Question About Following Read & Run Me First Malware Removal Guide

Discussion in 'Malware Help (A Specialist Will Reply)' started by arthurfp, Sep 20, 2016.

  1. arthurfp

    arthurfp Private E-2

    While using the Google Chrome internet browser, moments ago, the page I was attempting to open turned bright red and was overtaken by what appears to be a Security Essentials message. There are various smaller windows with messages telling me that my personal logins and bank information was targeted so I need to freeze my accounts and contact 1(888) 944-5964 for the urgent help needed.

    Because I have had a Security Essentials message in the recent past that turned out to be nothing, I am not panicking. Last time, I did call the phone number but found that it was just a company trying to get me to pay for their clean-up services. I declined their services and, instead, went to the Major Geeks Malware Removal Guide and had an expert confirm that all was well.

    Consequently, I think it is possible this alert (although it has a much more elaborate screen presentation) may also be a fake so I am back again to follow the removal protocol. I am now at the prep-step of using the CCleaner, but the supposed Security Update will not allow me to close the Google Chrome window. It just makes a dinging sound. Should I tell the CCleaner to force it to shut down?

    Thanks, in advance, for any guidance that can be provided. I would like to get through the protocol ASAP in case the alert is valid!
     
    arthurfp, Sep 20, 2016
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am sure it is a fake alert. Go ahead and force the closure then do the requested scans and we will look at your system.
     
    TimW, Sep 20, 2016
    #2
  3. arthurfp

    arthurfp Private E-2

    Thank you; I will follow your instructions and post the logs, right away.
     
    arthurfp, Sep 20, 2016
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Whenever you are ready.
     
    TimW, Sep 20, 2016
    #4
  5. arthurfp

    arthurfp Private E-2

    Sorry for the delay...here are the logs. Please let me know if you need me to do anything else!
     

    Attached Files:

    arthurfp, Sep 20, 2016
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your logs are clean.

    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Renable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    3. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    4. If running Vista, Win 7 or Win 8 or 10, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Now goto the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    7. After doing the above, you should work thru the below link:
     
    TimW, Sep 20, 2016
    #6
  7. arthurfp

    arthurfp Private E-2

    I have followed your final instructions, yet I do not understand what caused the strange occurrence, this morning. Still, I am glad that you don't see any serious problems resulting from the Google Chrome take-over I experienced, and I am deeply grateful for all of your help!
     
    arthurfp, Sep 20, 2016
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    It was probably a drive-by ad. Just trying to make you call the "help" number.
     
    TimW, Sep 20, 2016
    #8
  9. arthurfp

    arthurfp Private E-2

    Oh, I did not know that an ad could have the power to lock-up my browser...at least not without having malware as a component. I also still don't know how the ad got onto my browser in the first place. I feel badly if I over-reacted and wasted your time. It certainly was not my intention!

    Do you think it would be possible to safely visit the webpage I was attempting to visit when this alert first hijacked Google Chrome or should I abandon that hope? I was in the process of investigating a spelling program for my son so it wasn't anything that seemed risky, but I clearly don't understand the situation, fully. Thanks, again, for any advice you could offer.
     
    arthurfp, Sep 20, 2016
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Well, the "malware" did no harm, so you just need to be aware of the situation. You might want to contact the website and let them know that one of their ads is serving up malware.
     
    TimW, Sep 20, 2016
    #10
  11. arthurfp

    arthurfp Private E-2

    I appreciate your suggestion! Have a peaceful evening...
     
    arthurfp, Sep 20, 2016
    #11
  12. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You're welcome.
     
    TimW, Sep 21, 2016
    #12

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds