Windows Custom Management

[mpetro1]

Hi, I had a Fake Trojan on my PC. It said I had 1000 problems with Trojan's, it would not let me get online or use any removal tools. I was able to use Malwarebytes Anti-Malware in Safe Mode and it removed the fake virus. I'm not sure if it removed all of it! I have a desk top icon that i'm not sure about, it's a blue box and has a power button icon in the middle of it (it looks like the button to turn on your computer). below the icon it says sdsetup[1].exe. I'm no expert on computers, that's why I'm asking for someone to check my logs! I will also attach the first scan from Malwarebytes that removed the Trojan! Sorry in advance if you didn't need it!

[mpetro1]

Quote:

Originally Posted by mpetro1

Hi, I had a Fake Trojan on my PC. It said I had 1000 problems with Trojan's, it would not let me get online or use any removal tools. I was able to use Malwarebytes Anti-Malware in Safe Mode and it removed the fake virus. I'm not sure if it removed all of it! I have a desk top icon that i'm not sure about, it's a blue box and has a power button icon in the middle of it (it looks like the button to turn on your computer). below the icon it says sdsetup[1].exe. I'm no expert on computers, that's why I'm asking for someone to check my logs! I will also attach the first scan from Malwarebytes that removed the Trojan! Sorry in advance if you didn't need it!

I hope I attached MGtools log!

[thisisu]

Hello mpetro1

From Add/Remove Programs (via Control Panel), please uninstall the below:

• Java(TM) 6 Update 16

Please download Disable/Remove Windows Messenger to your desktop.

• Double-click MessengerDisable.exe to run it.
• Place checkmarks in "Uninstall Windows Messenger" and "Hide Messenger from Outlook Express"
• Click Apply
• Click Exit

Quote:

Originally Posted by mpetro1

I'm not sure if it removed all of it! I have a desk top icon that i'm not sure about, it's a blue box and has a power button icon in the middle of it (it looks like the button to turn on your computer). below the icon it says sdsetup[1].exe.

Delete it, it's here:

• C:\Documents and Settings\Carol\Desktop\sdsetup[1].exe.lnk

__

Now install the current version of Sun Java from: here

__

The rest of your logs are clean.

If you are not having any other malware related problems, it is time to do our final steps:

• Any programs we had you download and/or install can be removed at this time.
• If we had you download and run ComboFix, here is how to uninstall it:
  • Press and hold the Windows key and then press the letter R on your keyboard.
  • This opens the Run dialog box.
  • Copy and paste the below text inside the text-field:
    • "%userprofile%\desktop\ComboFix" /uninstall
  • Now press ENTER
  • ComboFix will extract its files one last time and you should receive a notification that ComboFix has been uninstalled shortly after.
• You can re-enable your Disk Emulation software at this time via DeFogger.
• If we had you create or download a registry patch or "fix" script, these can be deleted at this time.
• Go into the C:\MGtools folder and run the MGclean.bat file to remove additional traces of our tools.
• Now we will toggle System Restore to remove any infected system restore points.
  • Read this: How to Disable And Enable System Restore
• Lastly, here is a guide to protect you from future infections: How to Protect yourself from malware!
• Be safe

[mpetro1]

Thank you! My computer is running great now!!


Mike

[thisisu]

You're welcome, Mike.
Be safe