Malware and external hard drives

Discussion in 'Malware Help (A Specialist Will Reply)' started by karenr, Dec 5, 2008.

  1. karenr

    karenr Private E-2

    Hi, I got a virus while I had a USB external hard drive connected to my laptop. Soon after, I disconnected the external drive, and have been following the instructions here for malware removal on my C: drive.

    Should I be scanning my external hard drive too, and if so, how much of the protocol do I need to do?

    Thanks,
    Karen
     
    karenr, Dec 5, 2008
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You need to do all of the protocol with the external drive connected.
     
    TimW, Dec 6, 2008
    #2
  3. karenr

    karenr Private E-2

    Thanks.. that means I need to repeat the whole protocol? I would assume so, but am asking because the instructions say that if you still have problems to NOT repeat the protocol.

    Can I run only the scans that I didn't run with the external drive connected before? In other words, is it necessary to go through the protocol in the exact order given?

    Thanks again,
    Karen
     
    karenr, Dec 6, 2008
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Run SAS, MBAM and Combo with the drive connected....then attach first the logs from your first run when the external was not connected and then the logs with the drive connected. Make sure you tell me which are which.

    You do not have to go thru all of it...just the scans.
     
    TimW, Dec 6, 2008
    #4
  5. karenr

    karenr Private E-2

    Hi Tim, ok, I think I have everything! First here are the logs I did with the external hard drive disconnected. The next post will contain the logs since connecting the external drive.
     

    Attached Files:

    karenr, Dec 6, 2008
    #5
  6. karenr

    karenr Private E-2

    Here are 3 logs from today, with external hard drive connected. ComboFix is in the next post.
     

    Attached Files:

    karenr, Dec 6, 2008
    #6
  7. karenr

    karenr Private E-2

    ComboFix log.
     

    Attached Files:

    karenr, Dec 6, 2008
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your logs are clean. :)

    If you are not having any other malware problems, it is time to do our final steps:

    1. We recommed you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no real time protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /u
        • Notes: The space between the combofix" and the /u, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.

      • Delete the C:\combofix folder from combofix (if it exists)

    3. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    4. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Go to add/remove programs and uninstall HijackThis.
    6. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
    7. If you are running Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning steps in the READ ME for your Window version and see the steps to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.

    8. After doing the above, you should work thru the below link:

     
    TimW, Dec 7, 2008
    #8
  9. karenr

    karenr Private E-2

    Yay! Nice to hear good news! :celebrate

    Am following the instructions To The Letter now.

    Thanks a million.. Even with the well-written instructions, I wouldn't have felt confident to do this on my own without this support.

    Best,
    Karen
     
    karenr, Dec 7, 2008
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are most welcome...safe surfing. :)
     
    TimW, Dec 8, 2008
    #10

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds