Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Win32/Patched.CG


  • This topic is locked This topic is locked
8 replies to this topic

#1 JAK17

JAK17

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:32 AM

Posted 10 April 2010 - 03:12 PM

Hi. New here and looking for help from those who seem to be the most wonderful people I've ever known to be on the internet - All here at bc who I can see help so many people :thumbsup: . I'm a bit scared because I've rarely accessed the kind of core systems it seems I may need to but I've done some of your malware steps 1-9 and doing okay so far.

Right, best get down to business I guess.

My 2 immediate problems are:

1.

An AVG Resident Shield alert:

C:\WINDOWS\system32\drivers\atapi.sys

Win32/Patched.CG

2.

When I try to connect to the internet (3G dongle) a pop up appears that reads:

Connection not possible. Please close the application, remove the modem, re-insert the modem, and restart the application.

Win32 Exception( 3,221,225,477): Access Violation, In thread: 0x00000F54

------------------------------------------------

Additional Info:

I use AVG and windows XP firewall (though only activated today and I've been online for months) rkill and MBAM

I have had a few xp virus (xp internet security, xp defender etc.) attacks over the last few weeks & each one was healed using rkill & MBAM (though I suspect I've not fully killed them). I've also used AVG daily and it's found lots of trojans and a few other things. Then last night while online PC screen went blue and since then problems 1 & 2 (above) have since happened & PC has been slow & I've had trouble getting programs to work & trouble connecting to the internet (I somehow got connected after much reebooting and PC freezing and haven't dared go offline since).

Of steps 1-9 of your malware prep guide I've only done no's 3, 4, 5 & 7 I'm afraid (I want to back up but have no spare drives or CD-R's at present ((hopefully CD-R's tomorrow))). I'm not sure about doing the others if I don't need to. If you need me to to do them all please let me know.

Any help would be greatly appreciated

Edited by JAK17, 10 April 2010 - 05:00 PM.


BC AdBot (Login to Remove)

 


#2 techextreme

techextreme

    Bleepin Tech


  • BC Advisor
  • 2,125 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pittsburgh, PA
  • Local time:01:32 AM

Posted 12 April 2010 - 09:50 AM

At this point, I think this one is best left to the experts, so I'm going to refer you to the Virus, Trojan, Spyware, and Malware Removal Logs Forum.

Please read the Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help in cleaning your computer. Once complete, post a link back to this forum so the MRT team knows what we have tried.

Please be patient as the MRT team is quite busy sometimes and it may take a day or even a few for someone to pickup your log but someone will get back to you.

Techextreme

"Admire those who attempt great things, even though they fail."

-- Seneca

 


#3 JAK17

JAK17
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:32 AM

Posted 12 April 2010 - 12:59 PM

At this point, I think this one is best left to the experts, so I'm going to refer you to the Virus, Trojan, Spyware, and Malware Removal Logs Forum.

Please read the Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help in cleaning your computer. Once complete, post a link back to this forum so the MRT team knows what we have tried.

Please be patient as the MRT team is quite busy sometimes and it may take a day or even a few for someone to pickup your log but someone will get back to you.


Thankyou Techextreme.

My next post will contain as much updated information as I can give.

#4 techextreme

techextreme

    Bleepin Tech


  • BC Advisor
  • 2,125 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pittsburgh, PA
  • Local time:01:32 AM

Posted 12 April 2010 - 01:06 PM

Please make sure you read the Preparation Guide and post in the Virus, Trojan, Spyware, and Malware Removal Logs Forum.

Techextreme

"Admire those who attempt great things, even though they fail."

-- Seneca

 


#5 JAK17

JAK17
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:32 AM

Posted 12 April 2010 - 01:19 PM

Re: Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help in cleaning your computer.

I have completed steps 1-5

Problem with step 6:

Instructions 1-5 went exactly as explained. But regarding instruction 6 - I WAS NOT ASKED TO REBOOT. I now don't know if my CD Emulation stuff has been disabled or not. Do you know what I should do?

#6 techextreme

techextreme

    Bleepin Tech


  • BC Advisor
  • 2,125 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pittsburgh, PA
  • Local time:01:32 AM

Posted 12 April 2010 - 01:38 PM

If CD Emulation programs are present and have been disabled, DeFogger will now ask you to reboot the machine.


If you were not asked to reboot then you did not have any CD Emulation software on your computer.

You can safely continue on. :thumbsup:

You're doing just fine :flowers:

Techextreme

"Admire those who attempt great things, even though they fail."

-- Seneca

 


#7 JAK17

JAK17
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:32 AM

Posted 12 April 2010 - 04:09 PM

Thanks infinitely for your help techextreme

I have successfully completed steps 1-8 of The Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help in cleaning your computer.

I completely understand step 9 but don't want to Post a new malware removal request yet in case you need me to do anything more first.

Would you be able to tell me what I should do next. :thumbsup:

#8 techextreme

techextreme

    Bleepin Tech


  • BC Advisor
  • 2,125 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pittsburgh, PA
  • Local time:01:32 AM

Posted 13 April 2010 - 06:18 AM

As long as you have the steps completed in the Preparation Guide, you can create a new post in the Virus, Spyware, Malware Removal forum. The unfortunate part is the wait. The MRT Team is usually quite busy but they will pickup your log and get you taken care of.

Good Luck :thumbsup:

Techextreme

"Admire those who attempt great things, even though they fail."

-- Seneca

 


#9 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,808 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:01:32 AM

Posted 13 April 2010 - 07:15 PM

Hello,

Now that you have posted a log here: http://www.bleepingcomputer.com/forums/t/309380/various-concerns-avg-resident-shield-alert-win32patchedcg-avg-warnings-and-infections/ you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

To avoid confusion, I am closing this topic. Good luck with your log.

Orange Blossom :thumbsup:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users