No thumbnails in Vista after carryong out spyware removal

Discussion in 'Malware Help (A Specialist Will Reply)' started by Rick_1138, Sep 4, 2008.

  1. Rick_1138

    Rick_1138 Private E-2

    Hi all,

    i got a trojan-spy.win32 problem today on my pC.

    i followed the malware removal procedures on your help topic and it has removed the trojan.

    However my pc now has a problem.

    All of my files and pictures no longer show thumbnails.

    i have had a hunt about on the internet for an answer and have found 2 examples of exactly the same problem, just after removing a trojan spyware.

    Basically i can change the view settings and the icons will reappear, but as soon as i close the window and open it again i am back to having file names with white space above them.

    The fix of " uncheck the box that always shows icons, never thumbnails" doesn't work.

    All of the forum posts never get an answer after that fix.

    Its very annoying and no one seems to know what to do, and it only started after i used the anti spyware programs advised by your website.

    Any help would be greatly welcomed.
    kind regards

    Rick
     
    Rick_1138, Sep 4, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Please attach the logs that were reuested if you are still having problems. DO NOT run the procedure again. Attach the logs from the first run. As stated in the READ & RUN ME, you need to attach the logs if you still have problems after running the cleaning procedure.
     
    chaslang, Sep 5, 2008
    #2
  3. Rick_1138

    Rick_1138 Private E-2

    I only have logs for super spyware and malwarebytes as Combofix simply didn't work

    i closed everything and turned off all anti vires etc.

    i double clicked on the icon (it was saved to desktop) and it started, i got a little box with a green progress bar, it vanished, my icons all flickered....then nothing.

    All help would be great.

    i haven't loaded anything since doing these scans so if i need to do combi fix and MGtools etc, please let me know if i am doing something wrong.
     

    Attached Files:

    Rick_1138, Sep 5, 2008
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You can skip ComboFix for now but I do need your MGtools log to continue.


    After attaching the MGlogs.zip file from MGtools. Try booting your PC in safe mode and see if you can run ComboFix.
     
    chaslang, Sep 6, 2008
    #4
  5. Rick_1138

    Rick_1138 Private E-2

    i will run an mgtools just now.

    one thing i have noticed, in youtube i cannot see the little preview images of videos, i can see videos but no preview vids, i just get text saying what they are.

    i am pretty sure i got the trojan initally from a fake adobe popup saying i needed a new flash update.

    it all looked pretty legitimate and all the download stuff seemed adobe stamped, untill it asked to open the file and its file name was totally different, so i didn't open it.

    i am wondering if my flash may be a bit buggered after the malware removal...just a thought.
     
    Rick_1138, Sep 6, 2008
    #5
  6. Rick_1138

    Rick_1138 Private E-2

    here are the logs for MGtools as requested.
     

    Attached Files:

    Rick_1138, Sep 6, 2008
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    If not fixed after malware is removed, you may need to post in the Software Forum to resolve this. You may have lost various file associations or other settings.

    What flash? Are you referring to your BIOS?? I doubt it.

    Installing things to a C:\Program Files and also a D:\Program Files is not really a great idea. You only have one environment variable for this and it is set to ProgramFiles=C:\Program Files


    Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKCU\..\Run: [1uwD9F1HIf] C:\ProgramData\fstohgxa\foxebafw.exe
    O4 - HKLM\..\Policies\Explorer\Run: [1uwD9F1HIf] C:\ProgramData\fstohgxa\foxebafw.exe

    After clicking Fix, exit HJT.

    Now download The Avenger by Swandog46, and save it to your Desktop.
    • Extract avenger.exe from the Zip file and save it to your desktop
    • Run avenger.exe by double-clicking on it.
    • Do not change any check box options!!
    • Copy everything in the Quote box below, and paste it into the Input script here: part of the window:
    • Now click the Execute button.
    • Click Yes to the prompt to confirm you want to execute.
    • Click Yes to the Reboot now? question that will appear when Avenger finishes running.
    • Your PC should reboot, if not, reboot it yourself.
    • A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

    Now run Ccleaner!

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:
    • C:\avenger.txt
    • C:\MGlogs.zip
    Make sure you tell me how things are working now!
     
    chaslang, Sep 8, 2008
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds