Just need a little help, Could someone tell me if they see any problems?

Discussion in 'Malware Help (A Specialist Will Reply)' started by LexTrex, Aug 19, 2010.

  1. LexTrex

    LexTrex Private E-2

    Hello,I just need someone to look at my HijackThis Log for any problems.See,I had a pretty bad infection awhile back that was hijacking internet explorer and redirecting me to all kinds of different sites.Luckly, i could still use Opera and Firefox to surf the web for solutions.I ran every scan i could find.if a scan found something and deleted it,It would just keep coming back.Finally,i just decided to take the chance and run Combo fix,Well,it worked and everything been running pretty smooth sense then.But i now know and realize that i could still be infected so decided i better be safe and ask a more qualified person.So what do you think?Thanks for your time and Sorry for my mistakes. Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 3:20:09 PM, on 8/19/2010
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal
     
    Last edited by a moderator: Aug 19, 2010
    LexTrex, Aug 19, 2010
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    TimW, Aug 19, 2010
    #2
  3. LexTrex

    LexTrex Private E-2

    RootRepeal.exe won`t start?

    Hi,I been going through all the steps of the READ & RUN ME FIRST. Malware Removal Guide as i was told to do,everything was going good until i got to the RootRepeal.exe scan,It won`t load up,it keeps saying initializing,maybe i`m not giving it enough time,how long should it take to start up?I tried it several times for over an hour,I did run SUPERAntiSpy,Malwarebytes,and ComboFix,they all seemed to run right but i did get a Microsoft Pev.exe error report while running COMBOFIX!! that said either send report or don`t send or hit debug,I HIT DEBUG and combofix continued,What is Pev.exe?I also should tell you that when i first got that bad infection that i was talking about in my first post that it disabled system restore and other important programs,I think it was a older version of combo fix that straightened it out,I should have come here in the first place,then i would have known for sure i was clean,thats why i`m here now just making sure.I`m going to post the logs for the scans i`ve run so far and wait for a reply before i run anymore of the scans.Thanks for your help and time. SUPERAntiSpyware Scan Log
    http://www.superantispyware.com
     

    Attached Files:

    Last edited by a moderator: Aug 21, 2010
    LexTrex, Aug 20, 2010
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    So far those logs look good, but I still need the C:\MGLogs.zip --> from running the C:]MGTools.exe.
     
    TimW, Aug 21, 2010
    #4
  5. LexTrex

    LexTrex Private E-2

    Hey,Ok heres the last scan info i hope.Thanks for your help and time,Take care:wave
     

    Attached Files:

    LexTrex, Aug 22, 2010
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your logs are clean.

    If you are not having any other malware problems, it is time to do our final steps:

    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no real time protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.We recommend them for doing backup scans when you suspect a malware infection.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /uninstall
        • Notes: The space between the combofix" and the /uninstall, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.


    3. Go back to step 6 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    6. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    7. Go to add/remove programs and uninstall HijackThis.
    8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning procedures pointed to by step 7 of the READ ME
        for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.

    10. After doing the above, you should work thru the below link:




    Support MajorGeeks with Geek Wear!
     
    TimW, Aug 22, 2010
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds