Inherited computer with infections...

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Retrosteeve, Apr 10, 2006.

  1. Retrosteeve

    Retrosteeve Private E-2

    Normally I'm pretty careful and don't get infections, but this computer (which I got from someone else) is definitely not clean. Though it's been running Norton Internet Security all the time.

    So I've followed as much as possible of the advice to newbs here, and I'm stopping at the point where BitDefender tells me it can't disinfect me. The attachments tell the tale in detail.

    I've attached my system description, a description of my symptoms and of what I've done, and a log from BitDefender.

    What next?
     

    Attached Files:

    Retrosteeve, Apr 10, 2006
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You must continue on and complete ALL steps in the READ ME. Finish the PandaActiveScan and attach the log. Then follow step 7 exactly as written and attach the HijackThis log.
     
    chaslang, Apr 11, 2006
    #2
  3. Retrosteeve

    Retrosteeve Private E-2

    Holy sh*t I can't! I can't even get Internet Explorer to respond now. Firefox is working fine, IE is slow as molasses and won't bring up panda or anywhere else! Rebooting, but this is scary.
     
    Retrosteeve, Apr 11, 2006
    #3
  4. Retrosteeve

    Retrosteeve Private E-2

    Ok, Pandascan complete (2 more viruses found and disinfected), scan attached. Rebooted. Hijackthis run, scan attached. Thanks for any further advice.
     

    Attached Files:

    Retrosteeve, Apr 11, 2006
    #4
  5. Retrosteeve

    Retrosteeve Private E-2

    Continuing problems after running steps 1-7 of the README:

    1. Ad-aware cannot be updated or run. Times out while updating and can't be stopped.

    2. Spybot S&D cannot be updated or run. Times out while updating and can't be easily stopped.

    3. Internet Explorer is unusable, times out on everything. Firefox meanwhile works fine. IE seems to work better in Safe Mode. So something's going on still.
     
    Retrosteeve, Apr 11, 2006
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Have you deleted the email stuff that Panda found. I know it said disinfected but it may be a better idea to delete those infected emails.
     
    chaslang, Apr 11, 2006
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Is the below R0 line your valid start page?
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://wiki/twiki/bin/view/Main/WebHome

    What is the below process for?
    O4 - HKLM\..\Run: [UsbPhoneLinker] D:\K-200W USB Dialer.exe
     
    chaslang, Apr 11, 2006
    #7
  8. Retrosteeve

    Retrosteeve Private E-2

    1. yes, it's a local intranet address. local dns handled it. it's no longer valid now that the computer's home but I wouldn't expect big probs from that.

    2. I have a usb phone attached for skype, and that's the driver for the phone keys.

    3. previous post: I ran Panda a second time after rebooting and it didn't find the virus this time, though it found all the spyware stuff again (just cookies). I can still remove the mails though if they seem to exist.

    Netsky and another virus were found by Panda and by Bitdefender, do these symptoms resemble known ones for those or any of the tricky malware you know? What could I run to check for success or failure in removing them, considering that Spybot &c don't run on this machine, and neither does IE, except in Safe Mode?
     
    Retrosteeve, Apr 11, 2006
    #8
  9. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Well if you delete the infected emails by hand, just run the same programs that previously detected them (Panda or BitDefender).
     
    chaslang, Apr 11, 2006
    #9

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds