Multiple problems with viruses

Discussion in 'Malware Help (A Specialist Will Reply)' started by webbyte, May 14, 2009.

  1. webbyte

    webbyte Private E-2

    Initially coudln't get the computer to boot, getting multiple errors re: dll files not found.

    Finally able to run most tools, except combofix. Continually get message that the file may be unsafe and to download again and Combofix disappears from the desktop.

    For a while, couldn't even get the start menu or any of the desktop icons, had to open task manager and run explorer.exe.

    Any hope, other than reformatting and starting over? Was able to back up everything by removing the hard drive and putting it in an external enclosure and backing up to DVD.
     
    webbyte, May 14, 2009
    #1
  2. webbyte

    webbyte Private E-2

    More information - Windows XP with Service Pack 2

    When computer reboots, was getting blue screen stop error but couldn't read error because computer would restart. That error isn't occurring now.

    Getting svchost.exe windows - The instruction at "0x00630683" referenced memory at 0x00630683. The memory could not be "written" Click on Ok to terminate the program. Click on CANCEL to debug the program.

    Sometimes USB mouse and keyboard don't work or keyboard works and mouse doesn't. Have to hold power button in to shut down.

    Get background of grass and sky that was not displaying before.

    On windows logo screen, get E with accent mark under logo.

    Eventually my desktop background picture displays but no Start button/task bar or icons and other times get icons but no Start button/task bar. Can usually ctrl-alt-del and New Task to run explorer.exe to get icons and Start bar.

    dsca.exe error - The application failed to initialize properly 0xc0000007b. Click OK to terminate the application.

    hpqthb08.exe - The application failed to inititialize properly.....

    was getting error re: Konoyiru.dll but not getting that now.
     
    webbyte, May 14, 2009
    #2
  3. webbyte

    webbyte Private E-2

    Thought I had sent logs with the first post but don't see them so trying again.
     

    Attached Files:

    webbyte, May 14, 2009
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    I can see the reason for your problems. Your logs show that your Windows Operating system files have become infected and there is no known reliable fix for this. In addition there are many many other infected files. We could spend a lot of time trying to remove this infection, but odds are that it will not work because the nature of the infection has so many executable system files infected that as soon as we fix one file, other files that are infected will almost immediately or upon the next reboot, just reinfect the files. In addition, your PC would still basically be unreliable/untrustworthy even if we manage to fix the infected files that we can see since there could be many more that we are not seeing.

    The safest thing for you to do is backup your personal data immediately since your PC could possible become unbootable at any point in time. Do not back up any executable files. This includes programs that you have downloaded since any of them could be infected.

    Once you backup, you need to format and then reinstall Windows and all other software you need. Make sure that you do not reinstall from any executable files that were backed up while this PC was infected or you will just reinstall the infection.
     
    chaslang, May 16, 2009
    #4
  5. webbyte

    webbyte Private E-2

    Thanks for your reply. Figured that might be the case so have already re-formatted the drive. Any idea what the initial infection was? How do they became so widespread. The infection showed up a couple days after uninstalling AVG 7.5 and installing the newest version of AVG.

    Now using Avast.

    Was going to install Charter Security Suite but it wouldn't install and haven't been able to connect with Charter for solution.
     
    webbyte, May 17, 2009
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    It's a form of a Virut infection.

    That is what this kind of infection does. They spread to all executable files on your PC as folders are access or as each program is run. Each new download will be infected as you download it too. Thus in a short time frame, all executable files will be infected. If you backed up even one of these infected files and reinstall it, it will eventually reinfect your whole PC again.

    Not recommended anyway. See the below:

    How to Protect yourself from malware!
     
    chaslang, May 19, 2009
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds