Malware Found

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by RenegadeT, Sep 27, 2017.

  1. RenegadeT

    RenegadeT Private E-2

    I performed the Read Me and found viruses. I did not perform the hitman pro correctly and cleaned up the viruses because I did not follow the directions properly. Here are my files.
     

    Attached Files:

    RenegadeT, Sep 27, 2017
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Rerun RogueKiller and have it remove these items:

    ¤¤¤ Files : 8 ¤¤¤
    [Hj.Shortcut][File] C:\dell\NapsterActivation\Free year of music from Dell.lnk [LNK@] C:\Windows\explorer.exe "http://www.napster.com/dell/year60.html?code=TKLSyobuct7elhZwfGeTfg2" -> Found
    [Hj.Shortcut][File] C:\Users\Laura\Desktop\Free year of music from Dell.lnk [LNK@] C:\Windows\explorer.exe "http://www.napster.com/dell/year60.html?code=TKLSyobuct7elhZwfGeTfg2" -> Found
    [PUP.Gen1][Folder] C:\Users\Laura\AppData\Local\YSearchUtil -> Found
    [PUP.Gen1][Folder] C:\Program Files (x86)\Yahoo!\yset -> Found
    [Hj.Shortcut][File] C:\Users\Default\Desktop\Free year of music from Dell.lnk [LNK@] C:\Windows\explorer.exe "http://www.napster.com/dell/year60.html?code=TKLSyobuct7elhZwfGeTfg2" -> Found
    [Hj.Shortcut][File] C:\Users\DefaultAppPool\Desktop\Free year of music from Dell.lnk [LNK@] C:\Windows\explorer.exe "http://www.napster.com/dell/year60.html?code=TKLSyobuct7elhZwfGeTfg2" -> Found
    [Hj.Shortcut][File] C:\Users\Laura\Desktop\Free year of music from Dell.lnk [LNK@] C:\Windows\explorer.exe "http://www.napster.com/dell/year60.html?code=TKLSyobuct7elhZwfGeTfg2" -> Found
    [Hj.Shortcut][File] C:\Users\Laura2\Desktop\Free year of music from Dell.lnk [LNK@] C:\Windows\explorer.exe "http://www.napster.com/dell/year60.html?code=TKLSyobuct7elhZwfGeTfg2" -> Found

    Reboot and rescan with RogueKiller and attach the new log.

    Please tell me what issues you are having.
     
    TimW, Sep 27, 2017
    #2
  3. RenegadeT

    RenegadeT Private E-2

    Avira antivirus won't run and the system keeps saying it needs to repair errors. It has to restore to a previous versions. I am currently running RogueKiller and will post the file when it is completed.
     
    RenegadeT, Sep 27, 2017
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Well, I wasn't finding any malware....so maybe a system restore is what you need. If you need help with that, you should post in the software forum.
     
    TimW, Sep 27, 2017
    #4
  5. RenegadeT

    RenegadeT Private E-2

    Thanks. Should I post the results of the RogueKiller log when I am finished rerunning and rebooting, or should I just complete and post asking about a system restore?
     
    RenegadeT, Sep 27, 2017
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Yes, let me see the RogueKiller log and then I will probably release you to the software forum.
     
    TimW, Sep 27, 2017
    #6
  7. RenegadeT

    RenegadeT Private E-2

    Here is the updated file.
     

    Attached Files:

    RenegadeT, Sep 27, 2017
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You can use RogueKiller to remove this junk:

    ¤¤¤ Registry : 11 ¤¤¤
    [PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-177030977-1827791361-2543135218-1001\Software\YahooPartnerToolbar -> Found
    [PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-177030977-1827791361-2543135218-1001\Software\YahooPartnerToolbar -> Found
    [PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! SearchSet -> Found
    [PUP.Gen0] (X64) HKEY_USERS\S-1-5-21-177030977-1827791361-2543135218-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {21FA44EF-376D-4D53-9B0F-8A89D3229068} : -> Found
    [PUP.Gen0] (X86) HKEY_USERS\S-1-5-21-177030977-1827791361-2543135218-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {21FA44EF-376D-4D53-9B0F-8A89D3229068} : -> Found

    If you want to do a restore, simply right click the start button, choose setting, choose Update and Security, then on the left, choose recovery. Follow the prompts.
     
    TimW, Sep 27, 2017
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds