Malware removed but IE8 32bit and other pgms not working

Discussion in 'Malware Help (A Specialist Will Reply)' started by babyfine, Feb 26, 2011.

  1. babyfine

    babyfine Private E-2

    Hi,

    It's my first post and I'm hoping someone can help. I will try to give you as much detail as I can. I am running a Win7 home premium, 64bit OS. The default browser was the 32bit as set by Dell, which had been working fine until recently. I also had Firefox. Both stopped working and I discovered I had a malware issue. I had independently tried a number of steps which I have since discovered were on your "Read & Run" instructions. I have had to use the 64bit IE8 to research to get by.

    I had previously run Superantispyware, and Spybot search & destroy, as well as my Avast to try to clean a persistent Mywebsearch malware (and all of the other things such as mywebfriends or some other such junk that came with it) that got put on here by my bf. I reinstalled Java, etc. Reinstalled Flash.... (sigh) I tried to get the 32bit IE8 going myself, still unable to. I disabled my Avast, tried to download Comodo (downloaded fine, but the 64bit won't install). Did install the Outpost Security suite, but never ran it (took 5 attempts to install it). Combo fix is downloaded on my desktop but won't install.

    Using a combination of things, I was able to get rid of the malware and now at least my system appears to be clean, but still responds in a weird manner. I have tried twice to install the recommended Windows update that showed up this morning, and it failed both times. Firefox will work, but it is slow or odd in responding (sometimes it won't open). I can't determine what is causing the issues with a variety of the other programs in my "Program Files (x86)" that seem also to have issues now... my default IE still won't run at all.

    I will attach what logs I have, however, what they are limited by the issues I'm experiencing. I will include the MGtools log zip, Superantispyware, and the most recent Malwarebytes. If you would be interested in the Spybot S&D info or the Hijackthis, please let me know (or an earlier log file for any of the others??). :) I will also say that I have inconsistent issues starting any of these diagnostics (they don't always start the first time I try, I have had to try multiple times for the program to start... e.g., Malwarebytes, etc.)
     

    Attached Files:

    babyfine, Feb 26, 2011
    #1
  2. babyfine

    babyfine Private E-2

    Here are the Superantispyware logs for today...
     

    Attached Files:

    babyfine, Feb 26, 2011
    #2
  3. babyfine

    babyfine Private E-2

    The first Malwarebytes log file... (Thanks!) :)
     

    Attached Files:

    babyfine, Feb 26, 2011
    #3
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Hi there and welcome. I am currently reviewing your logs and will get back to you with a set of instructions in the next post I make to you.
     
    Kestrel13!, Feb 27, 2011
    #4
  5. babyfine

    babyfine Private E-2

    Just an FYI, havingissues with MS Office opening, as well as Windows Media Player.... (hoping that this info will help, rather than make things more confusing) LOL

    Thanks for your help! :)
     
    babyfine, Feb 27, 2011
    #5
  6. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    I think you may be better off asking about these issues in the software forum, however, let's just do this:

    Run Ccleaner. Only use the Run Cleaner button. Do not run anything else on any other forms.

    Go to TDSSKiller and Download TDSSKiller.zip to your Desktop

    • Extract its contents to your Desktop so that you have TDSSKiller.exe directly on your Desktop and not in any subfolder of the Desktop.
    • Now double click the TDSSkiller.exe file to run it ( if using Vista or Windows 7 do not double click on it but rather, right click and select Run As Administrartor.
    • Allow the application to run and a window will open showing that it is TDSSkiller from Kaspersky
    • Click Start scan
    • It will run rather quickly and will notify you of whether anything is found or not.
    • Follow the instructions to delete/quarantine if asks you what to do when if finds something.
    Whether an infection is found or not, a log file should be created on your C: drive ( or whatever drive you boot from) in the root folder named something like TDSSKiller.2.1.1_27.12.2009_14.17.04_log.txt which is based on the program version # and date and time run. Please attach this log to your next reply. (See: HOW TO: Attach Items To Your Post )

    Now try and run Combofix in safe mode.

    Run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista or Windows7) Then attach the new C:\MGlogs.zip file that will be created by running this.
     
    Kestrel13!, Feb 28, 2011
    #6
  7. babyfine

    babyfine Private E-2

    Kestrel,

    I still can't get the ccleaner intallation to run. I downloaded the TDSSKiller and unzipped it, however each time I attempt to run as administrator, it stops at ~15% and then an error pops up that states that TDSSKiller has stopped working. Combofix likewise is downloaded but still won't install. :(

    PS: (I just tried all three again and the Combofix popped up a message that the download was corrupt).
     
    Last edited: Feb 28, 2011
    babyfine, Feb 28, 2011
    #7
  8. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Please download and run the below tool named Rkill (courtesy of BleepingComputer.com) which may help allow other programs to run.
    There are 4 different versions. If one of them won't run then download and try to run the other one.

    Vista and Win7 users need to right click and choose Run as Administrator

    You only need to get one of them to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
    1. Rkill.exe
    2. Rkill.com
    3. Rkill.scr
    4. Rkill.pif
    Once you've gotten one of them to run then try to immediately run the following.

    Now download and Run exeHelper
    • Please download exeHelper to your desktop.
    • Double-click on exeHelper.com to run the fix.
    • A black window should pop up, press any key to close once the fix is completed.
    • A log file named log.txt will be created in the directory where you ran exeHelper.com
    • Attach the log.txt file to your next message.
    Note: If the window shows a message that says "Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file).

    • Now see if TDSSKiller will run
    • See if Combofix will run
     
    Kestrel13!, Feb 28, 2011
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds