Win32 Worm I think!

Discussion in 'Malware Help (A Specialist Will Reply)' started by akpud, Mar 15, 2007.

  1. akpud

    akpud Private E-2

    A few days ago, my computer (Gateway Tablet XP) started to freeze after about 30-45 minutes on inactivity. Upon reboot, it was back to normal. Best Buy ran diagnostics and advised that it is not a hardware issue (although the fan is running alot more than normal).

    In msconfig Startup I noted an entry "NA" located in HKLM\Software\Microsoft\Windows\Currentversion\Run - which I could not locate in the Registry. It is now gone and has been replaced by a blank where the "NA" used to be - but refers to the same registry location.

    I have followed the entire Malware Removal Guide and will upload the remaining logs in a few moments. I was unable to run Panda and it froze twice. Counter Spy picked up two trojans.

    Please advise if you see anything in the HJT log.

    Many thanks,

    AK
     

    Attached Files:

    akpud, Mar 15, 2007
    #1
  2. akpud

    akpud Private E-2

    And here are the remaining logs. I seem to have misplaced the CounterSpy log. I will re-run and attach shortly.

    Thanks for all your help,

    AK
     

    Attached Files:

    akpud, Mar 15, 2007
    #2
  3. akpud

    akpud Private E-2

    CounterSpy Log attached.

    Thanks!
    AK
     

    Attached Files:

    akpud, Mar 15, 2007
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Hardware problems like this are rarely malware related. Yours is no exception.

    You need to look elsewhere.
    • overheating
    • since you say it happens after being idle, are you having problems with a screen blanker or recovery from sleep mode or hibernate mode....etc
    • possible software conflicts. Did you install anything new prior to this happening? Don't overlook anything that was updated too since that is also really new.
    Either way, you are going to have to continue this in the Hardware Forum since your problem is not malware.
     
    chaslang, Mar 15, 2007
    #4
  5. akpud

    akpud Private E-2

    Thanks for the response - but can you give me any feedback on the HJT log and especially on that unusual entry in the Startup?

    Many thanks,
    AK
     
    akpud, Mar 15, 2007
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    There were no problems shown in your logs otherwise I would have indicated things to do.

    You can uninstall CounterSpy since it is no longer needed. And you could uninstall the old Sun Java version you are running and update to the current Sun Java version. However none of this has anything to do with your problem.
     
    chaslang, Mar 15, 2007
    #6
  7. akpud

    akpud Private E-2

    Thanks again - I'll move over to Hardware to see if we can troubleshoot there.

    AK
     
    akpud, Mar 16, 2007
    #7
  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome and good luck!
     
    chaslang, Mar 16, 2007
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds