Malware or Not? Help!

Discussion in 'Malware Help (A Specialist Will Reply)' started by blearyeyedme, Oct 15, 2009.

  1. blearyeyedme

    blearyeyedme Private E-2

    Having similar problems on a Vista 32-bit laptop to those shown here, I did the AVPfind, exeHelper and MGtools first. I also followed most of the Read and Run Me directions, except for all of the virus scans. I'm running chkdsk now, and will continue trying the scans after, as well as Combofix, etc.

    Attached are the logs for AVPfind, exeHelper, and MGtools. The infected computer (laptop) is not connected to the net, and I don't want to risk infecting any of the other computers on the wireless network, so I couldn't run the online scan. Aside from not letting me install Avira Antivir (says I'm missing "vc_red.msi"), and when I run SUPERAntiSpyware is freezes and won't let me cancel or exit at all (without a hard shutdown), the other issue is when I do ctrl+alt+del the screen freezes, goes black, and I get the famous "logon process has failed to create the security options dialog" error. Is this necessarily a malware issue or something else?

    Any help would be appreciated. Thanks.
     

    Attached Files:

    blearyeyedme, Oct 15, 2009
    #1
  2. blearyeyedme

    blearyeyedme Private E-2

    Attached are the log files for ComboFix and RootRepeal.

    I don't know if this is malware or what, so any help would be appreciated whenever you can give it.

    Thanks.
     

    Attached Files:

    blearyeyedme, Oct 15, 2009
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am not seeing any malware in your logs. However, lets try doing this:

    Download this Win32kDiag(If on your desktop - Right click and choose copy / then Open my computer, click on the C drive and in the window paste it there) and save to C:\Win32kDiag.exe. You must save it here!!!!
    Click on Start->Run, and copy-paste the following command (the bolded text) into the "Open" box, and click OK. When it's finished, there will be a log called Win32kDiag.txt on your desktop. Please attach this log.
    C:\win32kdiag.exe -f -r

    Also please try running the below online scan:

    http://www.superantispyware.com/onlinescan.html

    Reboot immediately after scanning if it finds and removes anything. Let me know if anything was found. It does not save a log.

    Now tell me if you can run SAS and MBAM. Attachh those logs as well as the win32diag log.
     
    TimW, Oct 18, 2009
    #3

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds