Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

No browser will open, Firewall won't start, terminating Runtime error, fairly clean scans


  • Please log in to reply
1 reply to this topic

#1 alembic

alembic

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:10:09 PM

Posted 05 July 2010 - 02:01 AM

Hi,

Trying to fix a slate of messy problems that all hit at once.
I realize the range of problems is broad but I hope someone recognizes the symptoms and can help. Possible rootkit, virus, or Windows corruption.

Win XP Service pack 3
Dell 530s, 1.60mhz Pentium dual, 1gb ram.
Avira AntiVir


Symptoms:
In normal mode -

No browser will open; not IE8, Firefox 3, or Opera10. No error; just never opens.
Windows Firewall will not start.
Runtime error issued by "NT Authority\System" then shuts down in 60 secs.
+Avira AntiVir Guard service ok, runs ok.+

In Safe mode -

Avira Antivir Guard service stopped, will not re-start.
Windows Firewall will not start.
+ Browsers will open.+

Anti-virus/malware scans:
Avira = 1 Warning; Unable to scan Dc125.exe "Insufficient memory."
SuperantiSpyWare = Finds two cookies; ad.wsod[2].txt, media6degrees[1].txt
Malwarebytes = nothing found.

Actions taken:
Tried repair Windows installation through 'sfc /scannow; quit half way through and will not restart.
I stopped unnecessary services through Startup.
Tried re-installing Java and Adobe Reader with no success.
Defogger successfully run.
Backed up files.
I can kill the Runtime error in normal mode using 'shutdown -a' but it returns when I re-boot.


Thank you for your time.

Edited by alembic, 05 July 2010 - 02:02 AM.


BC AdBot (Login to Remove)

 


#2 alembic

alembic
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:10:09 PM

Posted 05 July 2010 - 03:11 PM

Update: Definite virus infection

Microsoft onecare.live.com scan results:

4 Exploits found:
1) Java/CVE-2008-53.53C
x2 instances - "myf/y/appletx.class"
2) Java/CVE-2008-5353.DB
x1 instance - "gogol/familie.class"
3)Java/Selace.K
x2 instances - "myf/y/loaderx.class"
4)Java.Selace.L
x2 instances - "myf/y/denehdf.class"


1 High level issue found
Program: Win32/RegCure
"nsis-6-regcure.exe"

Any help would be appreciated.
Thanks for your time.

Edited by alembic, 05 July 2010 - 03:11 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users