Seriously Stuck

Discussion in 'Malware Help (A Specialist Will Reply)' started by donihan47, Mar 21, 2009.

  1. donihan47

    donihan47 Private E-2

    Caught a trojan virus courtesy of my son's checking out some teenage sites. I've carefully followed instructions for Cleaning Windows XP. Still getting a notice each time I startup that I need to restart for changes to take place. (The virus speaking, I think.) I had also uninstalled McAfee security suite before trying the fixes. Now when I try to reinstall McAfee I get a msg stating that I do not have internet connection, although I obviously have one since I have tried the reinstall from the McAfee for Comcast download page. Called Comcast who told me to call McAfee. The McAfee "help" person was obviously a newbee and took me through all the obvious steps in her script. At the end of it we went to C:\Documents and Settings\All Users\Application Data and she had me read the folders in residence there. Finally, she informed me that I should contact Dell for help "uninstalling my multiple security centers", noting that MalwareBytes, PC Doctor, Spybot Search and Destroy, and Symantec are the problem. I have verified that none of these other than MalwareBytes (which is part of your recommended solution) are currently installed. I even uninstalled SUPERAntiSpyware (which was running when my system caught the virus) before trying to reinstall McAfee.
    So, here are the files requested.
    Would appreciate any help you can give to remove the last bits of whatever virus is infecting my system and advice on whether or not I should continue with McAfee (which is free to me from Comcast, my isp) or something else.
    I've been using McAfee products successfully for over 5 years together with the other antispyware/malware solutions with no issues so am reluctant to change.
    Thanks for the support of this forum.
    Don
     

    Attached Files:

    donihan47, Mar 21, 2009
    #1
  2. donihan47

    donihan47 Private E-2

    Here are the remaining files associated with my attempt to do a Windows XP cleaning.
     

    Attached Files:

    donihan47, Mar 21, 2009
    #2
  3. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Hi there and welcome. I am currently reviewing your logs and will get back to you with a set of instructions as soon as possible. Thanks for your patience.


    Kes
     
    Last edited by a moderator: Mar 25, 2009
    Kestrel13!, Mar 24, 2009
    #3
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Let's run the removal McAfee Removal Tool... then after that if you decide you wish to keep McAfee then try reinstalling and let us know how that pans out for you.

    Please download the McAfee Consumer Product Removal Tool

    Run this > Reboot your machine > and Run it again to get rid of remnants of McAfee.



    1) Please go to Add/Remove Programs and uninstall the following softwares then reboot your machine:

    • Ask Toolbar
    • Viewpoint Media Player (as requested per step 1 of the Read and Run Me First)

    2) Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

    Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

    After clicking Fix exit HJT.


    3) Now Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.


    Make sure that you tell me if you receive a success message about adding the above
    to the registry. If you do not get a success message, it definitely did not work.

    4) Also delete all files in the below folders except ones from the current date (Windows will not let you delete the files from the current day).

    • C:\WINDOWS\Temp
    • C:\Documents and Settings\Don\Local Settings\TEMP

    5) Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this and also attach the log from Combofix.

    6) Let us know of any problems you may have encountered with the above instructions and also let me know how things are running now.
     
    Kestrel13!, Mar 25, 2009
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds