Antivirus Live virus

Hi folks, daughter inlaws computer infected with the Antivirus Live virus. Complied with "read and run me first", got a little confused due to lack of knowledge and moving from safe mode to normal mode trying to see what programs would work when.

When in normal windows mode the virus would hijack any attempts to connect to normal sites on the internet and would reroute to porn sites with various virus attack alerts. Problem started in June 09 and laptop was stashed in a closet since.

Norton system is out of date and will be removed and replaced with other protection software when you give the ok.

Most of the cleaning procedures were accomplished in the safe mode except the SUPERAntiSpyware as it wouldn't run in safe mode. Also couldn't load updated Sun Java in safe mode so I have no Java.

Somehow, I tricked the virus program and was able to get combo fix on the desktop and run it in normal windows mode, and now all seems to work ok. This is the only cleaning procedure I was able to run in normal windows mode. Won't run any other until you give the ok.

Thanks for your help.

 

Tim,

Successful with IE defaults reset, thanks for your help, exe.exe, yeah that would probably slow progress a little (hehe).

Attached is the SAS log, that's a great program, it picked up 45 more infections.

The only thing that may be a problem is this, the first boot of the day is vvveerrryy slow, I haven't just let it alone to see how long it actually takes however I have left it for 5 minutes and it only gets past the option page for selecting between the normal start up or the "Windows Recovery console" and then seems to stall, if I intervene, shut it down and reboot (many times) it still takes approx 15 or so minutes to get a normal operating computer, after that first boot though any subsequent boots are speedy, probably less that 2 minutes.

That being said, it's not my computer so I don't know the history, maybe this was happening before the infection??

I admire you and the team of Malware warriors at MajorGeeks, looking at logs and figuring out what it all means and how to fix someone else's computer......yikes, and with the various skill levels of operators is bound to be frustrating at times.

Keep up the good work.

Joe.

 

Tim,

The laptop seems to be working fine. I complied with your requested actions as well as the "How to protect yourself from malware" link. Loaded up the free edition of Comodo Anti-virus and Firewall software and as my last actions before I give the laptop back to my daughter in-law I complied with Comodo a/v, Malwarebytes, and SAS scans.

Malwarebytes quick scan found 10 more issues, did a full scan after the quick scan and found 0 items, Comodo since I've loaded it has found 18 issues, not sure if they are false positives or not, and SAS full scan found nothing.

I feel confident about the Malwarebytes and SAS scans but not so with Comodo since it's new to me. Again the lap top seems to be working fine just these last issues. Attached are the logs, hopefully the Comodo log works for you, it's a zipped .htm document, I had to improvise with my limited knowledge.

Regards

Joe

 

Tim,

Sorry I'm not able to attach a log from Comodo it will only allow me to export to HTML which the Major Geeks site will not allow. As a side note, while downloading Microsoft critical updates, Comodo anti virus flagged a virus event so I quarantined it, turns out it was actually one of Microsoft's critical updates, I was downloading 2 updates and only 1 survived Comodo. I didn't know it at the time, however when I reviewed the installed updates only 1 had installed.

Thanks for your help.