Malware on Dad's Computer

Discussion in 'Malware Help (A Specialist Will Reply)' started by SAK335, Nov 27, 2008.

  1. SAK335

    SAK335 Private E-2

    My fathers computer (running Vista) has some Malware and it's fairly malicious. Every time I try to download tools from this site, the malware prevents me from doing it or sends iexplorer to a different site.

    Found what I think is a tag to Antispyware 2009 and so I downloaded MGtools.exe from here onto my computer then used a jump drive to put it on his machine. I've attached the log to this note.
     

    Attached Files:

    SAK335, Nov 27, 2008
    #1
  2. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    http://www.majorgeeks.com/images/grenade.gifWelcome! to MajorGeeks.com!http://www.majorgeeks.com/images/grenade.gif

    Please follow the instructions in the below link and attach the requested logs when you finish these instructions.


    • If something does not run, write down the info to explain to us later but keep on going.
    • Do not assume that because one step does not work that they all will not.
    Notes:
    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode. You can run steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools on another PC and burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
     
    bjgarrick, Nov 28, 2008
    #2
  3. SAK335

    SAK335 Private E-2

    I followed the READ FIRST as best I could. I think the best bit of advice is to change the names of the spyware removal programs before trying to download. I used my PC to save them to a zip drive with changed names and was able to get them onto Dad's PC.

    The program that made the biggest impact was the Malwarebyte's followed by the ComboFix. Both found and deleted a number of files. That allowed me to restart in regular (not Safe) mode and then I could download Spybot and the other software.

    These are the logs that I produced:
     

    Attached Files:

    SAK335, Nov 28, 2008
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    We apologize for the delay..BJ has come down with the flu..the human form of malware.

    I will look at your logs and get back to you asap.

    Please also attach the log from ComboFix. :)

    Your MGLogs is empty...did you get an error message when you tried to run it...did you follow the instructions for running it on Vista?
     
    Last edited: Dec 6, 2008
    TimW, Dec 6, 2008
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds