Multiple IExplore.exe, System Security Virus, Protection Security Virus, Virumonde

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by BruceB12, Jul 19, 2009.

  1. BruceB12

    BruceB12 Private E-2

    I have encountered various viruses that I can't remove.

    I ran SuperAntispy..it crashed when trying to remove the files.
    Ran Malwarebytes...couldn't get updates.
    Combofix crashed...gave a comprimised file message.
    Ran Rootrepeal
    Ran MgTools...closed when trying to get 'system information'

    I have attached the logs

    Thanks in advance for your help
     

    Attached Files:

    BruceB12, Jul 19, 2009
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Multiple IExplore.exe, System Security Virus, Protection Security Virus, Virumond

    Welcome to Major Geeks!

    Did you try what the procedure suggested for crashes. See SUPERAntiSpyware - running & getting a log

    Try running ComboFix in safe boot mode and make sure you shutdown protection software first. Tell us if you are seeing any messages about "ComboFix package has been compromised" or anything about a Virut infection.

    You need to attach the C:\MGlogs.zip file.

    Your Malwarebytes log shows you took no action. Did you save the log before fixing problems? Double check and this time make sure you fix any problems found first and then save the log.
     
    Last edited: Jul 21, 2009
    chaslang, Jul 21, 2009
    #2
  3. BruceB12

    BruceB12 Private E-2

    Re: Multiple IExplore.exe, System Security Virus, Protection Security Virus, Virumond

    will do..will run Superantispyware, Malwarebytes and Combo.fix in safemode. Maybe I need save the log before fixing the problems..

    thanks for getting back with me

    Bruceb12
     
    BruceB12, Jul 21, 2009
    #3
  4. BruceB12

    BruceB12 Private E-2

    Re: Multiple IExplore.exe, System Security Virus, Protection Security Virus, Virumond

    oops..meant to say maybe i DID save the log before fixing the problems..
     
    BruceB12, Jul 21, 2009
    #4
  5. BruceB12

    BruceB12 Private E-2

    Re: Multiple IExplore.exe, System Security Virus, Protection Security Virus, Virumond

    Thanks for your reply. I ran SAS in safe mode, Malwarebytes in regular mode. Tried to run Combo fix in safe mode, but still have the same error message as before(package is compromised, possible Vundo variant). Also tried to run MGtools but still have the same problem with it to.

    I am attaching the SAS log, MBAM log, MGzip file as required. I also attached the error.text from combofix

    thanks again for your assistance.

    I forgot to note that i can't do a system restore either. When trying to restore, i get a message that it was closed by group policy, whatever that is.

    bruce
     

    Attached Files:

    BruceB12, Jul 23, 2009
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Multiple IExplore.exe, System Security Virus, Protection Security Virus, Virumond

    I can see the reason for your problems. You do have a Virut infection. Your logs show that your Windows Operating system files (and many other files, even ones from MGtools) have become infected and there is no known reliable fix for this. In addition there are many many other infected files. We could spend a lot of time trying to remove this infection, but odds are that it will not work because the nature of the infection has so many executable system files infected that as soon as we fix one file, other files that are infected will almost immediately or upon the next reboot, just reinfect the files. In addition, your PC would still basically be unreliable/untrustworthy even if we manage to fix the infected files that we can see since there could be many more that we are not seeing.

    The safest thing for you to do is backup your personal data immediately since your PC could possibly become unbootable at any point in time. Do not back up any executable files. This includes programs that you have downloaded since any of them could be infected.

    Once you backup, you need to format partitions and reinstall Windows and all other software especially your protection software. Then install all updates for all software. DO NOT reinstall from any executable file backups you made while this PC was infected or you will just be reinstalling the infection.

    Make sure you properly update your Windows OS after reinstalling (you were running barebones original XP which is dangerous) and also install proper protection. See this:: How to Protect yourself from malware!
     
    chaslang, Jul 23, 2009
    #6
  7. BruceB12

    BruceB12 Private E-2

    Re: Multiple IExplore.exe, System Security Virus, Protection Security Virus, Virumond

    Thats what i was afraid of. I knew I had a bad virus. My biggest concern is i have no idea how it became infected.

    Thank you for the time and effort for helping to resolve the problem.

    You rock!

    Bruce
     
    BruceB12, Jul 24, 2009
    #7
  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Multiple IExplore.exe, System Security Virus, Protection Security Virus, Virumond

    You're welcome. Surf safely!
     
    chaslang, Jul 26, 2009
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds