Serious Malware Problems, Pt II

Discussion in 'Malware Help (A Specialist Will Reply)' started by obey_giant, May 7, 2008.

  1. obey_giant

    obey_giant Private E-2

    Hey all,
    I'm back. It seems that after my system was working fine for a bit, I am again having malware problems. Original thread:
    http://forums.majorgeeks.com/showthread.php?t=153164

    The issue now seems to be after I connect to my wireless Internet after about half an hour, my connection reduces to a halt and I cannot do anything. I pulled up Windows Task Manager at this time and noticed my CPU usage was close to 100% , which I'm pretty sure isn't right. Oh and my ISP is still contacting me stating that they are getting complaints from leading back to my IP address that I am sending out "harmful email". So I'm guessing there is a Trojan still lurking in my system somewhere.

    Also, the latest issue that happened today was when I tried to un an AVG scan it could not access my C:/ drive to scan....however I can access it fine. Not sure if that is related... Any help would be greatly appreciated!
     
    obey_giant, May 7, 2008
    #1
  2. obey_giant

    obey_giant Private E-2

    the log file....sorry.
     

    Attached Files:

    obey_giant, May 7, 2008
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Your previous thread is over a month old. You need to run ALL of the READ & RUN ME from beginning to end and attach all new logs. Make sure that you uninstall Spybot - Search & Destroy 1.3 which is about 3 to 4 years out of date and install and run what we requested in the READ ME.

    Also uninstall the below as requested in step 1 of the READ ME:
    KaZaA Lite v2.1.0 [K++ Edition]


    Also uninstall the below left overs from Symantec:
    LiveReg (Symantec Corporation)
    LiveUpdate 2.6 (Symantec Corporation)
    Norton WMI Update

    Why is the below installed?
    Free KGB Key Logger


    In addition to running the whole READ ME and attaching new logs, I want you to run the below and attach the GMER log:
    Running GMER to detect rootkits
     
    chaslang, May 7, 2008
    #3
  4. obey_giant

    obey_giant Private E-2

    Ok, so I have removed what was mentioned in the previous post. I installed KGB awhile back, let me know if I should delete that as well.

    I had issues with the CCleaner, registry scan part. After initiating the "Scan for Issues" about halfway through the scan, my system re-started. Unfortunately the same exact thing happened with the GMER, when trying to scan. I can still run MG and will attach the Log.
     

    Attached Files:

    obey_giant, May 9, 2008
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Yes!

    Skip CCleaner! But you need to try running the other tools (make sure you use the current versions - i.e., download from the current links and reinstall and get any updates for SUPERAntiSpyware and for Malwarebytes Anti-Malware) in the READ ME and attach their logs as requested if they run. If you cannot run them in normal boot mode try safe boot mode. Try GMER in safe boot mode too.

    Do you know if the below is for something you installed?
    O18 - Protocol: CHANGEDms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\System32\itss.dll

    Does Microsoft Infotech Storage System Library which may be this file (itss.dll) sound familar.
     
    chaslang, May 9, 2008
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds