Need Some Cleanup Help

Stiina59 · Feb 12, 2015

I'm back. I suspect my husband's computer trojans may be trying to infiltrate my machine. I'm not yet having the issues he did, but I want to make sure that if I have any worming their way in, that we get them removed now.

I started with the Hijacking Chrome process. I found nothing in the scans.

I'm attaching my logs. I had a little more trouble than usual getting the programs to run. BTW, this all started when my internet quit working and I found some changes to my security settings in IE, so I'm suspicious.

I appreciate all of your help!

Laura

TimW · Feb 12, 2015

I am not finding any malware in your logs.

Since you are not having any malware problems, it is time to do our final steps:

We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.

Renable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.

Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.

If running Vista, Win 7 or Win 8, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.

Now go to the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.

Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.

If you are running Win 8, Win 7, Vista, Windows XP or Windows ME, do the below to flush restore points:

Refer to the instructions for your WIndows version in this link: Disable And Enable System Restore

What we want you to do is to first disable System Restore to flush restore points some of which could be infected.

Then we want you to Enable System Restore to create a new clean Restore Point.

After doing the above, you should work thru the below link:

How to Protect yourself from malware!

Stiina59 · Feb 22, 2015

Thanks, TimW,

I had a little trouble with the System Restore step, but I think I've got it taken care of.

I always get hung up on the antivirus and firewall section. How do you know if you have a second of either? I keep getting McAfee installed as a tag-along on my computer and I keep uninstalling it (I see it's back on again) and the firewall...How do I find any duplicates on that? Do you have a trick to look-see if you have more than one?

My computer is still not running correctly. Seems to drop the internet a lot. I normally reset my adapter and I'm good, but it's incredibly frustrating for everything to just stop working. I run the CCleaner on my registry to see what's going on and I took a screenshot of the results. Would you please look at it to see if you find anything that needs to be corrected? I didn't delete anything, just ran the analysis to see if anything stood out. There is a reference to an "Elektra.exe" in there and the research I did indicated that I have damaged files, but I was reluctant to try any Wiki style corrections. It would be my luck that it would launch a new trojan onto my pc and I don't want to take any chances.

Thanks for your help. If there's not a problem then I will leave you guys alone until next time.

Laura

TimW · Feb 22, 2015

I suggest you pursue those questions in the software forum.

Log in or Sign up

Need Some Cleanup Help

Stiina59 Private First Class

Attached Files:

RKreport_SCN_02122015_043249.log

MBamLog_2-12-15.txt

TDSSKiller.3.0.0.44_12.02.2015_05.42.41_log.txt

HitmanPro_20150212_0601.log

MGlogs.zip

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

Stiina59 Private First Class

Attached Files:

CCleanerRegistryDmg_2-22-15.jpg

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member