skip to main content
GET IDEAS
Photos
Stories
Discussions
Houzz TV
Houzz Research
SHOP PRODUCTS
    Shop Latest Trends on Houzz
    Shop Curated Bathroom Vanities
Looking for the perfect gift? Send a Houzz Gift Card!
Houzz Logo Print
Explore Discussions
Computer Help
aufin

Got a problem

aufin
15 years ago

My son's machine.......can't do much on the internet. Has a "Google" warning box under the search bar stating "Google has detected an unregistered version of Antivirus 2009" on the computer. Clicking on the links do nothing. We are able to do searches (very slow) and find sites, but when trying to download Spybot or SuperAntispyware, or anything else, we keep getting redirected to someplace else. Usually a page titled About Blank. His computer has nothing for malware protetion. Yeah, I know....dumb, dumb, dumb. Question, how do I download one of these to my computer and install it on his? I've tried the "save" to my CD, on the run, save, cancel window, but when I try to get it to run on his computer, noting happens. Any ideas?

Comments (18)

  • zep516
    15 years ago
    last modified: 9 years ago

    You have a common infection run the program below follow all instructions and we may refer you to another forum,

    Please download Malwarebytes' Anti-Malware to your desktop. Click here
    Double Click mbam-setup.exe to install the application.
    Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    Â If an update is found, it will download and install the latest version.
    Â Once the program has loaded, select "Perform Full Scan", then click Scan.
    Â The scan may take some time to finish,so please be patient.
    Â When the scan is complete, click OK, then Show Results to view the results.
    Â Make sure that everything is checked, and click Remove Selected.
    Â When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
    Â The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
    Â Copy&Paste the entire report in your next reply.
    Extra Note:
    If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.

  • zep516
    15 years ago
    last modified: 9 years ago

    Here is the story on this one.

    antivirus 2009 is a new rogue anti-spyware program from the same family as Antivirus 2008 and Doctor Antivirus . Antivirus 2009 is installed and advertised through the use of misleading web sites that attempt to make you think your computer is infected with a variety of malware. Once installed, Antivirus 2009 will scan your computer and list a variety of fake infections that can't be removed unless you first purchase the software. These infections are fake, though, and only being shown to scare you into purchasing the software.

    When Antivirus 2009 is installed, a Internet Explorer browser helper object is also installed that displays fake messages when using Internet Explorer. These messages range from a line at the top of the browser stating an infection was found to adding a box to the Google homepage stating Google detected that your computer was infected. These tactics are just two more methods where Antivirus 2009 uses false information to scare you into purchasing their software.

  • Related Discussions

    I've got another problem.

    Q

    Comments (43)
    I can see how I could easily become a little obsessive about seeds. No seed or plant left behind lol. Am already that way about little plants and feel a little guilty when I lose some I've nurtured due to neglect. But I do not want to go overboard on that track. When I woke up I was thinking about "things", don't have much of a mind for deep philosophizing, but seeds represent life potential and resurrection of sorts, no matter what there is or isn't. It's nice to be a part of it, helping the process along. The beauty of a job well done is rewarding. Was also thinking about weeds, how much we hate them, why they are so easy and other plants so hard. But would we really want a perfect world where every flower is perfect? Just speaking for myself, the imperfect ones make the best ones seem all the more special. In some ways we have the power of life and death over the seeds, the ones we don't get around to planting. A lot of the rest of it is beyond our power to control. I am having a little trouble understanding why some are so into rudbeckias. I like them well enough and always get a thrill from diversity and the unexpected, but some of them look pretty much the same to me. And what is the difference between the yellow ruds with the red splash and Indian Blanket gaillardia? Normally I shun red and yellow together but see the beauty in those. Granted the flower form is different, but which are better and why the preference? Both seem to bloom all season, but my ruds topple. My sister doesn't like ruds but saw my Prairie Sun and Cherry Brandy and did like those. Certainly don't mean to hurt anybody's feelings or cause offense, but I don't like black-eyed susans; there is no rhyme or reason for it. I've been known to change my attitudes though. I've noticed I now like color combos that I would have never dreamed of putting together when I was younger. With me there seems to be a law of diminishing returns. The more perfection I strive for in composition, colors, types, etc., the less I seem to be satisfied. Then I see photos of things I wouldn't put together or things that just look "thrown" together, and they are the most beautiful of all. I know behind it all it required some thought and planning.
    ...See More

    I've got a problem.

    Q

    Comments (17)
    What I meant was that I have too many of some varieties. My rudbeckias were stunning this year and produced hand over fist. The agastaches did well. The salvia subrotunda kicked butt. And lots of others produced way too many seeds for me to plant in my ever shrinking yard. I'd rather pass them along. So one more....Who'll it be?
    ...See More

    help me see if I've got a problem with

    Q

    Comments (5)
    That's definitely not a good sign. Make sure you clean that tray out with some bleach just to make sure you kill whatever that is. If there isn't a concern of it spreading to other seeds you can just let it go and see if the seeds come up anyway. I tend to always give things the benefit of the doubt. But in this situation I'd start some more seeds just in case.
    ...See More

    Ya know ya got a problem when................

    Q

    Comments (31)
    When every other tree/plant in your little yard gets squished over to one side to make sure the plumerias have plenty of room to stretch out and sun. Bill, when you figure out how to get rid of your neighbor's tree (without getting busted) let me know. My neighbor has a huge ficus that is blocking the sun and dropping some real annoying seed things all over my yard. Vivian
    ...See More
  • zep516
    15 years ago
    last modified: 9 years ago

    If you have trouble downloading Malwarebytes and getting redirected,

    Try this,

    Using the F8 Method
    1. Restart your computer.
    2. When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
    3. Select the option for (Safe Mode with networking) using the arrow keys.
    4. Then press enter on your keyboard to boot into (Safe Mode with networking) then come here and click the CLICK HERE IN THE OTHER POST.

  • aufin
    Original Author
    15 years ago
    last modified: 9 years ago

    Maybe I didn't explain......I cannot download on his...the infected... computer. I am always redirected away from any site associated with antimalware. I can search, but going to the site is not possible, therefore no downloading to HIS machine. How do I go about saving to a CD on my computer and installing on his? I have tried, but evidently I'm not doing something right.

  • zep516
    15 years ago
    last modified: 9 years ago

    After running Malwarebytes download and install Avast and run it,

    You need to get an Anti virus on the Machine use this one for now, you can change it later..

    Some people will not offer this help on a machine that does not have an Anti Virus installed, You may have a lot of infections and it is possible you may have to reinstall,

    Lets see what Malwarebytes removes..

  • zep516
    15 years ago
    last modified: 9 years ago

    Try safe mode with networking in the above post.

    If that does not work try this,

    Cannot download Anti virus software fix
    Click Start > Control Panel > System > Hardware > Device Manager > View > Show Hidden Devices.

    * Scroll down to "Non-plug and Play Drivers" and click the plus icon to open those drivers.
    * Then search for TDSSserv.sys
    * Let me know if you find this or not.
    * If you do find it, right click on it, and select "Disable". Do not try to uninstall it.
    * Also if this is found and you disable it, then reboot and see if you can run the other scans that would not run.

  • randy_ca
    15 years ago
    last modified: 9 years ago

    You should be able to get on and download by starting in safe mode with networking, tap the F8 key on bootup.

    To burn a CD, insert a blank disk into the writer, right click the file you want and select Send To/DVD-RW or CD-RW
    You should get a balloon popup saying you have files waiting to be burnt, click the balloon and click burn to CD.

    You're going to be needing to run the programs that zep suggested to rid this infection.
    To bad you don't have a flash or thumbdrive to use for the transfer.

  • aufin
    Original Author
    15 years ago
    last modified: 9 years ago

    Thanks zep. Sorry I posted mid your posting 3&4. Seems to be working now. Had to go in through the control panel. D/L'ed malwarebytes and it's scanning now. 13 minutes in and 48 infected so far. We'll see what happens. Might take a while.

    And.....I do have a usb drive, just didn't think of it. Maybe next time.

  • aufin
    Original Author
    15 years ago
    last modified: 9 years ago

    Should I reactivate TDSSserv.sys again or is it part of the virus?

  • zep516
    15 years ago
    last modified: 9 years ago

    TDSSserv.sys
    Leave it alone please, Don't do anything to the computer, don't uninstall or reinstall or change anything to the system only run Malwarebytes, no other scans yet.

    Please post the log when done and Please install An anti Virus program I gave you a link for Avast, unless you know another FREE one you could download and run it, don't be on the web much either I Will work with you for awhile and we are going to direct you to another forum

  • aufin
    Original Author
    15 years ago
    last modified: 9 years ago

    I've run MBAM. Here's the log. Also installed Avast. Haven't run it yet.

    Malwarebytes' Anti-Malware 1.33
    Database version: 1675
    Windows 5.1.2600 Service Pack 2

    1/21/2009 9:34:04 PM
    mbam-log-2009-01-21 (21-34-04).txt

    Scan type: Full Scan (C:\:D:\:)
    Objects scanned: 87240
    Time elapsed: 42 minute(s), 36 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 7
    Registry Keys Infected: 42
    Registry Values Infected: 5
    Registry Data Items Infected: 4
    Folders Infected: 6
    Files Infected: 97

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    C:\WINDOWS\system32\tfpborxo.dll (Trojan.Vundo.H) -> Delete on reboot.
    C:\WINDOWS\system32\xxyxXQIX.dll (Trojan.Vundo.H) -> Delete on reboot.
    C:\WINDOWS\system32\ebazok.dll (Trojan.Vundo) -> Delete on reboot.
    C:\WINDOWS\system32\odcoar.dll (Trojan.Vundo) -> Delete on reboot.
    C:\WINDOWS\system32\ozaklo.dll (Trojan.Vundo) -> Delete on reboot.
    C:\WINDOWS\system32\vcaofw.dll (Trojan.Vundo) -> Delete on reboot.
    C:\WINDOWS\system32\gwmrlejv.dll (Trojan.Vundo.H) -> Delete on reboot.

    Registry Keys Infected:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\(0602185b-fd6d-4528-953d-ef635a987872) (Trojan.Vundo.H) -> Delete on reboot.
    HKEY_CLASSES_ROOT\CLSID\(0602185b-fd6d-4528-953d-ef635a987872) (Trojan.Vundo.H) -> Delete on reboot.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\(77ab5974-55a3-4737-9fd5-b93c64307f78) (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\(77ab5974-55a3-4737-9fd5-b93c64307f78) (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\(bcfcadab-c1b6-49db-97bd-47aad9cfbcba) (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\(833fb60a-13c0-4078-b34d-7ce7a2f11ee7) (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\(4fb0a396-c1fe-493e-bb58-5f1443a3f881) (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\(4fb0a396-c1fe-493e-bb58-5f1443a3f881) (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\(1ba861b6-3dd0-4922-890d-21291b317fe8) (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\(0602185b-fd6d-4528-953d-ef635a987872) (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\(77ab5974-55a3-4737-9fd5-b93c64307f78) (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\(9dd4258a-7138-49c4-8d34-587879a5c7a4) (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\(c3bcc488-1ae7-11d4-ab82-0010a4ec2338) (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\(6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c) (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\(5b4c3b43-49b6-42a7-a602-f7acdca0d409) (Adware.OneStepSearch) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\(9dd4258a-7138-49c4-8d34-587879a5c7a4) (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\(b8c0220d-763d-49a4-95f4-61dfdec66ee6) (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\(c3bcc488-1ae7-11d4-ab82-0010a4ec2338) (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\(000000da-0786-4633-87c6-1aa7a4429ef1) (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\icheck (Trojan.Agent) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\tdssdata (Trojan.Agent) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\tdss (Trojan.Agent) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\dpcproxy (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\logons (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\typelib (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\HOL5_VXIEWER.FULL.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Classes\applications\accessdiver.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\fwbd (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\HolLol (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Inet Delivery (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mslagent (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Golden Palace Casino NEW (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SYSTEM\currentcontrolset\Services\iTunesMusic (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SYSTEM\currentcontrolset\Services\rdriv (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\wkey (Malware.Trace) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\mwc (Malware.Trace) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

    Registry Values Infected:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\1039a4b9 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\(0e1230f8-ea50-42a9-983c-d22abc2eeb4c) (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\(0656a137-b161-cadd-9777-e37a75727e78) (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\11502311588515100851184273869642 (Rogue.Antivirus) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\SystemCheck2 (Trojan.Agent) -> Quarantined and deleted successfully.

    Registry Data Items Infected:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\xxyxxqix -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\xxyxxqix -> Delete on reboot.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders (Trojan.Agent) -> Data: digeste.dll -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr (Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

    Folders Infected:
    C:\WINDOWS\mslagent (Adware.EGDAccess) -> Quarantined and deleted successfully.
    C:\Program Files\akl (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\smp (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\Program Files\iCheck (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Program Files\GetModule (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Lee\Application Data\GetModule (Trojan.Agent) -> Quarantined and deleted successfully.

    Files Infected:
    C:\WINDOWS\system32\xxyxXQIX.dll (Trojan.Vundo.H) -> Delete on reboot.
    C:\WINDOWS\system32\XIQXxyxx.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\XIQXxyxx.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\rxgpfbhs.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\shbfpgxr.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\tfpborxo.dll (Trojan.Vundo.H) -> Delete on reboot.
    C:\WINDOWS\system32\oxrobpft.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\gwmrlejv.dll (Trojan.Vundo.H) -> Delete on reboot.
    C:\WINDOWS\system32\ebazok.dll (Trojan.Vundo) -> Delete on reboot.
    C:\WINDOWS\system32\odcoar.dll (Trojan.Vundo) -> Delete on reboot.
    C:\WINDOWS\system32\ozaklo.dll (Trojan.Vundo) -> Delete on reboot.
    C:\WINDOWS\system32\vcaofw.dll (Trojan.Vundo) -> Delete on reboot.
    C:\Documents and Settings\Lee\Local Settings\Temp\TDSS8690.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Lee\Local Settings\Temporary Internet Files\Content.IE5\1QBCIGR8\upd105320[1] (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Lee\Local Settings\Temporary Internet Files\Content.IE5\1QBCIGR8\index[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
    C:\Program Files\GetModule\GetModule32.exe (Adware.Agent) -> Quarantined and deleted successfully.
    C:\System Volume Information\_restore(052FFA65-6E8F-4958-9CC5-BC64FB6071A1)\RP343\A0023178.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
    C:\System Volume Information\_restore(052FFA65-6E8F-4958-9CC5-BC64FB6071A1)\RP343\A0024214.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\oywsvrto.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\TDSScfgb.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\TDSSnrsr.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\TDSSoeqh.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\TDSSriqp.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\oducixko.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\wpv761229907443.cpx (Adware.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\digeste.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\cfuvrkap.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\chawnvcv.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\vgsdlxhp.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\mikwdshd.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\drivers\TDSSpaxt.sys (Trojan.TDSS) -> Quarantined and deleted successfully.
    C:\WINDOWS\mslagent\2_mslagent.dll (Adware.EGDAccess) -> Quarantined and deleted successfully.
    C:\WINDOWS\mslagent\mslagent.exe (Adware.EGDAccess) -> Quarantined and deleted successfully.
    C:\WINDOWS\mslagent\uninstall.exe (Adware.EGDAccess) -> Quarantined and deleted successfully.
    C:\Program Files\akl\akl.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\Program Files\akl\akl.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\Program Files\akl\uninstall.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\Program Files\akl\unsetup.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\smp\msrc.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\Program Files\iCheck\Uninstall.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\TDSSosvn.dat (Malware.Trace) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\ieupdates.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\a.bat (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\base64.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\FVProtect.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\userconfig9x.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\winsystem.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\zip1.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\zip2.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\zip3.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\zipped.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\ (Fake.Dropped.Malware) -> Delete on reboot.
    C:\WINDOWS\bdn.com (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\iTunesMusic.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\mssecu.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\akttzn.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\anticipator.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\awtoolb.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\bdn.com (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\bsva-egihsg52.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\dpcproxy.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\h@tkeysh@@k.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\hoproxy.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\hxiwlgpm.dat (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\hxiwlgpm.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\msgp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\msnbho.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\mssecu.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\msvchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\mtr2.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\mwin32.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\netode.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\newsd32.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\ps1.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\psof1.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\psoft1.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\regc64.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\regm64.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\Rundl1.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\sncntr.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\ssurf022.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\ssvchost.com (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\ssvchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\sysreq.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\taack.dat (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\taack.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\thun.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\thun32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\VBIEWER.OCX (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\vcatchpi.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\winlogonpc.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\winsystem.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\WINWGPX.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\vbsys2.dll (Trojan.Clicker) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Lee\Local Settings\Temp\TDSS85a6.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\TDSSfpmp.dll (Rootkit.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\TDSStkdv.log (Trojan.TDSS) -> Quarantined and deleted successfully.

  • zep516
    15 years ago
    last modified: 9 years ago

    Please run avast and let it remove anything it finds.

    Malwarebytes has done you well how ever stronger tools are going to be required,

    CLICK HERE for additional help

    In the above link, please read the Instructions for posting a hijackthis log, you will need to join the forum to post, State your problem "Infected with 2009 Anti virus" post a hijackthislog, copy and post this Malwarebytes log, and a link to this post.

    It may take some time for a response be patient.

    Your computer should be running 80% better, that does not mean it's fixed so please follow up..

    zep516

  • aufin
    Original Author
    15 years ago
    last modified: 9 years ago

    OH Yeah!! Much better. Thanks much. I'll run Avast and take up again tomorrow. The bed is calling. Again, thank you for your time and patience.

  • zep516
    15 years ago
    last modified: 9 years ago

    Sorry,

    Gave you wrong link for Avast, boot to save mode and uninstall it then reinstall this one below, that link was for another forum I was working on you want the free version,

    Then run this ATF CLEANER as final step after you get the avast straightened out before going to the next forum.

    Sorry about that,

    Download ATF Cleaner by Atribune to your Desktop.


    Note: Vista users must use Run As Administrator
    Under Main: Select Files to Delete choose: Select All.
    Click the Empty Selected button.
    If you use Firefox browser click Firefox at the top and choose: Select All
    Click the Empty Selected button.
    If you would like to keep your saved passwords click No at the prompt.
    If you use Opera browser click Opera at the top and choose: Select All
    Click the Empty Selected button.
    If you would like to keep your saved passwords click No at the prompt.
    Click Exit on the Main menu to close the program.

  • ravencajun Zone 8b TX
    15 years ago
    last modified: 9 years ago

    wow that shows what not having working security programs on a pc can get you, that is one seriously infected machine.
    What ever you do please follow zep's advice and go to the help forum and start a thread there to get this pc cleaned up there are some bad infections there including rootkits.
    You have a start on it, so keep on going.

  • zep516
    15 years ago
    last modified: 9 years ago

    Then empty the recycle bin, then Visit the windows update page let it scan the pc and INSTALL ALL CRITICAL WINDOWS UPDATES.

  • aufin
    Original Author
    15 years ago
    last modified: 9 years ago

    Thanks guys, I really appreciate all the help/ This machine is running much better. And, r-cajin, yes, this sure is/was a messed up machine. My son's old enough to know better, especially when I keep asking him about security measures on this thing. Always answered...."yep, got it covered". Well, now we see what can happen messing around out here in cyberspace without protection. Especially going to the sites he visits such as the music sharing sites, gaming sites and GoK where else. Again, thanks guys. I've followed zep's instructions and posted with the LandzDown forum. Waiting for a reply. I'll be back, though. I lurk/read this forum a lot and learn a lot even though I don't say much. I intend to install the ATF cleaner and MBAM on my other machines and see what they turn up. I keep SuperAntispyware and SpyBot on them with constant updates. Thanks again.........

  • ravencajun Zone 8b TX
    15 years ago
    last modified: 9 years ago

    good work aufin! I see Corrine agrees you have a nasty one, that TDSS rootkit is one nasty bugger for sure plus all the others on there, quite an infection.

    Hopefully he will learn how important it is to keep our PC safe and secure and CLEAN and updated.

Related Stories
REMODELING GUIDESHave a Design Dilemma? Talk Amongst Yourselves
By Houzz
Solve challenges by getting feedback from Houzz’s community of design lovers and professionals. Here’s how
Full Story
13
HOUSEKEEPINGGot a Disastrously Messy Area? Try Triage
By Alison Hodgson
Get your priorities straight when it comes to housekeeping by applying an emergency response system
Full Story
264
WINDOWSAwkward Windows and Doors? We've Got You Covered
By The Inman Company
Arched windows, French doors and sidelights get their due with treatments that keep their beauty out in the open
Full Story
33
HOUSEKEEPINGBefore You Roast Those Chestnuts, Make Sure You've Got a Clean Chimney
By Bonnie McCarthy
Here's how to ensure your chimney is safe for holiday gatherings by the fire
Full Story
5
HOUSEKEEPING10 Problems Your House May Be Trying to Show You
By Mitchell Parker
Ignore some of these signs and you may end up with major issues. We tell you which are normal and which are cause for concern
Full Story
38
REMODELING GUIDESThe Hidden Problems in Old Houses
By Matt Clawson
Before snatching up an old home, get to know what you’re in for by understanding the potential horrors that lurk below the surface
Full Story
143
DECORATING GUIDESSolve Privacy Problems With Window Film
By Lindsey M. Roberts
Let the light in and keep prying eyes out with an inexpensive and decorative window film you can apply yourself
Full Story
53
LANDSCAPE DESIGNProblem Solving With the Pros: How to Build a Garden in an Urban Canyon
By Jay Sifford Garden Design
Skyscrapers, noise and deep shade create an unlikely sweet spot for a timeless green retreat in New York City
Full Story
76
LANDSCAPE DESIGNProblem Solving With the Pros: A Garden Built From Scratch
By Jay Sifford Garden Design
Nature is reintroduced and redefined in a Dutch urban setting, to forge a dynamic relationship with city dwellers
Full Story
21
GARDENING GUIDESSolve 3 Common Landscape Problems — With More Plants
By Benjamin Vogt / Monarch Gardens
Sometimes the best defense is a good offense
Full Story
20
Sponsored
More Discussions
UPS needed - which ones?
9
sound missing on Dell
3
Problems with Outlook 2013
0
Upgrading Windows 11 from Home to Pro
2
Any suggestions for a very secure non-web-based email?
3