Want to make sure READ & RUN ME FIRST worked.

Discussion in 'Malware Help (A Specialist Will Reply)' started by Xitorax, Mar 4, 2009.

  1. Xitorax

    Xitorax Private E-2

    Hi, I'm new here and I know just basic computer stuff. About 4 days ago I started getting multiple iexplore.exe processes running on my Task Manager and usually one of them would open up some type or radio station, but I would have no internet explorer windows open.

    What I was doing when this happened to me is this: I downloaded various utilities programs like ashampoo winoptimizer 6, glary utilities, rambooster, auslogics boostspeed, perfectdisk 10 pro, and tuneup utilities 2009. Previously I had installed HotSpot shield to surf the web anonymously. Well I ran/used all the utilities and just automatically optimized everything on every one of them. Thats when my PC started failing. I used the restore ability on all of them and tried uninstalling all the programs of my PC that I didnt use but then my PC restarted and then every time windows started loading explorer it would restart again.

    So I used system restore and restored my system to the earliest restore point available which was right before I used the restore ability on the programs because the utilities/optimizers erased all my other restore points. So I googled multiple iexplore.exe processes and found you guys. I did the READ & RUN ME FIRST and thats where I am now.

    Well, everything seems to be working fine, but since I read in several threads that iexplore.exe seems to come back after a while I want to know if somebody can check my logs and see if theres anything READ & RUN ME FIRST missed. Thank you for your time and sorry for the long post.
     

    Attached Files:

    Xitorax, Mar 4, 2009
    #1
  2. Xitorax

    Xitorax Private E-2

    Here are the remaining logs. Thank you.
     

    Attached Files:

    Xitorax, Mar 4, 2009
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your logs are clean....but you need to use windows explorer to find and delete:
    c:\windows\system32\16.tmp
    c:\windows\system32\13.tmp
    c:\windows\system32\set38.tmp

    Then run CCleaner.

    I am not familiar with Hot Spot shield other than reading the poor reviews it has gotten.

    If you are not having any other malware problems, it is time to do our final steps:

    1. We recommed you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no real time protection. They are useful as backup scanners. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /u
        • Notes: The space between the combofix" and the /u, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.

      • Delete the C:\combofix folder from combofix (if it exists)

    3. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    4. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Go to add/remove programs and uninstall HijackThis.
    6. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
    7. If you are running Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning steps in the READ ME for your Window version and see the steps to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.

    8. After doing the above, you should work thru the below link:

     
    TimW, Mar 6, 2009
    #3

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds