Another one!

Discussion in 'Malware Help (A Specialist Will Reply)' started by edbo20, Jul 22, 2009.

  1. edbo20

    edbo20 Corporal

    Oh my God! 5 years ago I didn't even use an AV and I surfed porn sites (not anymore that's not why I'm here). If you'll help me again. I promise, i'll stay on commercial sites only. I don't get it.

    I ran READ and RUN ME to varying success. I had to run SAS and MBAM in safe mode.

    I could not load Roor Reapeal. I got this message, even in safe mode. "The bandwidth or page view limit for this site has been exceeded and the page cannot be viewed at this time. Once the site is below the limit, it will once again begin serving as normal."

    Can't thank you enough for your help.
     

    Attached Files:

    edbo20, Jul 22, 2009
    #1
  2. edbo20

    edbo20 Corporal

    additional log

    thank you
     

    Attached Files:

    edbo20, Jul 22, 2009
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    The only thing that the scans missed is this:
    c:\windows\system32\wisdstr.exe --> use windows explorer to find and delete it.

    Your system is in need of more ram!
    Total Physical Memory 256.50 MB
    Available Physical Memory 73.99 MB

    Tell me what issues you still have.
     
    TimW, Jul 25, 2009
    #3
  4. edbo20

    edbo20 Corporal

    Hey Tim,

    I have 1 GB on the way. Hopefully, here by Monday. Also, i've purchased a hard firewall.

    After deleting the file you instructed me to, a virus alert simultaneously popped up in AVAST, which was placed in the vault.

    So I ran an AVAST scan, because the computer was still running slow. It came up with 3 infections:

    C:\System Volume Information\...\A0013169.exe Win32:FakeAlert-CC(Trj)
    C:\System Volume Information\...\A0013175.exe Win32:Spyware-gen(Trj)
    C:\System Volume Information\...\A0014768.exe Win32:FakeAlert-CA(Trj)

    Does this make sense? Thank you for your help. i can tell you guys are swamped.
     
    edbo20, Jul 25, 2009
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Avast is reporting items in your system restore folders which can not be remove unless you toggle system restore which i will instruct you on now.......

    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no real-time protection. They are useful as backup scanners.They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /u
        • Notes: The space between the combofix" and the /u, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
    3. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    4. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    5. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    6. Go to add/remove programs and uninstall HijackThis.
    7. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    8. If you are running Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning procedures in step 3 the READ ME for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.
    9. After doing the above, you should work thru the below link:
     
    TimW, Jul 25, 2009
    #5
  6. edbo20

    edbo20 Corporal

    Thanks Tim. Hopefully, I won't be back.
     
    edbo20, Jul 26, 2009
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are most welcome.....safe surfing. :)
     
    TimW, Jul 28, 2009
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds