AV Security Essentials?

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by nyny, Apr 7, 2012.

  1. nyny

    nyny Private E-2

    Hello,

    I really appreciate the forums and the help on offer! I followed the directions closely over the course of two days. The only issues I had were 1. I downloaded the current JAVA and removed the rest, but when I went to install the current JAVA it said it was already installed. 2. When I was running ComboFix, Secunia popped up and the message said "program changes detected," "3 new programs..." and "3 removed programs."

    I copied and pasted all logs except for MGlogs.zip into a word document. That document is attached (SuperAntiSpy log, Malware quick scan log, Malware full scan log, ComboFix log, and Root Repair log) and I've also attached MGlogs.zip.

    I have an ASUS Eee notebook with XP home edition. In mid-February I visited a website about the Premier Football (Soccer) league and that's when the trouble started. I have something called "AV Security Essentials" that was popping up and telling me that I had problems. I tried not to click on any of it. I tried to remove it with Malwarebytes and RKill. Right now when I go to Sytem Tooks Security Essentials through the Accessories on the start menu, it reads that my firewall is ON even though I shut it off following directions you gave. It also reads that "AV Security Essentials is up to date and virus scanning is on." When I ran ComboFix it read that AV Security Essentials was running but that ComboFIx would run anyway. Internet explorer has Incredimail as its homepage. My computer has been really slow, although after running all the malware removal programs it seems a bit faster.

    Thanks for any advice. Please let me know if you have questions for me.

    Maggie
     

    Attached Files:

    nyny, Apr 7, 2012
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am not seeing much in the way of malware in your logs. However, do you know what these are:
    C:\Documents and Settings\All Users\Application Data\AVRKNKDUGSE
    C:\Documents and Settings\All Users\Application Data\b40935

    If not, delete them. Tell me what issues you are still having, if any.
     
    TimW, Apr 7, 2012
    #2
  3. nyny

    nyny Private E-2

    Thanks. I did delete those files. Computer seems ok right now. I still have "AV Security Essentials" listed in my "Windows Security Center" under the system tools item on the Program menu (under Accessories). And on that same application it says my firewall is ON even though it is still OFF when I click on "windows firewall." I just turned the firewall on to be safer. Would the paid version of Malwarebyte's Anti-Malware be of help? This is the second time my computer was hijacked in the past 8 months. Thank you.
     
    nyny, Apr 10, 2012
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    TimW, Apr 10, 2012
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds