Some sort of Malware. Not solved by cleaning procedure

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by JLong2004, Dec 12, 2007.

  1. JLong2004

    JLong2004 Private E-2

    I was downloading movies using bittorrent. I deserve whatever virus I got. First thing I did was delete BitTorrent. I really need some help removing this thing.

    It freezes at random times. Also when restarting it freezes. Sometimes I have to restart 3-4 times before it will load up completely without freezing. Computer runs very slow as well. At first I couldn't toggle between programs at the bottom. I would have to minimize one, and then restore another. I also couldn't right click on programs down in the taskbar.

    I tried to solve the problem myself at first by checking which one looked like a virus in my Task Manager. I searched for the .exe and then went into safemode and deleted it. It said it had been created on November 29th. The .exe was called THEEE4.EXE. When I got back to windows there was another file in there, newly created, made up of random numbers and letters 6 characters long. It was in the C:\WINDOWS\Temp folder.

    Anyway, that's all the information I can think of, here's my .zips and .txt's
     

    Attached Files:

  2. abri

    abri MajorGeek

    Hi JLong!
    Welcome to Major Geeks!

    No one deserves a virus or any other bad thing to happen to them.



    1)Please go to add/remove programs and uninstall the below:

    J2SE Runtime Environment 5.0 Update 10"
    J2SE Runtime Environment 5.0 Update 3"
    J2SE Runtime Environment 5.0 Update 6"
    J2SE Runtime Environment 5.0 Update 9"
    Java(TM) 6 Update 2"
    Java(TM) SE Runtime Environment 6 Update 1



    2)Reboot after uninstalling the above.

    3)Install the current version of Sun Java from: Sun Java Runtime Environment You still have not done this.

    I will get back to you with other instructions after I've had a chance to look through your logs. This can take time, so thanks for your patience.

    abri
     
  3. JLong2004

    JLong2004 Private E-2

    I actually saw you reply this to someone else's thread, so I went and did that, after having run the scans.

    Thanks!
     
  4. abri

    abri MajorGeek

    Hi Jlong2004!

    I don't see any evidence in your logs of malware. I would like to ask you if you've tried the easy solution yet, which would be to restore your computer using system restore. If you've never done this, you do it like this:

    Go to Start / All Programs / Accessories / System Tools / System Restore

    Click on the option which says to return the computer to an earlier restore point.
    Click next.
    A calander will appear with a few highlighted dates.
    Select a date prior to when your computer problems started.
    Click on that date and click on next.
    Allow it to complete the restore process which will include an automatic reboot.

    See if this is possible before we continue any search for malware. You may have a program conflict rather than malware.

    abri
     
  5. JLong2004

    JLong2004 Private E-2

    I did it and it seems to be working fine for now. The true test will come when I try to restart the computer. When I tried to start up the computer before I came on here and saw your post it froze several times before I could get it to boot properly. I literally had to use the power button to shut it off. It just sits there frozen. I left it on all night once to see if it would come out of it. Nothing.


    Thank you for your help, you've been a life-saver. I really don't want to have to reformat.
     
  6. JLong2004

    JLong2004 Private E-2

    I'm not sure if there is an edit post option, sorry if there is.


    Anyway, I got the blue screen of death. I'd been getting it 2-3 times a week prior to the freezing and other symptoms.

    It says on there that it was due to page flipping in a non-page flipping area? I think that's what it said. Anyway, the file it said was the problem was VSAPINT.SYS

    I read on google that it belongs to Trend Microscan office client, which I have (university requires it to have internet access on their network)

    any suggestions to keep my computer from going to the blue screen?
     
  7. abri

    abri MajorGeek

    Please read through these suggestions before you try anything.

    The least complicated way of repairing software would be to reinstall it. Have you already tried disconnecting from the internet, uninstalling and reinstalling the Trend Micro software? If not, that would be a good place to start.

    If that doesn't help, then download one of the free antivirus installation programs listed in the How to Protect Yourself from Malware, but do not run the installation program for the software. Only download the installation program somewhere where you can find it again later if you need it. I recommend either AVG or Avast.

    Next, disconnect your computer from the internet physically and try uninstalling Trend Microscan office client and see if this stops the blue screens. If it does, then temporarily install the free antivirus program you downloaded the installation program for, so that you can go back onto the internet. Then reconnect your computer.

    If Trend Micro turns out to be the problem, talk to the university IT department and ask them what you should do about this problem. Explain about the faulty driver and see if they can help you resolve this issue. You may have to get a new copy of the Trend Micro software.

    Whether the above helps or not, I also recommend that you do an online scan by BitDefender, because BitDefender can identify infected restore points. It looks like AVG Antispyware 7.5 didn't run at all. It also picks up infected restore points. Neither can fix this problem, but it would be helpful to know if you have an infected restore point. Try uninstalling Trend Micro first and if that doesn't help, then try the BitDefender scan here:

    Bitdefender

    Please note that this scan must be run with Internet Explorer. It will not run with Firefox. Also, it is lengthy, so plan to give it an hour or two to run. If you end up running it, please attach the log with your next post. The instructions for running the software and getting the log are as follows:
    Let me know how things go.
    abr
     
  8. JLong2004

    JLong2004 Private E-2

    Alright, sorry for the absence, abri. I was in the process of moving, and then I got busy with school/work, and haven't had time to mess with it. I've just been dealing with the BSOD when it comes along.

    I got the password to uninstall Trend Micro. I just ended up getting AVG.

    I'm going to see if this stops the blue screens. If it does, thanks for all the help, and if not, I'll be back. lol
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds