Infected and need help!

Discussion in 'Malware Help (A Specialist Will Reply)' started by debarnold, Sep 17, 2006.

  1. debarnold

    debarnold Private E-2

    I'm new here and have some computer experience but am not an expert. My lovely son, through surfing to God knows where, has infected my computer with spyware. I returned to my computer on Thursday to find it frozen and when it finally booted up my desktop was hijacked and I had Pest Trap alerts all over it saying I was infected. I closed everything down and did some Google searches and found out Pest Trap is spyware. I immediately removed it via Add/Remove, did a Norton system scan which showed nothing (guess I won't be renewing.....what good is it?), purchased Spy Sweeper and did those scans, did Spyblaster, Spyware Doctor, Spyware Guard, somehow was able to get my desktop back, some more Google searching and found you guys after which I did a Spybot scan and an Ad Aware scan which showed SpySheriff, which was deleted.

    I ran through the SpySheriff specific instructions. I ran through the Read Me First thread. My logs are attached. I believe I'm still infected. My computer is running a little slow. It's taking somewhat longer to boot up and it's taking longer to shut off as well.

    Any help you can give will be very much appreciated.
     

    Attached Files:

    debarnold, Sep 17, 2006
    #1
  2. debarnold

    debarnold Private E-2

    Here's the other log. I did the Panda scan but when I tried to upload it, I received an error saying the file was 1.something MB and your limit is 250 KB. What to do? When I ran the scan, it said that I had 4137 spyware entries.
     

    Attached Files:

    debarnold, Sep 17, 2006
    #2
  3. debarnold

    debarnold Private E-2

    Attached is the Panda scan. I manually the cookies that kept showing up and the scan is much smaller now.
     

    Attached Files:

    debarnold, Sep 18, 2006
    #3
  4. debarnold

    debarnold Private E-2

    Re: Infected and need help! Windows XP/SP2

    Hi there, does anyone have any suggestions for my problem? I think I'm still infected. Can someone please check my logs and let me know? I would surely appreciate it. And thank you.:)
     
    debarnold, Sep 21, 2006
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Infected and need help! Windows XP/SP2

    Welcome to Majorgeeks! You don't have any malware issues. Most of your performance problems that remain may be due to things you installed.

    Is Spy Sweeper a trial program or a paid program? If trial, uninstall it now.

    Norton/Symantec is a massive resource hog too.

    Do you really need:
    Google Toolbar
    Yahoo Companion
    Comcast Toolbar

    You can use HijackThis to fix the below non-malware items. You just don't need to load these at startup and this will help performance a little too.
    Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
    O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab

    After clicking Fix, exit HJT.:
    Now reboot in normal mode and post a new HJT log.

    Make sure you tell me how things are working now.
     
    chaslang, Sep 22, 2006
    #5
  6. debarnold

    debarnold Private E-2

    Chaslang,

    Thanks for your instructions. I followed them all and my computer is running quicker. I decided to bite the bullet and uninstall Norton, even though I had just resubscribed. It's not worth the hassle since it didn't detect the spyware to begin with. I'm keeping Spy Sweeper because I subscribed to it last week and it is listed as one of the better ones on your site. I decided to go with AVG and Zone Alarm. All seems to be OK. Thanks for your help! HJT log attached.

    Debra
     

    Attached Files:

    debarnold, Sep 23, 2006
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Yes we do like Spy Sweeper but it can be too much for some PCs to run!

    You appear to still have some stuff from Symantec. Did you keep the below on purpose?
     
    chaslang, Sep 24, 2006
    #7
  8. debarnold

    debarnold Private E-2

    The only thing I kept on purpose was the Password Manager. It should be alright to delete the rest of the stuff though, yes?
     
    debarnold, Sep 24, 2006
    #8
  9. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Norton products are tightly integrated together. I'm not sure what particular pieces are required to make only the password manager work. The price to system performance may be rather high just to try and keep it.
     
    chaslang, Sep 25, 2006
    #9

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds