help removing malware

I am new to this and to this site. I know that I got good network connection, but something prevents the computer from accessing IE. (When I run Safe Mode with Networking, I can get to IE.) It used to be the case that I would get Cannot Access page only when I tried to get to a secure site or a sign on page, but now never. I've run AVG, Kaspersky, and ewido to no avail.

I ran HijackThis and the logfile is below:

• Edit by bjgarrick: Inline log removed

I would appreciate some help from who know way more than me. At this point, I am ready to reinstall the operating system!

 

Welcome to MajorGeeks.com, please follow our standard cleaning procedures:

http://www.majorgeeks.com/images/grenade.gif Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

• Make sure you check version numbers and get all updates.

http://www.majorgeeks.com/images/grenade.gif Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

http://www.majorgeeks.com/images/grenade.gifAfter doing ALL of the above and you still have a problem, make sure you have booted to normal mode and run the steps in the below thread to properly use HijackThis and attach the log:

http://www.majorgeeks.com/images/grenade.gif Downloading, Installing, and Running HijackThis

• Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around..

http://www.majorgeeks.com/images/grenade.gif In your next post, please make sure you attach the following logs and that you have run these scans in the following order:

• CounterSpy - ONLY IF you were not able to run Windows Defender
• Bitdefender - from step 6
• Panda Scan - from step 6
• runkeys.txt - the log from GetRunKey.bat
• newfiles.txt - the log from ShowNew.bat
• HijackThis

NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!

 

Followed all directions – still cannot access some IE6 pages

I seem to be able to surf on IE6 ok, but I cannot access certain pages. All pages that require security or sign-in get bounced back as CANNOT access.
I have followed all the steps in the READ & RUN ME FIRST posting to no avail. Here are some issues that came up during this process.

Step 0:
Tried to but could not uninstall System Soap Pro 3.2-AC1. I get a message saying “Could not open INSTALL.LOG file”

Tried to but could not uninstall WildTangent Channel Manager. I get a message saying “... See About shortcut under the Options menu for that channel.” Then if I continue with the option to remove it, it does nothing.

Step 3:
I am running ZoneAlarm. I tried unistall my expired version of Norton Personal Firewall but failed. When I try to uninstall Norton Personal Firewall, I get a message saying that account with supervisor access must do it. I’ve checked the User Accounts, and I am definitely trying to do this from an administrator account

Step 4:
Cannot install and update Windows Defender. I get a message “... cannot install this software because the copy of the Windows you are running cannot be validated.” I think this is an error – this is not a pirated OS. The version I am running is: Windows XP Home Edition Version 2002 Service Pack 2. This may be related to another problem I am having – I am not able to obtain Windows Updates. I get a message, “The website has encountered a problem and cannot display the page you are trying to view. Error 0x80072EFD.”

Installed CounterSpy instead of Defender since I could not install Defender.

I posted a help message once before but incorrectly. Hopefully, I followed directions correctly this time. I would really appreciate some help. I have attached 3 files here and will attach the next 3 files in a response.

 

Re: Followed all directions – still cannot access some IE6 pages

Here are the next 3 files that needed to be attached from the previous post.

 

Before we start anything I need you to pick one firewall and uninstall the other as running more than one firewall will cause conlficts. Personally I would uninstall Norton and kepe ZoneAlarm becuase I think it's the best.

Once you complete this attach a fresh HJT log.

 

Hello,

I decided to try to fix this myself by using the very well laid out instructions on how to use HJT and how to uninstall Norton. And it worked! Everything seems to be working and I don't see any issues when I look at the HJT log.

But, if you could take a look at it, I'd appreciate it. I've attached the new log.

(I think the issue was not any malware but the old Norton Personal Firewall messing with settings - but I really do not know much about this stuff.)

Thanks

 

Your HJT log looks good, are you having any current problems?

 

No problems now; things work great. I guess we can close this thread. Thanks for your help.

 

Your Welcome!

You should see this article on How to Protect yourself from malware!

Surf Safely!