Computer Hope
Software => Computer viruses and spyware => Topic started by: Mnemosyne on April 12, 2009, 04:18:18 PM
-
Hi - followed the procedure in the sticky above and attached the .txt files below. Deleted a ton of malware/viruses. I originally began seeking help because every time I clicked on a link in a search engine in any browser (IE, Firefox, Chrome), it would redirect me to a completely different website (if I right clicked and opened in a new tab/window, the correct link comes up). I believe that problem has been resolved but I still am having problems:
1) Can't open MS Word - 2 dialogue boxes appears, first one says that MS Word cannot open because another dialogue box is open and the second box is in Chinese, so I don't know what it says. It looks different from a regular Windows dialogue box... ??? Screen shot attached.
2) Can't download Google Chrome - this was the main browser I was using prior to all the scanning. It states that installation has failed and nothing else.
3) Can't view any pictures - I don't they've been deleted but i need help accessing them.
I've installed Firefox and saved a few pictures since the scans - I am able to post updated logs if needed. Thank you in advance!
[attachment deleted by admin]
-
Cookies are not malicious and this does not appear to be a malware issue.
Download Dial-a-Fix (http://wiki.djlizard.net/Dial-a-fix#Mirrors.2Fdownload_locations.2C_and_articles) by djlizard, save it to the desktop then extract it to it's own folder.
- Open the folder and run Dial-a-fix.exe
- 2 windows will open. Close the one in the background labeled Restrictive Policies
- Check the box in section 1, Empty temp folders.
- Check the box in section 2, Fix Windows Installer.
- Check the box in section 3, Fix Windows Update.
- Check the box in section 4, labeled SSL/HTTPS/Cryptography. The 4 boxes under it should be pre-checked
- Check all boxes in section 5, labeled Registration Center.
- Click Go
- OK any error messages if received, but write them down and post them here.
- Restart the computer when done.
.
----------
* Download and run the following file to repair file and registry permissions: fixacl.exe (http://kixhelp.com//wr/files/mb/fixacl.exe)
Download FixPolicies.exe by Bill Castner (http://downloads.malwareremoval.com/BillCastner/FixPolicies.exe)
Double-click FixPolicies.exe.
Click the Install button on the bottom toolbar of the box that will open.
The program will create a new Folder called FixPolicies.
Double-click to Open the new Folder, and then double-click the file within: Fix_Policies.cmd
A black box will briefly appear and then close.
Restart the computer so the changes can take effect.
----------
Reset Settings in Internet Explorer 7 - http://support.microsoft.com/kb/923737
How is the computer acting now?
-
Hello! Thank you for your reply.
I have downloaded and ran Dial A Fix. 2 windows did not pop up - just 1. Hope that doesn't mean something is wrong...I checked all the appropriate boxes but unchecked Tooltips. As soon as I hit "Go", an error message popped up - cmd.exe not found. I have attached a screenshot below.
I restarted the computer and saved/downloaded/extracted and tried to run fixacl.exe but a very long error message came up immediately. This is the second screenshot below.
I wasn't sure what I was supposed to look for after fixacl.exe ran, so I went ahead and downloaded/ran fixpolicies.exe. A new folder was created and I clicked on the fix_policies.cmd icon. No black box popped up and I restarted my computer. I then reset the settings in IE. The links still redirect to random websites. Am I supposed to reset the settings on Firefox as well? Thank you! :D
[attachment deleted by admin]
-
Download DDS by sUBs (http://www.forospyware.com/sUBs/dds) and save it to your desktop. Alternate DDS download link (http://download.bleepingcomputer.com/sUBs/dds.scr)
Vista users right click on dds and select Run as administrator (you will receive a UAC prompt, please allow it)
* XP users Double click on dds to run it.
* If your antivirus or firewall try to block DDS then please allow it to run.
* When finished DDS will open two (2) logs.
1) DDS.txt
2) Attach.txt
* Save both logs to your desktop.
* Please include the entire contents of both logs in your next reply.
Note: DDS will instruct you to post the Attach.txt log as an attachment.
Please just post it as you would any other log by copy and pasting it into the reply.
-
Hi - there is an error message that keeps popping up: cmd.exe cannot be found. I've attached the screenshot below. I'm hoping everything will be ok :'(
[attachment deleted by admin]
-
Try doing a System Restore to before this started happening. Go to Start > Run and type rstrui.exe and press Enter.
-
Sorry for taking so long - super busy day.
I received an error box the is pretty much the same as the one above, where cmd.exe can't be found :-[. It states: "Windows cannot find rstrui.exe Make sure you typed the name correctly, and then try again. To search for a file, click the Start button, and then click Search."
Thanks as always :)
-
Right click Dial-a-fix and rename it Dial-a-fix.com then try to run it. You may need to download a new copy and rename it during the install.
-
2) Can't download Google Chrome - this was the main browser I was using prior to all the scanning. It states that installation has failed and nothing else.
And there is your first (or one of the first) mistake.
-
And there is your first (or one of the first) mistake.
PLease keep these comments out of the malware removal forum. It does nothing to help the process.
-
Hello! I re-downloaded Dial-A-Fix and renamed it to Dial-A-Fix.com: Although the same error message (Can't find cmd.exe) popped up 3 times, something happened. I believe Dial-A-Fix was able to fix some errors.
After restarting, I tried to run fixacl (which I am assuming I need to run first). The same long error message as before came up; however, I was able to install and run FixPolicies.exe. No black boxes appeared again but the screen turned all white (my desktop background color) and blank - all the icons on my Desktop, my Startup menu, etc. reappeared a few seconds later. I restarted the computer and came here to post my results! *crossing fingers* Thank you!
-
Download random's system information tool (RSIT) (http://images.malwareremoval.com/random/RSIT.exe) by random/random from and save it to your Desktop.
- Double click on RSIT.exe to run.
- Click Continue at the disclaimer screen.
- Once it has finished, two logs will open.
- log.txt <will be maximized and info.txt <will be minimized
- Please post the contents of both logs in the next reply.
-
Hello! I have attached the files below. I will be away for the weekend but will return on Monday - just making sure my topic will not be closed! Thank you! :D
[attachment deleted by admin]
-
Download ComboFix© by sUBs from one of the below links. Be sure top save it to the Desktop.
Link #1 (http://download.bleepingcomputer.com/sUBs/ComboFix.exe)
Link #2 (http://subs.geekstogo.com/ComboFix.exe)
**Note: It is important that it is saved directly to your Desktop
Close any open Web browsers. (Firefox, Internet Explorer, etc) before starting ComboFix.
Temporarily disable your antivirus, and any antispyware real time protection before performing a scan. Click this link (http://www.bleepingcomputer.com/forums/topic114351.html) to see a list of security programs that should be disabled and how to disable them.
Double click combofix.exe & follow the prompts.
When finished ComboFix will produce a log for you.
Post the ComboFix log in your next reply.
Important: Do not mouseclick ComboFix's window while it is running. That may cause it to stall.
Remember to re-enable your antivirus and antispyware protection when ComboFix is complete.
If you have problems with ComboFix usage, see How to use ComboFix (http://www.bleepingcomputer.com/combofix/how-to-use-combofix)
-
Hello! I downloaded ComboFix (first link didn't work but second one did) and ran it (after temporarily disabling all AntiVirus/AntiSpyware programs and closing all internet browsers) but no log file appeared! I restarted my computer, disabled/closed all indicated programs/browsers and tried to run it again but still no logfile showed up ???
-
Go to Start > Run and type c:\combofix.txt then click OK. It should pop up.