Solve : I hope hope is on the way?

1.	Solve : I hope hope is on the way?
Answer» If I did this correct, I read about spyware listed information by evilfantasy. Followed the proceedure as best I could understand. Did the cleaner download and scanned per directions. So far, so good. Captured quite a bunch of items and made the list in notepad. Did it 3 times over because I had to keep going back to reread the directions, even though I printed them. Got to step 4 that said download (MBAM). It wouldn't work unless I used the alternate choice method. Then it said I need (NT) or something. Forgot to write it down. I have windows ME and it is a custom repaired from scrap machine with my old hard drive installed as a storage system. I beleive I got the trojans, etc from a fwd email requesting I add my name to the list and send it along in SUPPORT of something. I only read it, but the popups started comming the next time I went on line. I get about 10 to 15 in a row. Sometimes it locks up as I TRY to exit them. I beleive they are quarentined at the moment, but now I'm stumped as to what next. I'm not in a big rush, as I'm a bit busy elsewhere, but getting this resolved would lift a burden for sure. Thanks for the time you give to help others.I'm afraid you'll need to post theses three logs for Evil Fantasy to see Logs: 1)SUPERAntispyware Free Edition 2)Malwarebytes' Anti-Malware 3)HijackThis Thanks Ivy. but I didn't get all that far yet. I'll try to add what I have. [Saving space - attachment deleted by admin]here is tw of the three [Saving space - attachment deleted by admin]Third and last file saved from cleaner. Malware said neet windows NT version 4 or later. I'm too tired to keep on this tonight. Thank you all [Saving space - attachment deleted by admin]Wait, so what happened to MalwareBytes' and HijackThis? Sorry, but I couldn't get to that point. Malwarebytes said I needed NT version 4 or later. I guess I have to figure how tho do that, and then hijack this. Maybe tonight.still hoping. Not getting much of anywhere yet. Not good at reading so much info. I WONDER if I can just go to the scan for spyware program and delete the files. I don't have the pop ups any more, but some things show up in a file with only the right side of the page visable. I could just reinstall windows ME since I have the disk. Heard it may cause loss of some files I saved. I'm open for opinions.Please print these instructions as they will be needed later when Internet access is not available. Download SDFix by AndyManchesta and save it to your desktop. When using this tool, you must use the Administrator's account or an account with Administrative rights Double click SDFix.exe and it will extract the files to %systemdrive% (this is the drive that contains the Windows Directory, typically C:\SDFix). DO NOT use it just yet. Reboot your computer in Safe Mode using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode". Open the SDFix folder and double click RunThis.bat to start the script. Type Y to begin the cleanup process. It will remove any Trojan Services or Registry Entries found then prompt you to press any key to Reboot. Press any Key and it will restart the PC. When the PC restarts, the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons. Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt. Copy and paste the contents of the results file Report.txt in your next reply. Thank you evilfantasy but still have a problem. Could not save SDFIX to disc. It would kick me off the internet each time. Had to open on line then download. Next, safe mode OK but when opening SDFIX it gave error saying windows cannot find '%systemdrive%\SDFIX\apps\installed.txt'. Said to search in start menu. That found the file and the RUNTHIS bat. Next step showed file open with bad command or file name twice, then syntax error, then it terminated. The Y only confirmed that it terminated. Tried a few times. Still hoping there is hope. if I didn't mess up in the processing.Dr Web is portable. Just update it before transferring it over... Download DrWeb CureIt & save it to your desktop. Scan with DrWeb-CureIt as follows: Double-click on drweb-cureit.exe and then click Start. An Express Scan of your PC notice will appear. Under Start the Express Scan Now Click OK to start. This is a short scan that will scan the files currently running in memory. If or when something is found, click the Yes button when it asks you if you want to cure it. Once the short scan has finished, Click Options > Change settings Choose the Scan tab and UNcheck Heuristic analysis and click OK Back at the main window, select the Complete scan button. Then click the Green Arrow Start Scanning button on the right and the scan will start. Click Yes to all if it asks if you want to cure/move any file(s). When the scan is done. In the Dr.Web CureIt menu on top left, click File and choose Save report list. Save the DrWeb.csv report to your Desktop. Exit Dr.Web Cureit. Important! Reboot your computer because it could be possible that files in use will be moved/deleted during reboot. [/COLOR] After reboot, Right-click the Dr.Web log on the desktop and choose Open With > Notepad Copy and paste that log in the next reply Thanks again evilfantasy but still a minor problem-question. Dr Web Cureit, when selected comes to screen but stays saying 1 item remaining. I can probably PROGRESS from that point , I think, but I'm not sure what you mean by it is portable and to just update it before transferring it over. Should I download, then update? I'm not all that savy.Download then update it from a computer with internet access. Then put it on a disk and transfer it over to the infected computer.evilfantasy I'm dumb? Go to another computer, ie: my wifes laptop, and download it, then update it and save it to a disc, then install on my infected machine, right? If so, hers only has a CD drive and I doubt it can write to it, then I guess I need to find another computer with floppy disc to use it that way? Hope you are a patient as me. Thanks again

Answer»

If I did this correct, I read about spyware listed information by evilfantasy. Followed the proceedure as best I could understand. Did the cleaner download and scanned per directions. So far, so good. Captured quite a bunch of items and made the list in notepad. Did it 3 times over because I had to keep going back to reread the directions, even though I printed them. Got to step 4 that said download (MBAM). It wouldn't work unless I used the alternate choice method. Then it said I need (NT) or something. Forgot to write it down. I have windows ME and it is a custom repaired from scrap machine with my old hard drive installed as a storage system. I beleive I got the trojans, etc from a fwd email requesting I add my name to the list and send it along in SUPPORT of something. I only read it, but the popups started comming the next time I went on line. I get about 10 to 15 in a row. Sometimes it locks up as I TRY to exit them. I beleive they are quarentined at the moment, but now I'm stumped as to what next. I'm not in a big rush, as I'm a bit busy elsewhere, but getting this resolved would lift a burden for sure. Thanks for the time you give to help others.I'm afraid you'll need to post theses three logs for Evil Fantasy to see

Logs:

1)SUPERAntispyware Free Edition

2)Malwarebytes' Anti-Malware

3)HijackThis
Thanks Ivy. but I didn't get all that far yet. I'll try to add what I have.

[Saving space - attachment deleted by admin]here is tw of the three

[Saving space - attachment deleted by admin]Third and last file saved from cleaner. Malware said neet windows NT version 4 or later. I'm too tired to keep on this tonight. Thank you all

[Saving space - attachment deleted by admin]Wait, so what happened to MalwareBytes' and HijackThis? Sorry, but I couldn't get to that point. Malwarebytes said I needed NT version 4 or later. I guess I have to figure how tho do that, and then hijack this. Maybe tonight.still hoping. Not getting much of anywhere yet. Not good at reading so much info. I WONDER if I can just go to the scan for spyware program and delete the files. I don't have the pop ups any more, but some things show up in a file with only the right side of the page visable. I could just reinstall windows ME since I have the disk. Heard it may cause loss of some files I saved. I'm open for opinions.Please print these instructions as they will be needed later when Internet access is not available.

Download SDFix by AndyManchesta and save it to your desktop.

When using this tool, you must use the Administrator's account or an account with Administrative rights

Double click SDFix.exe and it will extract the files to %systemdrive%
(this is the drive that contains the Windows Directory, typically C:\SDFix).
DO NOT use it just yet.

Reboot your computer in Safe Mode using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".

Open the SDFix folder and double click RunThis.bat to start the script.

Type Y to begin the cleanup process.
It will remove any Trojan Services or Registry Entries found then prompt you to press any key to Reboot.
Press any Key and it will restart the PC.
When the PC restarts, the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.
Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt.
Copy and paste the contents of the results file Report.txt in your next reply.

Thank you evilfantasy but still have a problem. Could not save SDFIX to disc. It would kick me off the internet each time. Had to open on line then download. Next, safe mode OK but when opening SDFIX it gave error saying windows cannot find '%systemdrive%\SDFIX\apps\installed.txt'. Said to search in start menu. That found the file and the RUNTHIS bat. Next step showed file open with bad command or file name twice, then syntax error, then it terminated. The Y only confirmed that it terminated. Tried a few times. Still hoping there is hope. if I didn't mess up in the processing.Dr Web is portable. Just update it before transferring it over...

Download DrWeb CureIt & save it to your desktop.

Scan with DrWeb-CureIt as follows:

Double-click on drweb-cureit.exe and then click Start.
An Express Scan of your PC notice will appear.
Under Start the Express Scan Now Click OK to start.
- This is a short scan that will scan the files currently running in memory.
- If or when something is found, click the Yes button when it asks you if you want to cure it.
Once the short scan has finished, Click Options > Change settings
Choose the Scan tab and UNcheck Heuristic analysis and click OK
Back at the main window, select the Complete scan button.
Then click the Green Arrow Start Scanning button on the right and the scan will start.
- Click Yes to all if it asks if you want to cure/move any file(s).
When the scan is done.
In the Dr.Web CureIt menu on top left, click File and choose Save report list.
Save the DrWeb.csv report to your Desktop.
Exit Dr.Web Cureit.

Important! Reboot your computer because it could be possible that files in use will be moved/deleted during reboot.

[/COLOR]

After reboot, Right-click the Dr.Web log on the desktop and choose Open With > Notepad
Copy and paste that log in the next reply

Thanks again evilfantasy but still a minor problem-question. Dr Web Cureit, when selected comes to screen but stays saying 1 item remaining. I can probably PROGRESS from that point , I think, but I'm not sure what you mean by it is portable and to just update it before transferring it over. Should I download, then update? I'm not all that savy.Download then update it from a computer with internet access. Then put it on a disk and transfer it over to the infected computer.evilfantasy I'm dumb? Go to another computer, ie: my wifes laptop, and download it, then update it and save it to a disc, then install on my infected machine, right? If so, hers only has a CD drive and I doubt it can write to it, then I guess I need to find another computer with floppy disc to use it that way? Hope you are a patient as me. Thanks again

Solve : I hope hope is on the way?

Discussion

No Comment Found

Related InterviewSolutions

Reply to Comment