Safe Mode, Recycle Bin & virus removal question

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Kliph, Feb 10, 2006.

  1. Kliph

    Kliph Private E-2

    First off let me say thank you to all the great people who run this site. I've been reviewing it for a few days and I'm ready to get started on going through all the proper cleaning steps before I post my HJT log....but first, I have some questions I hope can be answered.

    1 - When booting into Safe More, do I log in as the Administrator or as my account name that I normally use on a daily basis?

    2 - I cannot empty my Recycle Bin. It makes the emptying noise, but the files stay in there. I did a search here for this problem but couldn't find anything. When I tried to empty the protected files, it ran & ran for 15 minutes before I just gave up and shut down the PC.

    3 - My computer is infected (among other things) with the W32.HLLP.Sality virus. Norton finds it & deletes it...but a minute or 2 later I get the same message. This happens over & over & over. What's the deal with this?

    Thanks again! I'm so glad I found this forum!! At first, this place looked so good that I thought it was setup buy the malware & spyware bastards to look like a helpful site but would actually make things worse for me!! LOL.

    -Kliph
     
  2. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Depends on what you are doing, if you are doing cleaning I would do it under each account.

    There is an infection that causes this however without checking logs it's hard to tell.

    Norton isn't a good AV simple as that. I recommend AVG but there are many that are better than Norton.
     
  3. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    [​IMG] Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

    • Make sure you check version numbers and get all updates.
    [​IMG] Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

    [​IMG]After doing ALL of the above and you still have a problem, make sure you have booted to normal mode and run the steps in the below thread to properly use HijackThis and attach the log:

    [​IMG] Downloading, Installing, and Running HijackThis
     
  4. Kliph

    Kliph Private E-2

    Adware Sheriff & Seksdialer (Followed all sticky steps)

    Hello again...

    I followed all the steps in the read & run me first sticky as well as the SpywareNo thread.

    I haven't run smitRem yet.

    I did run step 8 (fixadt) It didn't seem to correct anyting.

    I have also not been able to save the panda scan yet because in safemode I can't open the window wide enough to find the "save log" link. In regular mode I can't really get my browser to run to even make it far enough to the panda website.

    These are the problems I've identified:
    *AdAware finds SpywareNo

    *Spybot finds Seksdialer

    *Microsoft AntiSpyware finds wupdmgr.exe

    *CCleaner finds and removes items from my recycle bin, even if I run the scan twice in a row. (Thus, it's not really emptying it.) I can't empty the recycle bin on my by right clicking it. It says it empties, but it doesn't.

    *Norton finds olemdb32.DlL and cleans it, over & over & over.

    *My browser gets redirected to: onlinesecurityguide.net

    *My system tray has 2 icons telling me my system is infected with spyware. One is a yellow circle with an ! in the middle, the other is an orange triangle with an ! in the middle.

    *I have AdwareSheriff. When I uninstall it from add/remove programs, it shows up as soon as I reboot.

    I've attached my HJT log, and 2 bitdefender logs, one from last night before AdwareSheriff showed up, and one from today (kliphV2) after AwareSheriff showed up.

    Thank you for your help! I feel like that guy from the Simpsons with the hiccups..."*hic* kill me *hic* kill me *hic*" This malware stuff is brutal.

    -Kliph
     

    Attached Files:

  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: Adware Sheriff & Seksdialer (Followed all sticky steps)

    You already had a thread started for your problem. I'm moving you back to that thread with BJ. Please remain in one thread for a particular problem and PC. Also please read step 7 of the READ ME again. HijackThis logs must be posted from normal boot mode unless otherwise requested differently. Please attach a new one from normal boot mode.
     
  6. Kliph

    Kliph Private E-2

    Thanks for your help guys, but my computer was beyond repair. I ended up biting the bullet and re-formatting my HD and installing XP fresh.

    It took over 4 hours to download all the XP & Norton updates that came out since I got the XP disc I have!!

    I'm now going to read through this site and get all the appropriate malware blockers and cleaners to make sure my PC never gets ruined again. Can anyone direct me to the best link to make sure I don't miss anything?

    I appreciate your help & service.

    -Kliph
     
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    It was not beyond repair. Your problems were not as bad as many we see. All you had to do was follow the directions and we could have gotten it fixed up.
     
  8. Kliph

    Kliph Private E-2

    It got to the point were I couldn't power down (even in safe mode) without holding down the power button. I lost my internet connection, my dvd-rom stopped working, when I got into normal mode I wasn't able to start any programs, etc.

    The final straw was when I would power up and nothing would happen. I got a black screen. I couldn't even F8 into safe mode. The lights were on, but no one was home! At that point I saw formatting & re-installing as my only option.

    In any case, I'm glad I found this site.
     
  9. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Okay! Happy to hear your working okay now!
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds