Jump to content

still have viruses after running Malwarebytes


Recommended Posts

I am pretty sure my computer has a virus although nothing is detected after running AVG antivirus or spybot. I also run highjact this but i am not sure how to interpret the result. I am having all kinds of problems with the Windows system files, unable to defragment or run check disk. help.

I was suggested to check FAQ issue #5. i was able to install and run a malware after renaming in to winlogin, but it did find over 100 viruses... but i still have issues with my computer. I get popups about corrupted files, can not run spybot, still have some audio tracks on the back ground, can not search my harddrive... I was also able to install and run rootrepeal (although i got an error while installing)

ROOTREPEAL © AD, 2007-2009

==================================================

Scan Start Time: 2009/08/09 16:57

Program Version: Version 1.3.3.0

Windows Version: Windows XP SP2

==================================================

Drivers

-------------------

Name: djex.sys

Image Path: C:\WINDOWS\system32\drivers\djex.sys

Address: 0xF3BB4000 Size: 61440 File Visible: No Signed: -

Status: -

Name: dump_diskdump.sys

Image Path: C:\WINDOWS\System32\Drivers\dump_diskdump.sys

Address: 0xF7A80000 Size: 16384 File Visible: No Signed: -

Status: -

Name: dump_viasraid.sys

Image Path: C:\WINDOWS\System32\Drivers\dump_viasraid.sys

Address: 0xB221F000 Size: 77824 File Visible: No Signed: -

Status: -

Name: giveio.sys

Image Path: giveio.sys

Address: 0xF7B58000 Size: 1664 File Visible: No Signed: -

Status: -

Name: rootrepeal.sys

Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys

Address: 0xAF5E1000 Size: 49152 File Visible: No Signed: -

Status: -

Name: speedfan.sys

Image Path: speedfan.sys

Address: 0xF7A98000 Size: 5248 File Visible: No Signed: -

Status: -

Hidden/Locked Files

-------------------

Path: C:\HIBERFIL.SYS

Status: Locked to the Windows API!

Path: C:\272989ddf29c8198af2cc83c054c4782\L

Status: Locked to the Windows API!

Path: C:\272989ddf29c8198af2cc83c054c4782\

Link to post
Share on other sites

  • Staff

Hi Galina and welcome to SWI.

Do you still need help?

Please visit this webpage for download links and instructions for running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

  • When the tool is finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt along with a new HijackThis log so we may continue cleaning the system.

-screen317

Link to post
Share on other sites

  • 3 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.