Just want to make sure

Discussion in 'Malware Help (A Specialist Will Reply)' started by Any_Mouse, Aug 31, 2007.

  1. Any_Mouse

    Any_Mouse Private E-2

    Ok,so I ran all the things that your guide said to run, and saved the hijackthis and other logs. Would I be able to post them here to be looked over? I just want to make sure that I don't frag the computer by deleting something necessary. I'll leave the complicated bits to the professional :major's. Cheers.
     
    Any_Mouse, Aug 31, 2007
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Yes that is what the READ & RUN ME tells you to do in step 6 C!

    You should also explain what malware problems you are having.
     
    chaslang, Aug 31, 2007
    #2
  3. Any_Mouse

    Any_Mouse Private E-2

    No problems; just a routine scan (once a month or so) and I came up with a Trojan called zlob that I dealt with. Hasn't come back. So there's no problem that I can see, but I'm worried that there might be something I'm missing. This is a just in case type of thing.
     
    Any_Mouse, Aug 31, 2007
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Okay so then attach the 6 logs requested in the READ & RUN ME and we will let you know if we see any problems.
     
    chaslang, Aug 31, 2007
    #4
  5. Any_Mouse

    Any_Mouse Private E-2

    Ok, panda active scan: wasn't able to make a logfile. An error repeatedly occured. Bit defender: no problems were found; didn't bother with a log. Counterspy: Have to rerun - forgot to save a log; it was with this that the zlob trojan was found and dealth with. Here are the other 3 logs; will post the counterspy one after rescanning
     

    Attached Files:

    Any_Mouse, Sep 1, 2007
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Did you Quarantine or Delete all that was found??

    You must rename HijackThis.exe as requested in step 7. This is critical. And then attach a new log from it.
     
    chaslang, Sep 1, 2007
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it
    double click it and allow it to merge with the registry.

    If you have finished your rescan with CounterSpy, uninstall the Sunbelt CounterSpy trial since we are finished with it now! Then delete the below folders which may be left behind by the uninstall:
    C:\Documents and Settings\Administrator\Application Data\Sunbelt Software
    C:\Documents and Settings\All Users\Application Data\Sunbelt Software
    D:\Alex's Stuff\counterspy

    Also uninstall the below old versions of software:
    J2SE Runtime Environment 5.0 Update 10
    J2SE Runtime Environment 5.0 Update 4
    J2SE Runtime Environment 5.0 Update 6
    Java 2 SDK, SE v1.4.2_10
    Mozilla Firefox (1.0.6)

    Make sure you reboot after uninstalling the above!

    After reboot, now install the current version of Sun Java from: Sun Java Runtime Environment

    Then install the current version of FireFox from: Mozilla Firefox

    If you need the Sun Java Development kit you can get it here: http://java.sun.com/javase/downloads/index.jsp


    Now run Ccleaner!

    Now attach the below new logs and tell me how the above steps went.

    1. GetRunKey
    2. ShowNew
    3. HJT


    Make sure you tell me how things are working now!

    Reminder Note: Once we have determined you are malware free you will need to disable System Restore, reboot, and re-enable system restore per step 8 of the READ & RUN ME. This only applies to if using WinXP or WinMe.
     
    chaslang, Sep 1, 2007
    #7
  8. Any_Mouse

    Any_Mouse Private E-2

    Blargh. I had a power out when I was running something; had to use system restore to make sure that everything was alright. Will have to go through the entire thing again another day. Thanks for your help. When I do go through it again, do I reply in this thread or another one? Sorry about this, bad luck just seems to follow me wherever I go. Cheers.
     
    Any_Mouse, Sep 1, 2007
    #8
  9. abri

    abri MajorGeek

    Hi Any_Mouse!
    If you went back with your system restore to before the online scans, you will need to redo the READ ME including add/remove programs. If you put system restore back to between the scans and the next set of instructions, then you can proceed with the instructions Chaslang posted to you. If it's any encouragement, in general, everything goes subjectively faster the second time you do it, . :)
    abri
     
    abri, Sep 1, 2007
    #9
  10. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    In addition to what Abri stated and to be specific, yes you should use this thread to continue.
     
    chaslang, Sep 1, 2007
    #10

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds