Can't turn on Windows or Norton firewall, can't start NAV, can't access gmail, limite

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by troat, Apr 3, 2012.

  1. troat

    troat Private E-2

    Can't turn on Windows or Norton firewall, can't start NAV, can't access gmail, limited access to facebook

    Problems started Wednesday last week. 3/28

    getting messages in Chrome similar to this:
    The site's security certificate is signed using a weak signature algorithm!
    You attempted to reach www.google.com.bz, but the server presented a certificate signed using a weak signature algorithm.


    SAS found and corrected 16 problems but I couldn't find the log file

    MB keeps warning that computer is trying to contact a potentially malicious web site.

    Could not run combofix.exe

    Did not run RR--64 bit windows 7 home premium

    MGlogs.zip attached
     
  2. troat

    troat Private E-2

    Re: Can't turn on Windows or Norton firewall, can't start NAV, can't access gmail, li

    Didn't upload attachments to above. They should be attached.
     

    Attached Files:

  3. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Re: Can't turn on Windows or Norton firewall, can't start NAV, can't access gmail, li

    The SUPERantispyware log is located here: C:\Users\mike\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\Logs\SUPERAntiSpyware Scan Log - 04-02-2012 - 18-54-00.log

    Java(TM) 6 Update 20 <--- UNinstall outdated Java.


    Download and run OTM.

    Download OTM by Old Timer and save it to your Desktop.

    • Right-click OTM.exe And select " Run as administrator " to run it.
    • Paste the following code under the [​IMG] area. Do not include the word Code.

    Code:
    :Files
    C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D12}.tlb
    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D12}.tlb
    C:\Windows\assembly\GAC_32\Desktop.ini
    C:\Windows\assembly\GAC_64\Desktop.ini
    C:\Windows\assembly\tmp\click.tlb
    C:\Windows\assembly\tmp\loader.tlb
    C:\Windows\assembly\tmp\U
    C:\Windows\assembly\tmp\{1B372133-BFFA-4dba-9CCF-5474BED6A9F6}
    C:\Windows\assembly\tmp\U\00000001.@
    C:\Windows\assembly\tmp\U\000000c0.@
    C:\Windows\assembly\tmp\U\000000cb.@
    C:\Windows\assembly\tmp\U\000000cf.@
    C:\Windows\assembly\tmp\U\80000000.@
    C:\Windows\assembly\tmp\U\800000c0.@
    C:\Windows\assembly\tmp\U\800000cb.@
    C:\Windows\assembly\tmp\U\800000cf.@
    
    :reg
    [-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
    [-HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{7AE729A8-81D4-429C-B1BC-2CEA3D4DC904}]
    [-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7AE729A8-81D4-429C-B1BC-2CEA3D4DC904}]
    
    
    :Commands
    [emptytemp]
    [Reboot]
    • Return to OTM, right click in the Paste List of Files/Folders to Move window (under the yellow bar) and choose Paste.
    • Push the large [​IMG] button.
    • OTM may ask to reboot the machine. Please do so if asked.
    • Copy everything in the Results window (under the green bar), and paste it in your next reply.

    NOTE: If you are unable to copy/paste from this window (as will be the case if the machine was rebooted), open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTM\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.




    Download Cleano 0.61

    Download it to your desktop, Right click the cleano.exe file and run as admin > and place check marks in the boxes as follows (click on link below to see image)

    View attachment 148092
    Click clean now and exit the program.


    Reboot
    your machine and install the most current and up to date version of Java available here at the below link:

    Java Runtime 6


    Now see if you are able to run Combofix.

    Run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this.

    Let us know of any problems you may have encountered with the above instructions and also let me know how things are running now!
     
  4. troat

    troat Private E-2

    Re: Can't turn on Windows or Norton firewall, can't start NAV, can't access gmail, li

    Here us Superantivirus log.
    Working through your suggestions.
    Thanks
     

    Attached Files:

  5. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Re: Can't turn on Windows or Norton firewall, can't start NAV, can't access gmail, li

    OK, attach the rest when you are ready. :)
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds