar 27, 2009.

  1. andy5520

    andy5520 Private E-2

    Hi.
    I've inherited an infected laptop running WinME.
    I tried cleaning it myself before finding your v. helpful forum.
    I've followed your instructions & am hopefully clean.
    Please could you review the logs & let me know if all is OK? Thanks.
     

    Attached Files:

    andy5520, Mar 27, 2009
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are using a very outdated version of MGTools. Please go back to the Read and Run First instructions and download the latest version. Let it run to completion and then attach the log along with the logs from running MBAM and COmboFix.
     
    TimW, Mar 30, 2009
    #2
  3. andy5520

    andy5520 Private E-2

    Thanks for replying Tim.
    I got MGTools from the link on the Windows ME malware removal page. Is there a newer version I can use? If so let me know & I'll post a new log.
    There is no mention of MBAM or Combofix on the removal page. Should I do these anyway?
    Thanks, Andy.
     
    andy5520, Apr 2, 2009
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    My bad...brain dead. :)

    You are running an old version of Norton. Is it still updateable?

    Use windows explorer to find and delete:
    C:\WINDOWS\TEMP\se.dll

    Tell me exactly what issues you still have.
     
    TimW, Apr 5, 2009
    #4
  5. andy5520

    andy5520 Private E-2

    Thanks Tim.

    Norton isn't installed so any mention is probably from a previous installation.

    I've gone to C:\WINDOWS\TEMP\ but there isn't an se.dll to delete (show hidden files & folders is enabled)

    As for issues, I haven't been using that computer, not until I know it's clean.
     
    andy5520, Apr 5, 2009
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Norton 2005 is in your add/remove programs list. So what are you using for anti-virus protection?

    Run MGTools\analyse.exe and fix these items:
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\TEMP\se.dll/space.html
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\TEMP\se.dll/space.html

    That file was the only one I saw....so lets be sure and double click the MGLogs.bat and get me a new MGLogs.zip.
     
    TimW, Apr 5, 2009
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds