Malware probs-trying to help Dad out

Discussion in 'Malware Help (A Specialist Will Reply)' started by jmager4132, May 15, 2008.

  1. jmager4132

    jmager4132 Private E-2

    Hi,
    I had malware issues a few months ago and got them solved, thanks so much to you guys. Now my Dad picked up some kind of something that is causing his system to hang and disconnecting his high speed internet connection. Also causing numerous program errors in IE. His system got infected about one week ago and he thinks he opened an email attachment or possibly went to a link on an email. I did the Read and Run Me First and attached is the logs I got for him. Any help you guys could provide would be most welcome!!
    I can't figure out how to get the Super Anti Spyware log and the malware bytes log, if you need these let me know!
    Thank you!!!
    Julie
     

    Attached Files:

    jmager4132, May 15, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Yes you need to attach them. The instructions in the READ ME explain how to get them. You other logs are clean so unless these really showed anything major, your problems may not be malware.

    I suggest you take the below non-malware steps which may help speed things up a little but this will not help connection issues which would more likely be hardware related. And if you are getting crashes of IE, this could mean you have software issues within Windows which would have to be debugged in the Software Forum.


    Run this Disable/Remove Windows Messenger to remove Windows Messenger. Do not confuse Windows Messenger with MSN Messenger because they are not the same. Windows Messenger is a frequent cause of popups.


    Uninstall the below software as requested in step 1 of the READ ME:
    Java(TM) 6 Update 3
    Java(TM) 6 Update 5
    Java(TM) SE Runtime Environment 6 Update 1
    Viewpoint Media Player <-- should have been uninstalled in step 0 of the READ ME


    Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

    O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
    O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

    After clicking Fix, exit HJT.


    Now reboot!

    After reboot, now install the current version of Sun Java from: Sun Java Runtime Environment
     
    chaslang, May 15, 2008
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds