Malware, Trojan Vundo, Porn Pop Ups, Slow System, anything YOU can think of!!

Hello,

New to this site but love the tools. Hope someone may have an idea. Here are the basics. Windows XP, just updated yesterday, have current software and security updates. Using Verizon DSL, they have a "Security Suite", I laugh! My 12 yr. old decides to go to "Zwinky", "girls stuff", and dls some software, this was about a week ago. VIRUS! MALWARE! SPYWARE! PORN POP UPS(to be precise 1573 of these pop ups in 3 days), seemed quite odd to me. Okay, run virus protection, found 4 or 5 viruses..(Trojan.BXOI), killed, reboot, they are back. Run VundoFix.Exe...magically it finds the same files I cannot delete, not even thru command prompt removing attributes..love that program. Reboot, run the VundoFix again, another 5 of these dll's. Reboot, they are gone. Or so I think. Meantime, with two sets of pop up blockers running full speeed not allowing any pop ups(my choice), guess what they are still popping up, left and right. Okay so I download some coof stuff from this site. Malware Removal tools(didn't find any), Rootkit Tools(didn't find any), hacker software, I could go on people. Now here is the situation. Right now, I am running a scan through Panda, did the TrendMicro(took 22 hours); says I have rootkits and hacker tools installed. Oh, also did Microsoft's Malware Removal, absolutely nothing showed up. So my virus protection is being blocked from working. Some other program keeps trying to install itself every 5 seconds, I have parental controls on full, meaning I have to type a password in just to access this site. Pop up controls completely blocking ALL pop ups, they are still popping up strong. Anyone have any ideas of any other programs that may figure out the problem? Oh, don't know if this means much but one of the viruses found was the "my doom"....all this from one click on "Zwinky"????? A child's website? Lots of phishing going on as well, cant tell half the time if I am on a legit site or not. Could go out and buy WINXP, If I could find it....this virus/malware whatever deleted my ability to use System restore before the point of the virus infection. Got one of those pc's with "software" installed....no cd....any ideas? I thank you all for listening to my ranting. Wish I could restore or backup, but this tricky thing has me blocked at every angle.

 

Hi Matrix Dom!
Welcome to Major Geeks. Please run the following scan and then follow the instructions in the box below. Combofix has GMER built into it which is a rootkit scan, so that may give us some more information. The initial scan will hopefully give you a little relief so you can continue. After you've finished the Combofix scan and the others which follow, please post the logs to us. Let us know if you run into problems.

Run this utility:

After you've run Combofix, please follow the instructions and links in the box below!

​

abri

 

Hello,

Quick recap before attaching this file. Bought Panda Internet 2008. Does good job except it has found and killed everything but "ZANGO" and "IST" which like to frequent c:\Windows\SystemRestore\0000-0000-000\rp102\[SBTV.exe][SBTV.dll]<---this is an example of the file. Everytime Panda says it cannot do anything with it.So I tried to delete and rebooted and as we speak it must have recreated itself because I am still getting this dang pop-ups with 2 pop-up protection programs running. Also "core.sys", know its a system file ...correct? Panda keeps finding a "low level" virus in it and "suppposedly" disinfects. Asks for reboot, I do so and it comes right back. Does anyone know a program that will FIND and KILL "Zango" and "IST"?

I cannot figure out how to attach this thing.