Jump to content

I Have a Virus, but Don't Know Which One


Recommended Posts

Hi,

I'm a high school student with very little knowledge of computers. For

the past couple months (yes, I was in denial for that long) I have

noticed strange things going on with my laptop, a Dell Inspiron E1505

w/ Vista Home Premium 32-bit installed. Many of my programs have been

crashing/becoming unresponsive, and my system keeps telling me that

something is attacking my comp ("A recent attempt to attack your

computer has been blocked" - msg shows up about once every hour).

Also, I keep getting these random redirects and crazy searches. I have

IE7 beta (don't have the upgrade installed b/c I stopped using IE due

to the fact that it crashes every 10 seconds...), Mozilla Firefox,

Google Chrome, and Safari web browsers installed. Though I mainly use

Chrome and Firefox, Safari is my default. Whenever I have a browser

open and enter a search (sometimes when I don't) Safari will

automatically open itself withing search results/key words somewhat

related to what I'm actually doing.

I've tried using CCleaner and Malwarebytes Anti-Malware, the latter of

which finds (and I choose to remove) about 5 new trojans/malware/

things... every time I do a system scan/clean.

Also, I think there might me something wrong with my file associations

(problems in the registry?), because though I can download - and save

- exe files, I can no longer open them. I resorted to downloading

Isobuster and WinRAR, but they don't work for me. I've tried searching

fixes but they all involve editing the registry. It won't stay open. I

click it, and I -barely- see the window open for 2 seconds before it

disappears. WHAT DO I DO?!?

If the fix involves buying things, can you please let me know where I

can get them @ reasonable prices? I'm a high school senior saving up

for college (so obviously, no money to spare lol) and my parents

refuse to contribute to this so yeah... I saved enough to buy a

Windows 7 download, but I can't open & install it b/c my damn comp

can't open the file! HELP ME PLEASE!

xx Conpuzzled

Oh, and uh..if this is under the wrong topic refer me to the right one, would ya? Thanks :o

Link to post
Share on other sites

Hello Conpuzzled

Welcome to Malwarebytes.

=====================

  • Download OTL to your desktop.
  • Double click on OTL to run it.
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Under the Standard Registry box change it to All.
  • Under Custom scan's and fixes section paste in the below in bold


    netsvcs

    %SYSTEMDRIVE%\*.*

    %systemroot%\system32\*.dll /lockedfiles

    %systemroot%\Tasks\*.job /lockedfiles

    %systemroot%\system32\drivers\*.sys /90

    %systemroot%\system32\Spool\prtprocs\w32x86\*.dll


  • Check the boxes beside LOP Check and Purity Check.
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply.

Link to post
Share on other sites

Hello Conpuzzled

Welcome to Malwarebytes.

=====================

  • Download OTL to your desktop.
  • Double click on OTL to run it.
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Under the Standard Registry box change it to All.
  • Under Custom scan's and fixes section paste in the below in bold


    netsvcs

    %SYSTEMDRIVE%\*.*

    %systemroot%\system32\*.dll /lockedfiles

    %systemroot%\Tasks\*.job /lockedfiles

    %systemroot%\system32\drivers\*.sys /90

    %systemroot%\system32\Spool\prtprocs\w32x86\*.dll


  • Check the boxes beside LOP Check and Purity Check.
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply.

Okay so my last post didn't go though...

Thank You so much for responding! I've attached the OTL and Extras files to this post.

OTL.Txt

Extras.Txt

Link to post
Share on other sites

You are running 2 antivirus programs please uninstall Norton antivirus before proceeding.

Run OTL

  • Under the Custom Scans/Fixes box at the bottom, paste in the following
    :OTL
    O20 - HKCU Winlogon: Shell - (C:\RECYCLER\S-1-5-21-7716879672-8932460742-415069775-8874\MsMxEng.exe) - C:\RECYCLER\S-1-5-21-7716879672-8932460742-415069775-8874\MsMxEng.exe File not found
    O20 - HKCU Winlogon: Shell - (C:\RECYCLER\S-1-5-21-3861377378-5383940849-227102711-2197\MsMxEng.exe) - C:\RECYCLER\S-1-5-21-3861377378-5383940849-227102711-2197\MsMxEng.exe File not found
    [2010/10/01 23:00:40 | 000,000,000 | ---D | C] -- C:\Windows\A8B9466986544126BD28D0D2412CDED6.TMP
    [2009/09/15 21:23:39 | 000,000,000 | -HSD | M] -- C:\Users\Bathie DIA\AppData\Roaming\lowsec

    :Commands
    [emptytemp]


  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot when it is done
  • It will produce a log for you on reboot, please post that log in your next reply.

================================Malwarebytes' Anti-Malware=================================

Please update\run Malwarebytes' Anti-Malware.

Double Click the Malwarebytes Anti-Malware icon to run the application.

  • Click on the update tab then click on Check for updates.
  • If an update is found, it will download and install the latest version.
  • Once the update has loaded, go to the Scanner tab and select "Perform Full Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatley.

================================Online scan=================================

* Go here to run an online scannner from ESET.

  • Note: You will need to use Internet explorer for this scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activex control to install
  • Click Start
  • Check next options: Remove found threats and Scan unwanted applications.
  • Click Scan
  • Wait for the scan to finish
  • Use notepad to open the logfile located at C:\Program Files\ESET\ESET Online Scanner\log.txt
  • Copy and paste that log as a reply to this topic

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.