check me out

Discussion in 'Malware Help (A Specialist Will Reply)' started by PiraSoftCORP, Dec 21, 2005.

  1. PiraSoftCORP

    PiraSoftCORP Private E-2

    im sure i been infected with the worst spyware the internet has ever created.

    can someone check my log out.
     

    Attached Files:

    PiraSoftCORP, Dec 21, 2005
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to MGs!

    Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments.

    Please follow the steps below:

    - Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

    Make sure you check version numbers and get all updates.

    - Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.


    After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:

    Downloading, Installing, and Running HijackThis

    .
     
    chaslang, Dec 21, 2005
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Your OS and IE versions are way out of date and represent a major security risk. After we fix any current problems, you must get updated. We will discuss this later.

    Do you know what the beloe AMBooster.exe file is?
    O4 - HKLM\..\Run: [AmBooster] C:\Documents and Settings\Ivan Hernandez\AMBooster.exe C:\Documents and Settings\Ivan Hernandez\

    Did you choose to setup all your pages to the below settings:
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
     
    chaslang, Dec 21, 2005
    #3
  4. PiraSoftCORP

    PiraSoftCORP Private E-2

    i pretty much did everything. can you just take a peek and describe what you see.
     
    PiraSoftCORP, Dec 21, 2005
    #4
  5. PiraSoftCORP

    PiraSoftCORP Private E-2

    i dont know what ambooster is.

    no i didnt set my pages like that.
     
    PiraSoftCORP, Dec 21, 2005
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Please complete ALL (not pretty much) the steps and post the require logs from the onlines scanners. At a minimum, I can tell you did not run:
    MS Antispyware
    Spybot Search & Destroy
    BitDefender online scan
    PandaActiveScan

    Who know's what else was not run?

    You are missing the main point. HijackThis is not the ultimate locator of malware. And it does not do the best job at completely removing it. It only displays a few registry keys and can only change the contents of them. This should never be the first step in cleaning up malware. You could leave too much hanging around. The first step is what is in step 0 of the READ & RUN ME. You need to run the other tools to make sure we find all problems and properly remove them.
     
    chaslang, Dec 21, 2005
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds