problem with malware

Discussion in 'Malware Help (A Specialist Will Reply)' started by ijc84, Sep 17, 2009.

  1. ijc84

    ijc84 Private E-2

    hi there, i posted before in another thread a few weeks ago that i thought my problems had gone from my computer but i made a big mistake and only just now realise what ive done.

    basicly ive been having problems where i get popups while using the net, redirecting from google links and certain apps not working. so ive downloaded a number of things to try to remove it, including doing all the steps in the "read and run me first" thread above.

    i have also got on my computer the program registry mechanic. basicly each time ive installed one of the programs from the "read and run me first" thread it runs for a couple of seconds and then stops. when i try to click the icon for each program the computer just hangs with the loading mouse icon for a few seconds and nothing happens, the icon changes to that weird looking miniscreen that vista gives items that has no particular icon of its own. at different times (not just right after trying to activate the icon) ive gotten flashes of registry mechanic asking if i wanted a certain registry key changed. thinking it was trying to fix the problems i have i foolishly pressed yes-allow the changes and now i believe that the programs i was trying to get to work are being stopped by whatever malware i have because its changed the registry key to block me using those programs somhow and stupidly ive allowed it to do so :banghead

    when i click the icon for the programs i now get either the screen just sit there with the loading icon until it says "this window has stopped responding" or i get "Windows cannot access the specified device, path, or file. You may not have the appropriate permissions to access the item". note: im on the admin account.

    this happens with all the programs from that thread above with the exception of combo fix which i click, it flashes up the green loading bar which stops at about 99% of the way and just sits there doing nothing.

    list of programs affected:

    spybot search and destroy
    Ad-aware
    malwarebytes
    superantispyware

    combofix just sits there loading at 99% on the first "green loading bar"

    rootrepeal at startup: FOPS: deviceiocontrol error! errorcode 0xc0000024 extended info 0x000000d8 but it loads, however when i try to click scan c:\ it says "cannot initialise driver, please contact author!" then another popup cannot scan drive C (error 0x0000024).

    MGtools: i followed the steps on the official site linked from this page but when i click the getlogs.bat a small dos screen pops up for a split second and then closes. i get no logs from that.

    i have the bought edition of spyware doctor but it doesnt detect anything on a scan.

    i can no longer delete the files associated with the corrupt programs as it says i dont have permission to do so. if i re install the programs to a different file it still stops them running and then blocks that file from being removed. of course i dont have the prompt from to change the registry since i even its allready done..ive tried renaming the files and the program icons to other names but to no avail it still does the same thing. safe mode doesnt make a difference either.

    i feel like such an idiot for only realising whats happened now. would i need to reset to factory settings to get this fixed, or is there anything i can do to fix without having to resort to that?

    unfortunatly i have no logs because i cant run the programs....

    thankyou in advance for your time, and for taking the time to read an idiots post :-o i appreciate it.
     
    ijc84, Sep 17, 2009
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You should have posted your logs.

    Not a malware removal program and not recommended to use registry cleaners except in rare circumstances and then only as advise by an expert.

    Did you also try safe boot mode if normal boot mode would not work?


    You most likely have the same infection that about 85 to 90% of the posts in this forum are discussing.

    Do you have the current version of MGtools. Not one from a week or more ago. You need the one from yesterday. Also are you running Vista or Win XP.

    Sorry but that was most likely just a waste of money as you can see it is not finding anything. I would uninstall if if you can to make sure that it does not just add to difficulties in removing any malware we may find.



    Try the below:
    • Download this Win32kDiag and save to C:\Win32kDiag.exe. You must save it here!!!!
    • Click on Start->Run, and copy-paste the following command (the bolded text) into the "Open" box, and click OK. When it's finished, there will be a log called Win32kDiag.txt on your desktop. Please attach this log
    C:\win32kdiag.exe -f -r
     
    chaslang, Sep 21, 2009
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds