MajorGeeks Support Forums

Go Back   MajorGeeks Support Forums > ----------= PC, Desktop and Laptop Support =---------- > Malware Removal
Register FAQ Members List Calendar Casino Mark Forums Read

Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient.


Reply
 
Thread Tools Display Modes
  #1  
Old 08-14-08, 10:15
franciscosan franciscosan is offline
Private E-2
 
Join Date: Aug 2008
Posts: 22
Thanks: 1
Thanked 0 Times in 0 Posts
Default i read the read and run malware

i went through it i ran all the test except one combofix.exe because i dont have a Windows CD for Windows XP Recovery Console and when i got my computer from the store it came pre-installed and i cant make floppy one because my floppy drive is broken with tis post is some of my logs from running the programs
Attached Files
File Type: txt mbam-log-8-14-2008 (01-50-28).txt (1.0 KB, 2 views)
File Type: txt SpybotSD.Results.txt (2.5 KB, 2 views)
File Type: log SUPERAntiSpyware Scan Log - 08-13-2008 - 22-09-26.log (232 Bytes, 3 views)
Reply With Quote
Sponsored links
  #2  
Old 08-14-08, 10:17
franciscosan franciscosan is offline
Private E-2
 
Join Date: Aug 2008
Posts: 22
Thanks: 1
Thanked 0 Times in 0 Posts
Default Re: i read the read and run malware

this is my MGlogs
ps on my task manager i have running like 8 svchost.exe dose that mean anything
Attached Files
File Type: zip MGlogs.zip (71.0 KB, 1 views)

Last edited by franciscosan; 08-14-08 at 10:34..
Reply With Quote
  #3  
Old 08-15-08, 11:11
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,447
Thanks: 431
Thanked 4,587 Times in 4,341 Posts
Default Re: i read the read and run malware

Svchost is associated with numerous processes...not to worry.

You have little left to do:

If you haven't already, please disable the Guest account in User accounts.

Run this: Disable/Remove Windows Messenger to remove Windows Messenger. Do not confuse Windows Messenger with MSN Messenger because they are not the same. Windows Messenger is a frequent cause of popups.

Please use add/remove programs to uninstall:
Java(TM) 6 Update 2"
Java(TM) 6 Update 3"
Java(TM) 6 Update 5"
Java(TM) 6 Update 7

Now use windows explorer to find and delete:
C:\WINDOWS\wt\
C:\Documents and Settings\Owner\Application Data\FunWebProducts
C:\Documents and Settings\Owner\Local Settings\Application Data\Wildtangent

Reboot and install:
Java Runtime 6

Tell me how things are running.
Reply With Quote
  #4  
Old 08-17-08, 12:42
franciscosan franciscosan is offline
Private E-2
 
Join Date: Aug 2008
Posts: 22
Thanks: 1
Thanked 0 Times in 0 Posts
Default Re: i read the read and run malware

its been running smooth here are my new logs
Attached Files
File Type: txt mbam-log-8-16-2008 (16-00-24).txt (831 Bytes, 2 views)
File Type: zip MGlogs.zip (71.6 KB, 0 views)
File Type: log SUPERAntiSpyware Scan Log - 08-15-2008 - 17-55-26.log (195 Bytes, 2 views)
Reply With Quote
  #5  
Old 08-17-08, 18:09
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,447
Thanks: 431
Thanked 4,587 Times in 4,341 Posts
Default Re: i read the read and run malware

If you are not having any other malware problems, it is time to do our final steps:
Quote:
  1. You can uninstall SUPERAntiSpyware now.
  2. We recommed you keep Malwarebytes Anti-Malware as a scanner. It uses no resources except a little disk space until you run a scan.
  3. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
    • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
    • "%userprofile%\Desktop\combofix" /u
      • Notes: The space between the combofix" and the /u, it must be there.
      • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.

    • Delete the C:\combo-fix folder from combofix.

  4. If we had you run Avenger, you can delete all files related to Avenger now.
  5. If we had you run RenV.exe, you can delete it and the Log.txt file on your Desktop.
  6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
  7. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
  8. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
  9. Go to add/remove programs and uninstall HijackThis.
  10. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
  11. If you are running Vista, Windows XP or Windows ME, do the below:
    • Refer to the cleaning steps in the READ ME for your Window version and see the steps to Disable System Restore which will flush your Restore Points.
    • Then reboot and Enable System Restore to create a new clean Restore Point.

  12. After doing the above, you should work thru the below link:

Reply With Quote
The Following User Says Thank You to TimW For This Useful Post:
franciscosan (08-18-08)
Sponsored links
  #6  
Old 08-17-08, 23:55
franciscosan franciscosan is offline
Private E-2
 
Join Date: Aug 2008
Posts: 22
Thanks: 1
Thanked 0 Times in 0 Posts
Default Re: i read the read and run malware

i was doing the last step like you instructed me to but after i restarted the system i got and error message that toke me to this page http://wer.microsoft.com/responses/R...e-0150e7a82a92
were it says something about a blue screen error and i tried uninstalling hijack this but it says that it was already gone and that if a wanted to remove it from my add/remove program list attach is the error message
Attached Files
File Type: txt error.txt (122 Bytes, 1 views)
File Type: txt error sig.txt (158 Bytes, 1 views)
Reply With Quote
  #7  
Old 08-18-08, 01:08
franciscosan franciscosan is offline
Private E-2
 
Join Date: Aug 2008
Posts: 22
Thanks: 1
Thanked 0 Times in 0 Posts
Default Re: i read the read and run malware

also i have symantec/norton but its subscription is expired and its been about 2 months now and i dont think I'm going to be renewing it anytime soon should i stay with it until i renew it or should i go ahead and uninstall it and installing Avast! Home Edition with Online Armor Personal Firewall (free edition) as a software firewall
Reply With Quote
  #8  
Old 08-18-08, 12:15
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,447
Thanks: 431
Thanked 4,587 Times in 4,341 Posts
Default Re: i read the read and run malware

I would definitely uninstall Norton...Norton Uninstall Tool

What problems are you having?
Reply With Quote
  #9  
Old 08-18-08, 14:50
franciscosan franciscosan is offline
Private E-2
 
Join Date: Aug 2008
Posts: 22
Thanks: 1
Thanked 0 Times in 0 Posts
Default Re: i read the read and run malware

wene i start up it talks about system recovery console error and wene i shutdown it a screen comes up and it tells me that ccSvcHst.exe to end
Reply With Quote
  #10  
Old 08-19-08, 11:48
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,447
Thanks: 431
Thanked 4,587 Times in 4,341 Posts
Default Re: i read the read and run malware

This is not a malware issue....so I would suggest that you post in the software section. Make sure you give the exact error messages that you get.
Reply With Quote
Sponsored links
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Followed Read-me,still have malware, here is HTJ lhsoccer08 Malware Removal 1 12-31-07 21:45
Various Malware issues, Have read 'READ & RUN ME FIRST' Kiatsu Malware Removal 16 11-17-07 03:05
red shield with a white x causing problems, did read the read and run me first mispelled Malware Removal 4 02-09-07 14:30
Have done all in READ ME but I still have malware on the pc swewolf Malware Removal 8 09-26-06 17:30
Malware still there after READ & RUN ME aknotter Malware Removal 3 07-20-06 16:12


All times are GMT -5. The time now is 05:21.

MajorGeeks.Com Menu

MajorGeeks.Com \ All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ NEW! PC Games \ System Tools \ Macintosh \ Demonews.Com \ Top Downloads

MajorGeeks.Com \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds


Powered by vBulletin® Version 3.8.4
Copyright © 2009 vBulletin Solutions, Inc. All rights reserved.
Ad Management by RedTyger