virus or other issue??

Discussion in 'Malware Help (A Specialist Will Reply)' started by stevieink, May 16, 2010.

  1. stevieink

    stevieink Private E-2

    well here i am yet again...after not being able to figure out the problem i was having before when i was here, i ended up just restoring my computer to factory settings because it was at the point of not even being able to boot...now im having error mssgs stating "needing to close because of "encountering problems"..i am not able 2 run SAS because its telling me "windows installer" is not installed right..MBAM stopped in the middle of the 1st scan because it "encountered a problem"..although ran the 2nd time..combofix kept giving me PEV.EXE has "encountered a problem" & needs to close..also PEV.cfxxe with the same mssg...please check my logs & see if i am infected...as im at a loss with this computer:confused Thank you in advance
     

    Attached Files:

    stevieink, May 16, 2010
    #1
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Please refer to the below link, read carefully, give the windows clean up utility a whirl and then try reinstalling SAS. Update > scan > and attach the log it creates into your next reply if successful.

    I receive a Windows Installer error when I try to uninstall or install SUPERAntiSpyware. What do I do?


    Download The Avenger by Swandog469, and save it to your Desktop.

    • Extract avenger.exe from the Zip file and save it to your desktop
    • Run avenger.exe by double-clicking on it.
    • Do not change any check box options!!
    • Copy everything in the Quote box below, and paste it into the Input script here: part of the window:
    • Now click the Execute button.
    • Click Yes to the prompt to confirm you want to execute.
    • Click Yes to the Reboot now? question that will appear when Avenger finishes running.
    • Your PC should reboot, if not, reboot it yourself.
    • A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this and also if you were able to run it, the log from SUPERantispyware.

    Let me know how the machine is hehaving now.
     
    Kestrel13!, May 17, 2010
    #2
  3. stevieink

    stevieink Private E-2

    OK..i ran windows cleanup & got SAS to load & run but it shuts my comp down in the middle of running both times i tried running it & says system has recovered fron a serious error when it boots back up..also when i ran the getlogs.bat i recieved an error in the middle of running stating "processDLL.exe application error, application failed 2 initate properly (0xc0000135)"..ive also noticed that my anti-virus is not starting by itself when i reboot..it is stating that the program is in an inconsistent state or has been stopped:confused i also cant watch ANY kind of videos through either of my browsers w/o them crashing(mozilla or IE)...just let me know what 2 do next, if anything, or if you need additional logs from me...here is my MG logs zip..thanks again
     

    Attached Files:

    stevieink, May 17, 2010
    #3
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Other than what I have already removed, which wasn't much, I am not seeing alot else to do. I do not know why you are having so much trouble with SUPERantispyware but I very much doubt it's anything to do with malware.

    For the error you were recieving with MGTools, it was addressed in the R&R here:

    Error Message Type 4

    OTL.exe <--- I see this on your desktop... have you been using this yourself or have you been recieving help at another forum perhaps?

    You can either try this:

    Add a program to your start up folder


    Failing that, I would reccommend:

    uninstall avast > reboot > Run Ccleaner > reinstall.

    This problem may have to be discussed in the software forum too.

    I want you to use windows explorer to navigate to the following bold folder, and without clicking on any of it's contents, just let me know what sort of files are contained within, if any.
    Now let's have you run this to cover all bases.

    Using BitDefender Online Scan

    Post the bdscan.txt file as an ATTACHMENT and let me know about the contents of that folder I am querying. :)
     
    Kestrel13!, May 18, 2010
    #4
  5. stevieink

    stevieink Private E-2

    Well.. i tried running bit defender & my comp crashed all three times in the middle of the scan..the comp just shuts itself down in the middle then reboots claiming a it has recovered from a serious error...the third time it said "LSA shell (export version) encountered a problem & NEEDED to close"(if that helps any)...the contents of the folder you requested is 2 files: 1033.MST-MST FILE & Java 2 Runtime Environment SE V1.4.2_01 - Windows installer package...let me know if theres anything else we can do or anything else you need from me....Thank you so much for all your help...
     
    stevieink, May 19, 2010
    #5
  6. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    I think the best thing to do would be to send you to software now as I think you may have more problems with your operating system rather than malware.


    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /uninstall
        • Notes: The space between the combofix" and the /uninstall, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
    3. Go back to step 6 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    6. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    7. Go to add/remove programs and uninstall HijackThis.
    8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
      related to MGtools and some other items from our cleaning procedures.
    9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning procedures pointed to by step 7 of the READ ME
        for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.
    10. After doing the above, you should work thru the below link:
     
    Kestrel13!, May 19, 2010
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds