Jump to content

Protection System/Security Center Alert Malware


Recommended Posts

Hi,

I've read the other posts (and pinned notes) about removing malware posing as security programs, but (from the screenshots and descriptions) none look like what I'm seeing so I could really use your help!

I'm running WinXP on a Thinkpad.

I'm getting pop-ups with official-looking "Security Center Alerts" and "Protection Center" warnings & offers. Periodically it also offers/tries to start deleting MBAM & installs itself in Program Files:Protection, and drops some x-rated shortcuts on my desktop. At first, search result links would also redirect to advertising sites, but I'm not getting that now.

When I try to run MBAM or HJT install files (or MBAM.exe itself, from my previously installed version) they appear in the task manager process list but nothing happens. I ran a McAfee scan this morning when the issues were just starting, which deleted some problem .dlls but obviously didn't fix the real problem.

I don't know if this is relevant, but since some of the issues in the pinned post re: interference with MBAM sounded similar, I downloaded and ran RootRepeal as described in the "CLB Rootkit infection aka WinNT-Alureon" guide, and the scan only turned up my computer's hibernation file. Interestingly, when I started the RootRepeal scan I got a pop-up with a message about my system files being disrupted and a countdown to system shutdown, which I ignored (no shutdown followed).

I am far from an expert and desperate for help with this! I've attached screenshot of the most common popup I'm seeing.

Thanks,

S.

post-21764-1255027088_thumb.jpg

Link to post
Share on other sites

Hi,

Sorry for delayed response. Forums have been really busy. If you still need help with this do following, please.

Download DDS and save it to your desktop from here or here or here.

Disable any script blocker, and then double click dds.scr to run the tool.

  • When done, DDS will open two (2) logs:
    1. DDS.txt
    2. Attach.txt

    [*]Save both reports to your desktop. Post them back to your topic.

Download GMER here by clicking download exe -button and then saving it your desktop:

  • Double-click .exe that you downloaded
  • Click rootkit-tab and then scan.
  • Don't check
    Show All
    box while scanning in progress!
  • When scanning is ready, click Copy.
  • This copies log to clipboard
  • Post log in your reply.

Link to post
Share on other sites

  • Root Admin

Due to the lack of feedback this Topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

The fixes and advice in this thread are for this machine only. Do not apply the instructions from this thread to your own machine. Please start a new thread describing your issue and someone will be along to assist you.

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.