virus please help

Hi there I hope someone can help me. I have run all of the programs in the read and run section and most of the other programs in alternative scans. my problem started after rebooting when i did a windows update. this is what I got when i restarted:

Main Processor- AMD Athlon XP 3000

System bios shadow status- shadowed
System video bios shadow status - shadowed
umb upper limit segment address F000H
PS/2 mouse initiation status- plugged
Primary master hard disk SMART status- BAD
Warning immediate back-up of your data and replace your hard disk drive
a failure may be imminent.

after running all the read and run programs i restarted into normal mode. I did not get that warning again but my anti virus is disabled. well actually it just keeps telling me to verify my status and when i do it just keeps repeating over and over. and at one point was telling me that it had expired but it doesnt expire until jan of next year. Windows defender also came on and said:
An auto start change was made for a known application file: c:\programfiles\mcafee.com\agent\mcuupdate

also
" "windowsdefender\mpcmdrun.exe
and
" "webroot\spysweeper\spysweeper.exe

I also cannot use the search option as it says: a file that is required to run search companion cannot be found. you may need to run setup.

ok now i will attatch the bdscan and the hjt log the panda scan did not give me the option to save a file? i have the pro version but am not able to use it.

Thanks for the help.

 

just did a stop sign scan here are the results.
Possible Spyware Cookie: Tracking.Cookie <Possible Spyware Cookie>
c:\windows\system32\actskn45.ocx <Trojan.Isbar.439>
Possible Spyware Cookie: TribalFusion <Possible Spyware Cookie>
Possible Spyware Cookie: WebtrendsLive <Possible Spyware Cookie>

 

<<+++ The installed version of Java on this compter is out-dated. Install version 1.5.0_07 available from http://www.java.com/en/download/manual.jsp. Uninstall all older versions of Java on your computer, before installing the latest version. +++>>

actskn45.ocx (ActiveSkin Module) is a component from the software ActiveSkin Module version 4.50.0 by SoftShape Development. actskn45.ocx version 4.50.0 has a file size of 483,328 bytes, and is most commonly found under the directory "system32" with a creation date of November 2, 2005. This is not a known spyware, adware, or trojan component.

Your problem does not appear to be caused by Malware, both your BitDefender and HijackThis log are clean.

You may need to uninstall McAfee, reboot, then install the application again.

You may want to post this problem in the Software Forum.

 

Hi Shadow,
I updated my java and also uninstalled and reinstalled mcafee. Unfortunatly it didn't work and it still asks me to verify.

I have done a few more scans and stop sign (it could have been spy sweeper lol not sure i have run so many)reported that i had the MAD.3732 virus? also it said that i had webhancer and downloader.istbar which is the same as the stop sign scan.

So I will post in the software forum just in case but would still like to know what you think of my latest findings. Thank you very much for your time I really appreciate it.

 

Hi Shadow

I have been working with matacumbie in the software forum and we have discovered a file in the start up menu that he said I should bring to your attention. In startup menu at the bottom of the list in the last 2 lines alls there are, are symbols that look like chinese writing (actualy I think it is). Then next to it under Command there are more symbols and Under Location it says HKLM\Software\Microsft\Windows NT\Current... And that is all I can read . It wont let me copy and paste it either. I have also done scandisk and it fixed a bunch of problems just want your input on these 2 entries. Thanks

Jenine

 

Ok when I restarted, the scandisk verification page came on. It went on to delete these files I did not get them all but here is what I could jot down.

wk detect.exe in index $130 of file 3691
wk fud.exe in same file
CurlZ__.ttf in index $130 of file 5267
dos737.fon in same file
desktop ini same file
and got cut off in the middle of this one: m5xm13r?

I tried to run scandisk again it started ran for about 2 seconds and then said the voluume was fine and quit. I have posted this to matacumbie as well.

Here is some other stuff I found that isnt working.

My system info in system tools takes me to help and support if I go into use tools to diagnose problems and click on the following:
Advanced system info
my computer info
system config utility
it says UNDEFINED

These other ones came up as script errors
disk cleanup
disk defrag
network diagnostics would not complete the scan
Thanks

A very frustrated Jenine

 

Ok I fixed it. Feel kind of stupid lol. when I did the windows update when this all started earlier I didnt realise that there was a Parser for it . I went into windows update as a last straw and it told me that I needed this parser. Everything is working now even mcafee. I really appreciate your help and taking the time to deal with my stupity. All the best

Jenine

 

Glad you found the problem. Seems the last batch of Windows updates have broken some systems. Anyway often something else needs to be downloaded to resolve the issue. Like the latest version of the MS XML Parser for instance.

Don't be so hard on yourself, I've trouble-shot errors for hours on end , only to realize that simply clearing the cache would resolve the error. It happens.