Trojan.BHO.agz

Discussion in 'Malware Help (A Specialist Will Reply)' started by FireGoddess370, Jan 13, 2008.

  1. FireGoddess370

    FireGoddess370 Private E-2

    I have been going through the steps listed in the forum to fix this problem and things were going fine until it came time to install Spybot. While installing it says:
    Error creating registry key:
    HKEY_CLASSES_ROOT/.disabled

    RegCreateKeyEx failed; code 5.
    Asses is denied


    Now I have no clue what to do. Please help. Thank you in advance. Here is the log from combo fix if it helps.


    Removed inline log
     

    Attached Files:

    Last edited by a moderator: Jan 13, 2008
    FireGoddess370, Jan 13, 2008
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Just continue on with the instructions ....we need the MGLogs.zip. (From running the MGTools.exe)
     
    TimW, Jan 13, 2008
    #2
  3. FireGoddess370

    FireGoddess370 Private E-2

    So I should choose the option to continue anyway?
     
    FireGoddess370, Jan 13, 2008
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Yes.
     
    TimW, Jan 13, 2008
    #4
  5. FireGoddess370

    FireGoddess370 Private E-2

    Here is the MGtools log. The virus is still showing my computer. Thanks again for the help.
     

    Attached Files:

    FireGoddess370, Jan 13, 2008
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please use add/remove programs to uninstall:
    Dcads Games Collection
    Then install:
    Java Runtime 6

    Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

    Run C:\MGtools\analyse.exe by double clicking on it. This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    After clicking Fix, exit HJT.

    Now Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    C:\Documents and Settings\Tabitha\Local Settings\Temp\ --> empty this folder.

    Now download The Avenger by Swandog469, and save it to your Desktop.

    * Extract avenger.exe from the Zip file and save it to your desktop
    * Run avenger.exe by double-clicking on it.
    * Check the 'Input script manually' box.
    * Click on the magnifying glass icon.
    * Copy everything in the Quote box below, and paste it in the box that opens:

    * Now click the 'Done' button.
    * Click on the traffic light icon and OK the prompt.
    * You will be prompted to restart, OK the prompt and your PC should reboot, if not, reboot it yourself.
    * A log file from Avenger will be produced at C:\avenger.txt

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this and also attach the log from Avenger.
     
    TimW, Jan 14, 2008
    #6
  7. FireGoddess370

    FireGoddess370 Private E-2

    Some of the items in C:\Documents and Settings\Tabitha\Local Settings\Temp\ would not delete, but aside from that everything went smooth.
     

    Attached Files:

    FireGoddess370, Jan 15, 2008
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    The HJT fix did not work ....did you disable all anti-virus and anti-spyware programs while doing it?

    Let's try again.

    Run C:\MGtools\analyse.exe by double clicking on it. This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    After clicking Fix, exit HJT.


    Now lets reset the IE defaults:
    Please copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file.
     
    TimW, Jan 16, 2008
    #8
  9. FireGoddess370

    FireGoddess370 Private E-2

    I did disable the anti-virus and anti-spam. When I run C:\MGtools\analyse.exe and click fix is says that nothing is checked and I continue anyway. I don't know that has anything to do with why it isn't fixing.
     

    Attached Files:

    FireGoddess370, Jan 17, 2008
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Are you actually checking the boxes next to those items?
     
    TimW, Jan 18, 2008
    #10

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds