Virus Blues

Discussion in 'Malware Help (A Specialist Will Reply)' started by ncdrawl, Jan 3, 2010.

  1. ncdrawl

    ncdrawl Private E-2

    So..

    my wife contracted some weird bugs, and ive been through your process..only thing is..cant install ANY AV even with rename, etc..

    Help
     
    ncdrawl, Jan 3, 2010
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You need to be more specific. Tell us exactly what happens when you try to install any of our cleaning scans. Did you try doing any of the procedures in safe mode? What happens when you run MGTools.exe?
     
    TimW, Jan 5, 2010
    #2
  3. ncdrawl

    ncdrawl Private E-2


    Well, anytime I try to navigate to a site from a google search, i get redirected to some other site(and not just malware related)...when I try to download/update definitions, i get connection errors.. i did manage to install malwarebytes by renaming the installer and the executable, but still cannot update definitions.

    a colossal pita..

    i did manage to run MG tools..
     

    Attached Files:

    ncdrawl, Jan 5, 2010
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    It appears as though you never downloaded ComboFix. It should be directly on your desktop.

    What are these:
    C:\Documents and Settings\Marinda Bullard\Desktop\as.exe.exe <--- obviously need to remove the .exe
    C:\Documents and Settings\Marinda Bullard\Desktop\yep.exe

    Now, download The Avenger by Swandog469, and save it to your Desktop.

    * Extract+ avenger.exe from the Zip file and save it to your desktop

    Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

    * Run avenger.exe by double-clicking on it.
    * -Do not change any check box options!!
    * Copy everything in the Quote box below, and paste it into the Input script here: part of the window:

    * Now click the Execute button.
    * Click Yes to the prompt to confirm you want to execute.
    * Click Yes to the Reboot now? question that will appear when Avenger finishes running.
    * Your PC should reboot, if not, reboot it yourself.
    * A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

    Now run Ccleaner to clean out only temp files and nothing else!

    Now run ComboFix

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:
    * C:\Combofix.txt
    * C:\Avenger.txt
    * C:\MGlogs.zip

    Make sure you tell me how things are working now!
     
    TimW, Jan 8, 2010
    #4
  5. ncdrawl

    ncdrawl Private E-2

    Hey Tim, thank you for the help..i think this thing has really hosed my computer..now I am getting random Firefox and IE crashes, and several "the referenced memory at XXX " error messages..

    so I wasnt able to run combofix, but I did run avenger and mgtools.. combofix wouldnt run... i click on the icon and nothing happens...dunno if this bughas em blocked or what..
     

    Attached Files:

    ncdrawl, Jan 10, 2010
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Some of the fix did not take. Were you certain you disabled all of your AV and AS programs?

    Let's try again:

    Run this: Disable/Remove Windows Messenger to remove Windows Messenger. Do not confuse Windows Messenger with MSN Messenger because they are not the same. Windows Messenger is a frequent cause of popups.

    Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

    Now copy just the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    Make sure that you tell me if you receive a success message about adding the above
    to the registry. If you do not get a success message, it definitely did not work.


    * Run avenger.exe by double-clicking on it.
    * -Do not change any check box options!!
    * Copy everything in the Quote box below, and paste it into the Input script here: part of the window:

    * Now click the Execute button.
    * Click Yes to the prompt to confirm you want to execute.
    * Click Yes to the Reboot now? question that will appear when Avenger finishes running.
    * Your PC should reboot, if not, reboot it yourself.
    * A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

    Now please delete all that you can from these folders:
    C:\WINDOWS\Temp\
    C:\Documents and Settings\Marinda Bullard\Local Settings\Temp\

    Now run CCleaner ( both the cleaner and the registry --> make sure you choose to make the backup when prompted.)

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:

    * C:\AVENGER.txt
    * C:\MGlogs.zip

    Make sure you tell me how things are working now!
     
    TimW, Jan 10, 2010
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds