HELP a soldier in need...

Hey guys/gals,

i need some major help. no pun intended. I am in Iraq and I have been working on this issue for about a week now. I some malware on my computer and i thought that i had gotten rid of it...boy was I wrong. I had the thing where it told me i had a virus on my computer and then took me to their site so i would buy their crap. Had a buddy of mine that had it and i got rid of it for him. no problems. so i did about the same thing for mine but now it just keeps getting worse. I started getting URLsearch windows poping up. I got tired of that so I bought Ad-aware professional. that found alot of stuff but wouldn't get rid of it. So I got system mechanics, it found like 7-8 trojans! So i "deleted" them. then I started getting the BSOD. right now I am running in safe mode. I am going to add my hijack this log and what the windows thing says, well what i got from the dump thing. oh and my system32 always opens at startup now too. Thanks for any help.

MINIDUMP:

0x00000002

0x80070003

Symantec NetDetect.job

Viruses something found:


C:\windows\system32\wintfj32.dll
winlogon.exe\wintfj32.dll

Edit: Removed HJT log as it was from safe mode/msconfig

 

all righty then...i have run the programs you have asked me to run. i am getting this browser hijack, it's ie.redirect...aol/hp something like that. but it takes me to a aol/hp wesite. I don't know...i am confused. i ran hijackthis and deleted a bunch of stuff from my registry(i made sure that they could be deleted and were bad first) and i keep getting the BSOD when i run windows in normal mode. i can't really find anything else wrong. maybe you can. i will send you the hijackthis log and my minidump (the whole thing) i have the full dump too but it's to big to attach. Let me know what else you need.


About being in Iraq, we are using sattelite internet of some sort, i think it might be from a military sattelite thats sitting outside. i wasn't here when they set it all up. there are about five other sattelite receivers on top of our building so hell it could be one of those. I don't know...how can you tell my proximity from my IP? Just curious. Again, thanks for the help guys.

SPC(e-4) ramey

 

I can't find the panda log, but i will attach the bdo. I couldn't find C:\windows\system32\wintfj32.dll anywhere. I will try and start my computer normally, hopefully I'll have enough time. It worked fine last night for about three hours, no problems at all, then it just crashed and burned.

 

here is the hjt log. i didn't save the backup i deleted it just a few minutes ago(doh!). i am going to send my adaware thing it show the registry values being changed and hjt shows the page being redirected.

 

i really need some help here. i have been working on this damn thing for 6 hours today and all day yesterday. I just can't figure this out. i searched the forums and found a place that describes the BSOD but i get a different error just about every time. I go to the web site that someone had suggested and i have two of the issues people have posted (logitec mouse, ATI video card) the problem with installing the drivers is that i can't do it in safe mode. i can't run windows normally long enough to down loead the needed drivers(to supposedly fix the problem) I could really use some help. tell me what you need and I will get it.

Known Problems:
IE redirect(on last post)

BSOD (0x0000007e(0xc0000005,0xa73818d4,0xf7a73bf0,0xf7a738ec))

DRIVER_IRQL_NOT_LESS_OR_EQUAL
BSOD (0x000000d1(0x00000011,0x00000002,0x00000000,0x86f7aa68))

 

Hey thanks for your help guys I figured it out finally. I did everything all at once so i don't know exactly what it was. it wasn't malware though. I found the drivers for the mouse and the ati video card driver was up to date. I searched the bsod code on microsoft and after reading about 20 different things that it could be i found a hotfix that windows has decided to not let out until the next service pack. haha there a few of those. if someone else has this issue i would just go to microsoft web site and enter the first number in the code then read through everything that might apply to your computer and pick one see what happens. thanks for your help though guys. i really appreciate it. do you guys have a donation site or somehthing? Xratedsoldier

 

well hook me up then. can you tell me a little about the email worm brontok.q i haven'te been able to find anything on the net about it put it was passed to about three computers (see limited or no connectivity, in networking forum) through a buddy's thumb drive. kapersky found it and said that it had cleaned it. now anyone who ahd used the thumb drive, including myself, are haveing internet issues. within 30 mins. of being connected and doing a winsock fix i had sent 60,000 packets and recieved 1,500! oh well, back to banging my head on the wall...