I HAD a problem :-)

Discussion in 'Malware Help (A Specialist Will Reply)' started by markem, Jul 3, 2012.

  1. markem

    markem Private First Class

    I had a very strange problem that RogueKiller seems to have fixed (and if I was employed I'd donate money to - maybe next unemployment check? Anyway...).

    I am writing to see if anyone else has ever run in to this problem. The close box in the upper right corner of dialog boxes was being greyed out. I'd be in something like FireFox and it would just go grey. Or I'd be in Photoshop and it'd go grey. Nothing I'd try would fix the problem. Sometimes the menu would then go grey so I couldn't even get out of the program. I'd have to start up the Task Manager to kill the application. Then everything would go back to being ok for a while....then...funky greyed out close box.

    I decided to download and try the software recommended. Running RogueKiller it found the usual Microsoft Security stuff and one item by DivX. That was it. I had it fix those, fix host, proxy, and DNS as well. Nothing that would indicate a problem came up. I also let it correct any directory problems. There were some problems it corrected but nothing that would make me think it was connected to this problem. However, the close box hasn't greyed out yet on anything since I ran it.

    I'm currently running the malwarebytes software and will go through the entire process just to be sure but RogueKiller does seem to have fixed the problem.

    So I just wanted to ask if anyone else has seen this happen? It only started recently (like a week or two ago). So it would be a new thing that people are seeing.

    I'll post the reports once I'm through running everything.

    Until then guys and gals.... :)
     
    markem, Jul 3, 2012
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Hard to say without seeing the log.
     
    TimW, Jul 5, 2012
    #2
  3. markem

    markem Private First Class

    Yes - I know! :-o

    I'm doing six computer systems at once (since one was acting up) and it is taking a while to do them all. However, I have an update. :)

    After running Hitman it found two different viruses. One I know not to be a virus because I have talked directly with the developer and he told me that sometimes it does show up as a virus for unknown reasons. I submitted it to the Avira team and they said it was not a virus. So a false positive on that one but the other is possibly a virus. However, Avira says it is not a virus when it checks it.

    I'm zipping up the folder with all of the reports in it. I should have it up here in a moment....
     

    Attached Files:

    markem, Jul 5, 2012
    #3
  4. markem

    markem Private First Class

    And of course - I left off one log. :-o

    What would life be without forgetting a log file? Oh wait! It would be a good thing! :)

    Anyway - here they are. :)
     

    Attached Files:

    markem, Jul 6, 2012
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am not finding any malware in your logs. Are you having any malware issues?
     
    TimW, Jul 6, 2012
    #5
  6. markem

    markem Private First Class

    I was but RogueKiller seems to have taken care of that. What was happening was that the close button (ie: the X in the upper right corner) of the apps on that machine was greying out and then the menus would not function properly either (they were completely greying out). I would have to start Task Manager and kill the application. Which application you ask? All of them except Task Manager.

    After running RogueKiller and having it correct everything (I did all of the buttons) - the problem stopped. So now everything is running perfectly. The only malware that showed up was in HitmanPro and Avira has stated that those are not really viruses/malware. Both files were sent to Avira for testing and they are now listed as false positives

    On a related subject - has anyone noticed that Adobe's Flash installer can actually halt a system? I've had it completely bring a system to a halt as well as make it so the system can not connect to the internet. The new installer they are using seems to work better but it too can cause a system to just be unable to get onto the internet. Usually a reboot will bring the installer up and make it ask if it can install the update. Adobe's Flash updater is the only update program I'm aware of that does this.

    Thoughts on this?
     
    markem, Jul 7, 2012
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Probably something you should address in the software forum.

    If you are not having any other malware problems, it is time to do our final steps:

    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no real time protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.We recommend them for doing backup scans when you suspect a malware infection.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /uninstall
        • Notes: The space between the combofix" and the /uninstall, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.


    3. Go back to step 6 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    6. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    7. Go to add/remove programs and uninstall HijackThis.
    8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning procedures pointed to by step 7 of the READ ME
        for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.

    10. After doing the above, you should work thru the below link:


    Malware removal from a National Chain = $149
    Malware removal from MajorGeeks = $0
     
    TimW, Jul 8, 2012
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds