Computer infected, need help

I used to be pretty good with this stuff, but now i'm useless. Ran the steps as described in the guide, but still having some serious problems. Any help would be greatly appreciated.

 

Hi blaze!
Welcome to Major Geeks!

Please go to add/remove programs and uninstall Viewpoint Media Player.

Next please go to Start / Run and type in Msconfig and put a checkmark next to normal system start. Click on accept and okay.

After your computer is in normal system start, please go to the MGTools folder under C:\ and look for the program called GetLogs.bat. Double click on that to run it. It will produce a set of logs called MGlogs.zip which can be fouind directly under C:\
Please attach them with your next post. We need your computer in nomral startup mode to get the information we need in the most useful form.

Thanks.
abri

 

I uninstalled Viewpoint, but if i change it to normal startup, it takes me to Safe Mode without networking. Even if i press f8 at the appropriate time, it still boots into safe mode. Should I re-do all the same steps in safe Mode?

By the way, thanks a lot for your help.

 

Hi blaze,

I must understand this. You uninstalled Viewpoint is one thing, correct?

And secondly, you went to start / run and typed in msconfig and checked the box that says normal system start and clicked on accept and okay. Is that correct?

If you press on F8, you will go to the menu for safe mode, safe mode with networking, etc. We don't request that the scans be done in safe mode, nor do they have anything to do with normal system start. Normal system start is the default setting for the microsoft configuration (msconfig) which means that everything in your start-up menu will load at startup. Some people turn this off and uncheck things in their startup mode. When we're trying to see what's wrong with your computer, we need to see everything start up, that's why we ask that you use normal system start. It has nothing to do with safe mode or normal boot up mode.

I hope this is a helpful explanation. The GetLogs.bat program can be run directly in Windows Explorer after you boot up. It's located under C in the MGTools folder. The set of logs it produces is called MGlogs.zip and these you can find directly under C just above the superman icon.

abri

 

I completely understood what you said, but as I said, when i check the box for normal startup, the box under the boot tab gets changed so that my computer starts in safe mode. I can't get it to boot normal when i have normal startup selected.

So the default startup for me goes into safe mode. I'm not sure how to change this back.

The second I un-check the safeboot option, under the boot tab, it goes back to a modified startup.

I put in some screen shots to show what i'm talking about.

Again, I can run the scan in safe mode, but if i'm using normal startup, i can't boot into normal windows.

 

I was afraid that's what you meant, but I was still optimistic lol

In that case, I would say to leave it in diagnostic mode, but make sure none of your startup items in the startup tab of msconfig is unchecked. I want them all to start at startup. I'll have to ask about this quirk and what might be causing it.

abri

 

I don't mean to question you, but i don't know how that'll help. There are a bunch of things on there that I know are spyware, entries like ijggbk.exe and a few others.

I'm not sure how starting those up will help me remove them. Honestly, if I checked all those boxes, i think my system wouldn't even load. There's just too much crap on it.

 

Hi Blaze,

NOTE FROM CHASLANG

1) Download and install Erunt. Use it to create a backup of your registry.

2) Copy the contents of the below Quote Box to Notepad. Then click File and then Save As. Change the Save as Type to All Files. Name the file fixme.reg and then click save. (make sure you save it somewhere you can find it. Saving it to your Desktop may make that easy.) Then double-click on the fixme.reg file on your desktop (or locate it with Windows Explorer and double click on it if not saved to the Desktop) and when it prompts to Add in to the registry, say yes.

3) Now download The Avenger by Swandog46, and save it to your Desktop.

• Extract avenger.exe from the Zip file and save it to your desktop
• Run avenger.exe by double-clicking on it.
• Check the 'Input script manually' box.
• Click on the magnifying glass icon.
• Copy everything in the Quote box below, and paste it in the box that opens:

• Now click the 'Done' button.
• Click on the traffic light icon and OK the prompt.
• You will be prompted to restart, OK the prompt and your PC should reboot, if not, reboot it yourself.
• A log file from Avenger will be produced at C:\avenger.txt

4) Please download ATF Cleaner by Atribune. This program does not require an installation. The executable actually runs the program.

NOTE: This program is for Windows XP and Windows 2000 only. ATF Cleaner will remove all files from the items that are checked so if you have some cookies you'd like to save. Please move them to a different directory first.

• Double-click ATF-Cleaner.exe to run the program.
• Under Main choose: Select All
• Click the Empty Selected button.

If you use Firefox browser

• Click Firefox at the top and choose: Select All
• Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.

If you use Opera browser

• Click Opera at the top and choose: Select All
• Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.

Click Exit on the Main ATF Cleaner menu to close the program.


5) Please run C:\MGtools\GetLogs.bat and attach the fresh MGlogs.zip it generates along with the Avenger log.


Let me know how things are running now?

abri