Malware Removal Guide

Discussion in 'Malware Help (A Specialist Will Reply)' started by Lindah10, Feb 25, 2009.

  1. Lindah10

    Lindah10 Private E-2

    I was having major virus problems. XP with AVG showed trojans on 2/12. After running AVG, dumping virus vault, AVG never found any more, but obviously things were not right. Browsers (Firefox & IE) graphics showed as boxes only, each shutdown/startup or restart showed two error messages:
    "Error loading: c:\windows\system32\pkdppxwj.dll. The specified module could not be found"
    and
    "Error loading: c:\WINDOWS\RKerubopituc.dll. The specified module could not be found"
    Used Malware Removal Guide - ran ALL procedures, including XP Cleaning procedure.
    Currently, no error messages at startup. Browser graphics now load, but machine not acting quite normal. I have a new Roxio install disk that my machine won't recognize (shows my CD drive is empty). It DOES recognize other setup CDs (like MS Office). I also get occasional white spaces with the graphic boxes that pop up down by my SysTray -- unreadable, and then they disappear after a while.

    I'm attaching the appropriate log files. MGlogs.zip to follow in new message.
     

    Attached Files:

    Lindah10, Feb 25, 2009
    #1
  2. Lindah10

    Lindah10 Private E-2

    Final log attached.
    Thanks!
     

    Attached Files:

    Lindah10, Feb 25, 2009
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Yes, the scans did get most of it, but lets remove these:
    C:\32788R22FWJFW.3.tmp
    C:\32788R22FWJFW.2.tmp
    C:\32788R22FWJFW.1.tmp
    C:\32788R22FWJFW.0.tmp
    C:\-1264069199

    Then Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    After clicking Fix, exit HJT.

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file.

    Be sure to tell us how things are running.
     
    TimW, Feb 27, 2009
    #3
  4. Lindah10

    Lindah10 Private E-2

    Attaching the MGlogs.zip file as requested.

    Thanks for the response. I did remove the temp files from c:/ and fixed the HJT line items (after closing browser window). But I'm still having problems. The graphics on my browser (IE right now) are "broken" -- show only as squares with pink square, green circle, blue triangle in them -- rather than the actual graphic. (For instance, on this URL (http://forums.majorgeeks.com/newreply.php?do=postreply&t=183356) all message formatting graphics just show as red boxes inside gray boxes rather than as icons, and the smilies are only the squares with square/circle/triange inside them with the one of the words like :)cool -- :p -- :wave) next to them.

    I just checked, and Firefox DOES show proper graphics.

    I also noticed that the IE Tools menu has an option for "Windows Messenger." I'm wondering if it would help if I deleted it(?) since I recall in some of your posts to others you suggest getting rid of it. My IE version is 7.0.5730.11.

    Thanks again,
    Linda
     

    Attached Files:

    Last edited: Mar 2, 2009
    Lindah10, Mar 2, 2009
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Run this: Disable/Remove Windows Messenger to remove Windows Messenger. Do not confuse Windows Messenger with MSN Messenger because they are not the same. Windows Messenger is a frequent cause of popups.

    Use windows explorer to find and delete:
    C:\setupxv.exe

    Then runCCleaner and then ATF Cleaner by Atribune.

    You should disable all toolbars and add-ons and then restart IE and see if you are still having problems.

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file.
     
    Last edited: Mar 2, 2009
    TimW, Mar 2, 2009
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds