Windows Xp Sp3

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Whizpopthat, Jan 23, 2020.

  1. Whizpopthat

    Whizpopthat Private E-2

    So I have followed the guide for Windows XP, plus I am usually an expert myself but it has been so long since I have seen Windows XP and I'm helping a friend. I got rid of at least 10 virus/malware detections, there is still something wrong and I've run ipconfig and flushdns and my DNS service is running and automatic. Still can't get IE 6 to load web pages except google and maybe a couple others, can't run the Windows 7 upgrade advisor (connection problems) I type this in firefox as we speak since IE won't load the website. I have attached my MGTool logs. I don't have a clue why it's not working, MalwareBytes did detect a "PUM.Optional.ProxyHijacker" that I just got rid of in the last scan via quarantine but apparently it didn't go away upon reboot. Any suggestions to my problem?
     

    Attached Files:

    Whizpopthat, Jan 23, 2020
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please attach the other requested logs.
     
    TimW, Jan 24, 2020
    #2
  3. Whizpopthat

    Whizpopthat Private E-2

    Ahh, yes forgot to include those some show nothing but some show a couple things.
     

    Attached Files:

    Whizpopthat, Jan 24, 2020
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Is your internet setting running a proxy server?
     
    TimW, Jan 24, 2020
    #4
  5. Whizpopthat

    Whizpopthat Private E-2

    It is not, I have tried both with and without automatically detect settings.
     
    Whizpopthat, Jan 24, 2020
    #5
  6. Whizpopthat

    Whizpopthat Private E-2

    I also forgot to mention upon installing roguekiller, I get a runtime error "access violation at address 100D65E3. Read of address 00000004." After clicking next before the License information page and clicking next to the license agreement page. I am however, able to install and run rogue killer as I did include the results. As far as running AdwCleaner, it says it is not a valid Win-32 Application.
     
    Whizpopthat, Jan 24, 2020
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Hum...roguekiller is indicating you are. So when you open your lan settings, there is nothing under proxy settings?
     
    TimW, Jan 24, 2020
    #7
  8. Whizpopthat

    Whizpopthat Private E-2

    That's the one thing I forgot to check, when in the Network Connections there's this "1394 Connection" and in the settings it's a "1394 Net Adapter" not sure what it is but it says it's connected and firewalled. Maybe that's the problem, not my laptop. My buddy just bought it off a friend and wanted me to check it out. The other two connections are obviously the typical Wireless Connection and Local Area Connection for ethernet. I am continuing to investigate.
     
    Whizpopthat, Jan 24, 2020
    #8
  9. Whizpopthat

    Whizpopthat Private E-2

    I just tried the whatismyip advanced proxy check, it didn't detect a proxy.. I can't find any proxy settings on this system that I'm aware of, mbam did detect some proxy handler at one point "PUM.Optional.ProxyHijacker" as a registry value, but I haven't seen it pop up in a scan again. Scratch the 1394 I forgot about firewire
     
    Whizpopthat, Jan 24, 2020
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Well, regardless....this is not a malware issue. I suggest you continue to seek help in the software forum.

    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    3. If running Vista, Win 7 or Win 8, it is time to make sure you have re-enabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    4. Now go to the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 or 10 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    5. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    6. After doing the above, you should work thru the below link:
     
    TimW, Jan 24, 2020
    #10
  11. Whizpopthat

    Whizpopthat Private E-2

    forgot to include that also, but I don't think I'm having malware problems anymore. Still having IE issues though, only goes to bing search and google but nowhere else.

    And upon running Trendmicro Housecall it says there's an internal error "E:1226101508:2" tried downloading again just for good measure, same error.
     

    Attached Files:

    Last edited: Jan 24, 2020
    Whizpopthat, Jan 24, 2020
    #11
  12. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    The HJT log was part of the MGLogs.zip. You can delete it. I suspect your issue pertains to IE6 ... so please start a thread in the software forum for further assistance. :)
     
    TimW, Jan 25, 2020
    #12
    Eldon likes this.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds