Malware removal went ok but . . . Part 1

Discussion in 'Malware Help (A Specialist Will Reply)' started by Tucquan, Feb 18, 2009.

  1. Tucquan

    Tucquan Private E-2

    I got home from a business trip on Friday 2/13, fired up and used my Dell desktop running Vista Home Premium for a few minutes. When I got up the next morning, I saw there had been a Windows update, which may have been pushed while I was away.

    My wife told me her HP notebook PC running Vista Home Premium couldn't get a Norton update. I tried to get a McAfee update on mine and no luck there. In fact, we couldn't connect to these respective websites from either of our computers. Her virus definitions on Norton were about 2 days old and my McAee definitions were about 9 days old. We ran scans but nothing showed up.

    I then spent the entire day on Saturday trying and failing to find and fix whatever was causing the problem. When I got up Sunday morning, I found the MajorGeeks site (thank God!) and followed the detailed malware removal instructions. By the end of the day, I head both machines cleaned up and connecting to Norton and McAfee sites and getting definition updates.

    It was suggested in my thank you thread that I still post the logs produced by the malware removal programs. Here are the ones from my Dell Desktop. Let me know if you spot anything quirky. I'll create another post with the last log file.

    Thanks,

    Wayne
     

    Attached Files:

    Last edited: Feb 18, 2009
    Tucquan, Feb 18, 2009
    #1
  2. Tucquan

    Tucquan Private E-2

    Re: Malware removal went ok but . . . Part 2

    Here's the 4th file. There was an MGTools folder within the zip file. I removed this folder from the zip file, which is what I thought the instructions meant. They said:

    MGlogs.zip - normally it is C:\MGlogs.zip - only attach this log from MGtools.exe DO NOT attach any logs seen in the MGtools folder.
     

    Attached Files:

    Tucquan, Feb 18, 2009
    #2
  3. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Welcome to Majorgeeks, Tucquan.

    We are currently reviewing your logs and will get back to you with a set of instructions as soon as possible. Our queue is working the oldest threads first.

    Thanks for your patience.
    dr.m
     
    dr.moriarty, Feb 19, 2009
    #3
  4. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Hello, Tucquan

    ;) Not alot to do!


    The below fixes are specific to your problem and should only be used for issue(s) on this machine. Also, please do not install any other software while we are still working with you unless instructed. Once we have given you the all clean and final instructions you will be free to install what you want.

    Re: Vista Cleaning Procedure ---> Step 2: Disabling User Account Control


    Step 1:
    Copy the contents of the below Quote Box to Notepad. Then click File and then Save As. Change the Save as Type to "All Files". Name the file fixme.reg and then click save. (make sure you save it somewhere you can find it. Saving it to your Desktop may make that easy.) Then double-click on the fixme.reg file on your desktop (or locate it with Windows Explorer and double click on it if not saved to the Desktop) and when it prompts to Add in to the registry, say yes.
    Make sure that you tell me if you receive a success message about adding the above
    to the registry. If you do not get a success message, it definitely did not work.


    Step 2:
    Running HostXpert to Reset Default Hosts File
    Download HostsXpert and then follow the below steps.
    • Unzip HostsXpert.zip
    • It will create a folder named HostsXpert in whatever folder you extract it to.
    • Run HostsXpert.exe by double clicking on it.
    • Click the Make Writeable? button.
    • Click Restore Microsoft's Hosts File and then click OK.
    • Click the X to exit the program.

    Step 3:
    Please refer to the below link and re-immunize your hosts file with SpyBot.
    Spybot S&D Installing & Running

    Step 4:
    Run Ccleaner

    Step 5:
    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, use right click and select Run As Administrator).


    Then attach the below logs to your next reply:
    • C:\MGlogs.zip

    Thanks!
    dr.m
     
    dr.moriarty, Feb 20, 2009
    #4
  5. Tucquan

    Tucquan Private E-2

    Hi dr. m,

    Thanks so much for helping me with this issue. It's good to know I didn't have a lot to fix.

    I followed all of the procedures you mentioned. I did receive a success message when running the newly-created fixme.reg file.

    I've attached the MGlogs.zip file after removing the MGtools folder from within it.

    Wayne
     
    Tucquan, Feb 20, 2009
    #5
  6. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    rolleyes

    No attachment shown, Tucquan....try again.

    :-D
    dr.m
    PS: don't forget to tell me how your machine is now working.
     
    Last edited: Feb 20, 2009
    dr.moriarty, Feb 20, 2009
    #6
  7. Tucquan

    Tucquan Private E-2

    OK, Here's another try with the attachment. I attached it just as before and it is now showing in the Attach Files area in Additional Options. I'll doublecheck after I submit this reply.

    So far, the machine seems to be performing fine.

    Thanks again.
     

    Attached Files:

    Tucquan, Feb 20, 2009
    #7
  8. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    ;)

    You're welcome, Wayne!

    I'll review your new logs and get back to you later.

    dr.m
     
    dr.moriarty, Feb 20, 2009
    #8
  9. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    :major

    Your logs look good! If you are not having any other malware problems, it is time to do our final steps:
    Safe surfing! http://i268.photobucket.com/albums/jj5/drmoriarty/Emoticons/char145.gif
     
    dr.moriarty, Feb 20, 2009
    #9
  10. Tucquan

    Tucquan Private E-2

    Thanks for pulling my fat out of the fire, dr. m :cloud9 I'm working my way through the preventative steps. I've learned a lot through this process and I thank you for that

    Since my wife's notebook was also affected, I'll start another thread with those logs.
     
    Tucquan, Feb 21, 2009
    #10
  11. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    ;)

    You're very welcome, Wayne!

    Start a new thread for the notebook when you're ready and we'll check it out too.


    dr.m
     
    dr.moriarty, Feb 21, 2009
    #11

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds