Smithfraud-C.

Discussion in 'Malware Help (A Specialist Will Reply)' started by Rasta83, Sep 15, 2008.

  1. Rasta83

    Rasta83 Private E-2

    Hey guys....I download a program to watch this past weekend EPL soccer matches and whats worst, my team wasn't playing. Anyways, in exchange of that free program to which i don't even remember, i have been given a the above Malware. I went to my school's OIT for help and they did all they could. McAfee was unable to help but Spybot spotted and deleted others but i am left with this!!! Wats worse, my laptop won't let me in this great website so please help:(
     
    Rasta83, Sep 15, 2008
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Welcome to Major Geeks!

    Please follow the instructions in the below link and attach the requested logs when you finish these instructions.


    • If something does not run, write down the info to explain to us later but keep on going.
    • Do not assume that because one step does not work that they all will not.
    READ & RUN ME FIRST. Malware Removal Guide

    Notes:

    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode. You can running steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools on another PC and burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
     
    TimW, Sep 16, 2008
    #2
  3. Rasta83

    Rasta83 Private E-2

    These are the first two reports, I will attach the other ones on a different post.
    Thank You:)
     

    Attached Files:

    Rasta83, Sep 29, 2008
    #3
  4. Rasta83

    Rasta83 Private E-2

    i am going to try and post the mglogs.zip from a laptop cos i cant use my schools comp. Also it seems the virus and trojans were removed but still having connection issues. it goes on and off. My time on the laptop has changed from regular hours to 13:10 intead of 1:10.
     

    Attached Files:

    Rasta83, Sep 29, 2008
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your clock will be reset when we finish and do the final cleanup instructions. In the meantime, I do need the MGLogs.zip to see what else is still there. :)
     
    TimW, Sep 30, 2008
    #5
  6. Rasta83

    Rasta83 Private E-2

    Here is the last of the files after finding a computer:) but sadly my computer won't start up...i turn it on and it goes straight to the safe window but won't load either in safe mode or windows xp. I dnt know whether i'm just tech. inept or my comp. crashed:cry
     

    Attached Files:

    Rasta83, Oct 2, 2008
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Some of the new malware are wiping out system files and crashing computers. If you have your xp cd, you could try running this:
    Corrupt Registry Fix
     
    TimW, Oct 3, 2008
    #7
  8. Rasta83

    Rasta83 Private E-2

    Tim, i lost my xp cd....is there a way i can purchase one online and does it matter what brand or it has to be Hp since dats wat the laptop is? I'm just thinking of buying a new laptop for the woman since she's bugging the hell out of me but $$$ is tight:confused
     
    Rasta83, Oct 6, 2008
    #8
  9. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    TimW, Oct 6, 2008
    #9
  10. Rasta83

    Rasta83 Private E-2

    Okay, TimW, i used a copied version of the xp cd and i have got it up and running...how do i know there are viruses still on the computer?? do i re-run all the downloaded malware stuff and do the cleaning process again and post the logs for you guys or i am safe. Thank you a million for all your help:)
     
    Rasta83, Oct 8, 2008
    #10
  11. Rasta83

    Rasta83 Private E-2

    Just checking to see if my thread has not been left unnoticed thanks:)
     
    Rasta83, Oct 10, 2008
    #11
  12. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Bumping will set you back in the cue.....:(

    Good to know you are back up and running.

    Yes, I would like you to run these:
    SAS
    MWB's
    C:\MGtools\GetLogs.bat

    Then attach those logs. :)
     
    TimW, Oct 10, 2008
    #12
  13. Rasta83

    Rasta83 Private E-2

    I just finished running the malware's and here are the attached scan logs. There are still a few bugs somewhere i think. Thank you TimW:)
     

    Attached Files:

    Rasta83, Oct 10, 2008
    #13
  14. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    What issues are you having as I am not seeing any malware.

    Run this: Disable/Remove Windows Messenger to remove Windows Messenger. Do not confuse Windows Messenger with MSN Messenger because they are not the same. Windows Messenger is a frequent cause of popups.

    Please download ATF Cleaner by Atribune. This program does not require an installation. The executable actually runs the program.

    NOTE: This program is for Windows XP and Windows 2000 only. ATF Cleaner will remove all files from the items that are checked so if you have some cookies you'd like to save. Please move them to a different directory first.

    * Double-click ATF-Cleaner.exe to run the program.
    * Under Main choose: Select All
    * Click the Empty Selected button.

    If you use Firefox browser

    * Click Firefox at the top and choose: Select All
    * Click the Empty Selected button.
    o NOTE: If you would like to keep your saved passwords, please click No at the prompt.

    If you use Opera browser

    * Click Opera at the top and choose: Select All
    * Click the Empty Selected button.
    o NOTE: If you would like to keep your saved passwords, please click No at the prompt.

    Click Exit on the Main ATF Cleaner menu to close the program.

    Now download and install:
    Java Runtime 6
     
    Last edited: Oct 11, 2008
    TimW, Oct 11, 2008
    #14
  15. Rasta83

    Rasta83 Private E-2

    I have done all you asked me to do and it seems my computer is running very smoothly and i will make sure to check out the other tools for faster surfing. I will also make it a point to donate something when i get time:)Thank you so much:highfive:highfive
     
    Rasta83, Oct 12, 2008
    #15
  16. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    If you are not having any other malware problems, it is time to do our final steps:

    Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    Make sure that you tell me if you receive a success message about adding the above
    to the registry. If you do not get a success message, it definitely did not work.
     
    TimW, Oct 12, 2008
    #16

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds