Is this computer clean?

Discussion in 'Malware Help (A Specialist Will Reply)' started by trisha, Jun 22, 2015.

  1. trisha

    trisha Corporal

    I did a factory reset on this computer. When I installed Avast and ran a scan it said it found a rootkit. It suggested I delete the file and then allow the scan to continue a boot, which I did.

    I decided I would come here and run your Malware Scans. Logs are attached. I had a problem with TDS Killer where it said it could not inilialize and then the desktop went black and another window suggested a restart to load advanced files. I did this but the program said it didn't find anything.

    HitManPro found some Ask.com files and suggested I delete, however, your instructions said to not delete anything without guidance so I told the program to ignore those three files.

    That's about it.
     

    Attached Files:

    trisha, Jun 22, 2015
    #1
  2. trisha

    trisha Corporal

    Here is TDSKiller log
     

    Attached Files:

    trisha, Jun 22, 2015
    #2
  3. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Hello, Trisha

    Only a couple of things to do.. Using Windows Explorer, please delete this trialware folder --> C:\ProgramData\Norton.

    Then download Junkware Removal Tool to your desktop.
    • Make sure to shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
    • The tool will open and start scanning your system.
    • Note: That JRT may reset your home page to a google default so you will need to restore your home page setting if this happens.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.

    With such minor cleaning needed, we'll finish up now: If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase it, it provide no protection. It do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. Go back to step 6 of the READ ME and re-enable your Disk Emulation software with Defogger if you had disabled it.
    3. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    4. If running Vista, Win 7/8 - it is time to make sure you have re-enabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Go to add/remove programs and uninstall HijackThis.
    6. Go to the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    7. After doing the above, you should work through the below link:
    Safe surfing! http://i268.photobucket.com/albums/jj5/drmoriarty/Emoticons/char145.gif
     
    dr.moriarty, Jun 22, 2015
    #3
  4. trisha

    trisha Corporal

    Thank you. I kept getting a warning about JRT being dangerous even after disabling Avast. Finally got it to download and save to Desktop. It got rid of 3 registry junk files. I will attach the jrt.log file. Can I run HitManPro again to get rid of the Ask.com references?

    Thank you for all of your help and responding so quickly.

    Never mind about the jrt.log. I ran it twice and instead of saving two files, it overwrote the first file so it doesn't show what it got rid of the first go round. Oops.
     

    Attached Files:

    • JRT.txt
      File size:
      610 bytes
      Views:
      5
    trisha, Jun 23, 2015
    #4
  5. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Sure - rerun Hitman Pro to see if those PUP still remain; if so fix them. Both JRT and Hitman overlap a bit on detecting Askbar and we'll use them both.

    Attach the updated Hitman Pro log please.
     
    dr.moriarty, Jun 23, 2015
    #5
  6. trisha

    trisha Corporal

    HitmanPro log attached. This time it only had one ASK reference. I deleted it.

    Is it necessary to flush the system restore?
     

    Attached Files:

    trisha, Jun 23, 2015
    #6
  7. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Hi

    Noting the recent factory restore and what little junk that was found, I didn't see the need to flush the restore points and therefore removed that from the final instructions.

    You should be "Good to go!".
     
    dr.moriarty, Jun 23, 2015
    #7
  8. trisha

    trisha Corporal

    Thank you again, dr.moriarty.
     
    trisha, Jun 24, 2015
    #8
  9. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    :wave
    You're very welcome, trisha.
     
    dr.moriarty, Jun 24, 2015
    #9

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds