MajorGeeks Support Forums

Go Back   MajorGeeks Support Forums > ----------= PC, Desktop and Laptop Support =---------- > Malware Removal
Register FAQ Members List Calendar Casino Mark Forums Read

Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient.


Reply
 
Thread Tools Display Modes
  #1  
Old 01-18-14, 21:00
fivedunns fivedunns is offline
Private E-2
 
Join Date: Jan 2007
Posts: 21
Thanks: 0
Thanked 0 Times in 0 Posts
Default My son's Dell PC

I am trying to disinfect my son't five year old Dell PC running Vista 64bit system. About five days ago he started experiencing a boot problem. Would get through the startup and blue screen, but hung on a solid black screen every time. Disk was bootable in Safe Mode. I was able to use a command line to get to system restore and restored to an earlier date. After that I could boot, but I was still getting a lot of hangs and freezes, so I decide to go through the Majorgeeks Malware removal guide.

In following all the procedures I could run all of the scans as outlined, except for malewarebytes, which kept freezing during the removal phase, and I'm not sure if anything was actually removed.
Attached Files
File Type: txt RKreport[0]_S_01182014_211544.txt (3.5 KB, 2 views)
File Type: txt mbam-log-2014-01-18 (18-15-51).txt (4.1 KB, 2 views)
File Type: txt tdskillerlog.txt (91.3 KB, 1 views)
File Type: log HitmanPro_20140118_1901.log (34.9 KB, 2 views)
File Type: zip MGlogs.zip (960.1 KB, 1 views)
Reply With Quote
Sponsored links
  #2  
Old 01-19-14, 03:34
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 28,833
Thanks: 965
Thanked 3,716 Times in 3,619 Posts
Default Re: My son's Dell PC

Fix items using RogueKiller.

Double-click RogueKiller.exe to run. (Vista/7/8 right-click and select Run as Administrator)
When it opens, press the Scan button
Now click the Registry tab and locate this 1 detection:
  • [V2][SUSP PATH] Funmoods : C:\Users\ZACHAN~1\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE - /Check [x] -> FOUND

Place a checkmark next to this item, leave the others unchecked.
Now press the Delete button.
When it is finished, there will be a log on your desktop called: RKreport[2].txt
Attach RKreport[2].txt to your next message. (How to attach)
Reboot the machine.




Re run Hitman and have it delete Potential Unwanted Programs.



LiveSupport <<< Uninstall this


Download and run OTM.

Download OTM by Old Timer and save it to your Desktop.
  • Right-click OTM.exe And select " Run as administrator " to run it.
  • Paste the following code under the area. Do not include the word Code.

Code:
:Files
C:\Users\Zach and Amy\AppData\LocalLow\Funmoods 
C:\Program Files (x86)\EZDownloader 
C:\Users\Zach and Amy\AppData\Roaming\OpenCandy
C:\Program Files (x86)\Bench\Updater
C:\Program Files (x86)\YoutubeAdblocker
C:\ProgramData\KeepnBrowse
C:\ProgramData\gReaitsaveR
C:\ProgramData\pcnonlfjoccnfhafljaoakbcnhkblbfg
C:\ProgramData\QuickSet
C:\ProgramData\SNT
C:\ProgramData\ssuuRf and KeEP
C:\ProgramData\surff aNd keep
C:\ProgramData\WeCareReminder
C:\ProgramData\YoutubeAdblocker
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZDownloader
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport
C:\Program Files (x86)\gReaitsaveR
C:\Program Files (x86)\LiveSupport
C:\Program Files (x86)\SearchProtect
C:\Program Files (x86)\Start Savin
C:\Program Files (x86)\surff aNd keep
C:\Program Files (x86)\WebSearch
C:\Users\Zach and Amy\AppData\Roaming\LiveSupport.exe_log.txt
C:\Users\Zach and Amy\AppData\Roaming\regsvr32.exe_log.txt
C:\Windows\tasks\pcreg.job

:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LiveSupport"=-
[HKEY_USERS\S-1-5-21-336667768-3380529365-3877964920-1000\Software\Microsoft\Windows\CurrentVersion\run]
"LiveSupport"=-
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}]
[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}]
[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}]
[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{FDEA87D0-2EC8-4D7A-8A19-524E15BC0174}]


:Commands
[emptytemp]
[Reboot]
  • Return to OTM, right click in the Paste List of Files/Folders to Move window (under the yellow bar) and choose Paste.
  • Push the large button.
  • OTM may ask to reboot the machine. Please do so if asked.
  • Copy everything in the Results window (under the green bar), and paste it in your next reply.

NOTE: If you are unable to copy/paste from this window (as will be the case if the machine was rebooted), open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTM\MovedFiles folder, and open the newest .log file present, and attach the contents of that document back here in your next post.





Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Attach JRT.txt to your next message.


Now run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista, Windows7 or Win8) Then attach the new C:\MGlogs.zip file that will be created by running this.

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now!
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Reply With Quote
  #3  
Old 01-19-14, 08:44
fivedunns fivedunns is offline
Private E-2
 
Join Date: Jan 2007
Posts: 21
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: My son's Dell PC

OK, I could not uninstall LiveSupport. I received the following dialog box...
File "C:\Program Files (x86)\LiveSupport\unins000.dat" does not exist. Cannot uninstall.
All logs attached. Seems to be running better, and no more freezes.

Thanks... I really appreciate your help!
Attached Files
File Type: txt RKreport[0]_D_01192014_073127.txt (3.7 KB, 1 views)
File Type: log 01192014_084022.log (44.2 KB, 1 views)
File Type: txt JRT.txt (16.4 KB, 1 views)
File Type: zip MGlogs.zip (1,000.8 KB, 1 views)
Reply With Quote
  #4  
Old 01-20-14, 16:06
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 28,833
Thanks: 965
Thanked 3,716 Times in 3,619 Posts
Default Re: My son's Dell PC

Hi there.

Sorry for the late response. Just wanted to alert you to the fact I have not forgotton you. Life's just been a bit hectic. I am going to eat my dinner and then shortly afterwards, I'll make a response and provide another fix if necessary.
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Reply With Quote
  #5  
Old 01-20-14, 16:45
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 28,833
Thanks: 965
Thanked 3,716 Times in 3,619 Posts
Default Re: My son's Dell PC

Quote:
OK, I could not uninstall LiveSupport. I received the following dialog box...
Please try Revo Uninstaller, if that fails then I have something else we can try. If it fails though, don't bother doing the below, just come back and let me know.

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista, Windows7 or Win8) Then attach the new C:\MGlogs.zip file that will be created by running this.
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Reply With Quote
Sponsored links
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Dell SB0200 not in Dell Computer George Hart Software 1 04-10-11 05:45
Dell Dimension 4550 & Dell S2009W monitor BJW27 Hardware 2 04-11-09 20:19
Help! Dell Dell Laptop Won't Acknowledge it's AC Adapter! TLM323 Hardware 20 01-23-07 22:35
Dell computer...dell parts only? jak3y Hardware 10 08-04-05 17:05
Trying to understand Dell Bios and Dell OS Discs ENIGMACODE Software 4 04-08-05 21:14


All times are GMT -5. The time now is 09:12.

MajorGeeks.Com Menu

MajorGeeks.Com \ All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ NEW! PC Games \ System Tools \ Macintosh \ Demonews.Com \ Top Downloads

MajorGeeks.Com \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds


All content Copyright MajorGeeks.com source code Powered by vBulletin® Version 3.8.4
Copyright © 2009 vBulletin Solutions, Inc. All rights reserved.
Ad Management by RedTyger