possible malware/virus

Discussion in 'Malware Help (A Specialist Will Reply)' started by veronica8910, May 10, 2012.

  1. veronica8910

    veronica8910 Private E-2

    hi there i think i have a possible virus/malware problem

    firstly im running a windows xp OS and currently having difficulty installing the updates 6 out of 12 are successful where as the other 6 fail

    Security Update for Windows XP (KB2653956)
    Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2675157)
    Update Rollup for ActiveX Killbits for Windows XP (KB2695962)
    Security Update for Windows XP (KB2676562)
    Security Update for Windows XP (KB2659262)
    Security Update for Windows XP (KB2686509)

    i also have panda cloud anti virus on my pc and there is something blocking the antivirus from runing i click to open it and nothing happens


    please help me i havent a clue what to do :cry
     
    veronica8910, May 10, 2012
    #1
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Kestrel13!, May 10, 2012
    #2
  3. veronica8910

    veronica8910 Private E-2

    hi there thank you for the SPeedy reply its greatly appreciated, and thank you for the help in advance

    but i regret to advise you that i cannot open/run any malware virus removal programmes thats why i posted here, it seems that whatever it is that's in my pc it is blocking out basically security updates/scans etc

    however i did manage to run an OTL scan & Hi-jack this log
    im not sure as to which to post so i'm going to post both for you as thats all i really can offer :( im a newbie here and im hopeless with pc tech so please be aware

    many thanks!


    HiJACK THIS LOG..............
     

    Attached Files:

    Last edited by a moderator: May 11, 2012
    veronica8910, May 10, 2012
    #3
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    So just to clarify, you could not run:

    • Malware Bytes
    • SUPERantispyware
    • Combofix
    • or MGTools?

    Uninstall StopZilla, anything ASK, or ASK Toolbar related and anything Conduit related if they show, if not, don't worry about it.


    We need to run an OTL Fix

    • Right-click OTL.exe And select " Run as administrator " to run it. If Windows UAC prompts you, please allow it.
    • Copy and Paste the following code into the textbox. Do not include the word Code
    Code:
    Code:
    :otl
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask...5C-E47543A0D62B
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2790392
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
[2009/07/29 19:18:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\STOPzilla!
[2011/07/18 15:58:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Veron\Application Data\PriceGong
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
  
:commands
[EMPTYTEMP]
[RESETHOSTS]
[REBOOT]
    • Then click the Run Fix button at the top.
    • Click Image.
    • OTL may ask to reboot the machine. Please do so if asked.
    • The report should appear in Notepad after the reboot. ATTACH that report in your next reply.


    I want you to try running these two tools now, let me know how you get on.

    I want you to run TDSSKiller so refer to the below for how to do so.

    TDSSkiller - How to run


    Please also download MBRCheck to your desktop
    • Double click MBRCheck.exe to run (vista and Win 7 right click and select Run as Administrator)
    • It will show a Black screen with some information that will contain either the below line if no problem is found:
      • Done! Press ENTER to exit...
    • Or you will see more information like below if a problem is found:
      • Found non-standard or infected MBR.
      • Enter 'Y' and hit ENTER for more options, or 'N' to exit:
    • Either way, just choose to exit the program at this point since we want to see only the scan results to begin with.
    • MBRCheck will create a log named similar to MBRCheck_07.16.10_00.32.33.txt which is random based on date and time.

    Also, I want you to tell me whether you are indeed now able to run Malware Bytes, SUPERantispyware, Combofix and MGTools.

    If not, just run OTL the way you did the very first time before posting your first OTL log and attach the log.


    You need to take a look at this.

    HOW TO: Attach Items To Your Post
     
    Kestrel13!, May 11, 2012
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds