System infected! Please URGENT HEEEELP !!

Maggie_61 · Jun 27, 2007

I ran Bitdefender and I enclose here the messages of viruses it told me to clean.

Please tell me AS SOON AS YOU CAN if it is SAFE to DELETE these files if I will ran Birdefender ONLINE SCAN again now !

Thanks guys

chaslang · Jun 27, 2007

You cannot fix files in System Restore using any scanner. You must toggle system restore per the directions in step 8 of the READ ME.

The ms98.cab file may or may not be a problem. It could possibly be from your mouse. What kid of mouse are you using?

In the future, please attach proper text logs (not screen snap shots) from BitDefender online scan as requested in the READ ME.

Why are you running only BitDefender Online scan? Did you have malware problems that prompted you to run it?

Maggie_61 · Jun 30, 2007

chaslang said: ↑

In the future, please attach proper text logs (not screen snap shots) from BitDefender online scan as requested in the READ ME.

Why are you running only BitDefender Online scan? Did you have malware problems that prompted you to run it?
Click to expand...

I cant put a text log because as seen in my attachment here, IE 7 closed down BITDEFENDER and I cant save the log !

It does that all the times...

I run BITDEFENDER because I opened several - maybe - dangerous pages on a research I made, and I was afraid....

Please see my attachment. What can I do to correct this problem?

This also happened when I had IE6.

MOUSE: IBM Microsoft optical.

chaslang · Jun 30, 2007

You inability to run Bitdefender appears to be due to problems within your Windows OS or a conflict with something else you are running. You could try uninstalling BitDefender (see the Tools menu option in Internet Explorer) and then rebooting and then redownloading.

Do step 8 of the READ ME?

Then put a copy of the c:\windows\system32\ms98.cab file into a ZIP file and attach it here.

Maggie_61 · Jul 1, 2007

bitdefender sx

In order to do step 8 of the READ ME I suppose I have to clean all the viruses, yes?

I deleted some of my infected files (not System Restore's) and I enclose here the BITDEFENDER scan as my PC save it FOR THE FIRST TIME AFTER YEARS ....

Regarding ms98.cab, these files are from 2005 when I bought my pc. Are these the right files ?

I enclose them in a new post in 3 parts as they are too big to be zipped.

Maggie_61 · Jul 1, 2007

ms98.cab files

My ms.98 in 4 four finally ... parts

Maggie_61 · Jul 1, 2007

ms98.cab files last part 4

finally part 4.

chaslang · Jul 1, 2007

Re: ms98.cab files last part 4

As I expected the ms98.cab file is for your mouse and is not a problem. This and the other items detected by Bitdefender are false positives. Thus you don't need to toggle system restore.

Maggie_61 · Jul 4, 2007

Panda Scan

As you know me, I am curious and afraid. I did tonight a panda online scan.

I enclose the results here.

What are these two adware are doing in my registry?

What do I do with them, my friend?

Thanks so much for this big help

Maggie

chaslang · Jul 4, 2007

Re: Panda Scan

They more then likely just benign left over registry keys. Since Panda is not giving any useful information of them (like which keys), there is nothing we can do about it. This happens all the time and as I said, when seen like this, they are nothing to worry about. However you can give the below a try. It may or may not help remove them. What I have put into the below patch is some of the typical registry keys that these two infections may add to the registry.

Now Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

REGEDIT4

[-HKEY_LOCAL_MACHINE\SOFTWARE\StatBlaster]
[-HKEY_CURRENT_USER\Software\SerG HKEY_CLASSES_ROOT\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}]
[-HKEY_CLASSES_ROOT\CLSID\{30192F8D-0958-44E6-B54D-331FD39AC959}]
[-HKEY_CLASSES_ROOT\Interface\{1DE9EE01-DF51-49DB-9BDD-5990B35C1C2A}]
[-HKEY_CLASSES_ROOT\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}]
[-HKEY_CLASSES_ROOT\ToolBand.StartBHO]
[-HKEY_CLASSES_ROOT\ToolBand.StartBHO.1]
[-HKEY_CLASSES_ROOT\ToolBand.ToolBandObj]
[-HKEY_CLASSES_ROOT\ToolBand.ToolBandObj.1]
[-HKEY_CLASSES_ROOT\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30192F8D-0958-44E6-B54D-331FD39AC959}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SBSoft]
Click to expand...

Make sure you get a success message on adding this to the registry. If you do not get a success message, the patch definitely did not work.

The only way to know if it worked is to run Panda again. That's your decision.

Log in or Sign up

System infected! Please URGENT HEEEELP !!

Maggie_61 Private First Class

Attached Files:

BITDEFENDER_VIRUSES.zip

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

Maggie_61 Private First Class

Attached Files:

IE_BITDEFENDER_untitled14.zip

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

Maggie_61 Private First Class

Attached Files:

BITDEFENDER_SCAN.zip

Maggie_61 Private First Class

Attached Files:

ms98_PART_01.zip

ms98_PART_02.zip

ms98_PART_03.zip

Maggie_61 Private First Class

Attached Files:

ms98_PART_04.zip

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

Maggie_61 Private First Class

Attached Files:

Activescan.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member