Someones in control here, and it isn't ME

Discussion in 'Malware Help (A Specialist Will Reply)' started by jennosophy, Jan 29, 2008.

  1. jennosophy

    jennosophy Private E-2

    :cryI am at my wits END! Please help me figure out what is going on with this computer!!! My browser rarely opens to the same homepage, things are missing and changed all over the place, task manager doesn't even show me as being logged on and I constantly lose my secured wireless connection configurations!

    Please help me out!

    Thanks!
     

    Attached Files:

    jennosophy, Jan 29, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Your logs do not show any malware. They do show you have the below setup. Are these what you configured yourself:
    Perhaps you are just have issue with PC Tools Antivirus, Firewall, and Threatfire and along with the combination of A-squared. Since you only installed all of these from Jan 26th thru Jan 28th, perhaps this is your problem.

    I assume the below is from your wireless card?
    C:\Program Files\TRENDnet\TRENDnet TEW-421PC_TEW-423PI\WlanCU.exe

    Perhaps you need to reinstall this software if it is not running properly. Maybe you have somehow deleted something it need to load at startup. Also I see 3 folders for it which means you probably were playing with reinstalling. I see these:
    Code:
    "C:\Program Files\"
TRENDNET      Jan 10 2008              "TRENDnet"
TRENDN~1      Dec 18 2007              "TRENDnet(2)"
TRENDN~2      Dec 18 2007              "TRENDnet(3)"
     
    chaslang, Jan 30, 2008
    #2
  3. jennosophy

    jennosophy Private E-2

    Yes,
    'C:\Program Files\TRENDnet\TRENDnet TEW-421PC_TEW-423PI\WlanCU.exe'
    is my wireless network card that never has acted right. I have uninstalled and reinstalled (as you see ) however, I am not sure why it keeps acting like I have multiple cards running ??? It does warn me that it is not compatable with Windows, so I figured it to run funny from the start. I have taken the card out of my tower and am trying to run off my ethernet and my system won't detect it anymore. Thankfully I have a second system with which I am currently communicating with you, but my other system is useless now, as far as a connection. I was reluctantly preparing to go through a destructive recovery (I just did one last October).
    As far as :---Quote---
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL
    = about_:blank
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
    http://cm.my.yahoo.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
    about_:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL
    = about_:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
    about_:blank
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
    about_:blank
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =
    about_:blank
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    about_:blank
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    about_:blank
    ---End Quote---
    I kept having to use Spy Bot to change all the ?? entries to 'about blank' because my browser kept loading MSN randomly and other ?? home pages. The yahoo entry is valid.

    ??
    As far as running the applications mentioned I only recently added A-Squared Free after reading here at MG that you can run it in addition to whatever programs that one may be running. I understood it to act as a sort of 'add-on'. I will delete it since it seems to be a possible problem, however, my nightmare started before that installation.

    Thank you for you assistance.

    Perhaps you could offer your oppinion on the destructive recovery idea +/or the mystery behind my ethernet ?

    Thanks again.

    Jennosophy
     
    jennosophy, Feb 4, 2008
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Since you are not having malware problems, I suggest you post software related issues in the Software Forum and hardware related issues in the Hardware Forum.
     
    chaslang, Feb 4, 2008
    #4
  5. jennosophy

    jennosophy Private E-2

    Chaslang,

    My appologies, as I am aware that my most recent thread was off topic for this forum, I thought for clarity, (in reference to my original issues being suspected malware), I should continue communication with you -answering your pror inquiries - regarding that issue and subsequent issues, within the same original post.

    Again, appoligies - gladly I've managed to solve the issue without support.

    Jennosophy
     
    jennosophy, Feb 4, 2008
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    No need to apologize. Surf safely and you can do the below now.


    If you are not having any other malware problems, it is time to do our final steps:
    1. If we used ComboFix then UNINSTALL COMBOFIX (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN
      • Now type combofix /u in the runbox and click OK.
      • Note: The space between the X and the /U, it must be there.
    2. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
    3. After doing the above, you should work thru the below link:
     
    chaslang, Feb 5, 2008
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds