Double Checking

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by prowler13, Oct 12, 2017.

  1. prowler13

    prowler13 Private E-2

    Seems as if I should know better than to help out, but it is my nature. Any way, it sounds to me as if this older gentleman had a pop up on his screen about a problem with his computer and called the number. He went through the usual steps with this SUPPOSEDLY Helper whom he allowed access to his system and then got a bit scared and hung up on him after not getting what he expected (go figure, UGH!). Now I get his PC and when i boot it I get the dreaded:

    "This computer is configured to require a password in order to start up. Please enter the Startup Password below screen."

    I did get past this issue with the great help here at MG from TimW, but I decided that I would error on the side of caution and run all the normal scans to be sure that is is safe to give this guy his system back.

    I have attached all the logs, so if someone could let me know if I am safe to return this system to him, i would appreciate it.

    Tom
     

    Attached Files:

    prowler13, Oct 12, 2017
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    No real malware issues are seen in the logs. The only thing I would question is whether the owner of this PC installed TeamViewer 11 to allow remote access all the time. Or was this something installed by this questionable "HELPER" ? If not needed, I would uninstall it.
     
    chaslang, Oct 13, 2017
    #2
  3. prowler13

    prowler13 Private E-2

    Thanks, I actually installed Team Viewer the last time he had issues with his system so that I could remotely help him in the future. Seeing that this is now the second time helping him, I may remove it and let him know that I will not be able to help in the future.

    Tom
     
    prowler13, Oct 13, 2017
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome. The decision to uninstall is yours since you installed it.

    Since you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. If running Vista, Win 7 or Win 8, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    3. Now goto the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. After doing the above, you should work thru the below link:
     
    chaslang, Oct 18, 2017
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds