Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't do any windows security update.


  • Please log in to reply
12 replies to this topic

#1 swatch212v

swatch212v

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:31 PM

Posted 30 April 2011 - 04:14 PM

Hello to all. I'm a newbie at the site. I came across bleepingcomputer.com when I googled my desktop computer problem about windows vista security update. Here is what I can remember about my situation.

A couple of days ago I seem to notice that whenever I am trying to update my windows vista security updates it will try to connect to the internet, show me that it is starting to download the security files but then before it shows any progress (the window shows 1% download progress) it will just start to freeze and then show me an update error of "Code 80072EFE Windows Update encountered an unknown error." Knowing nothing about this issue, I tried to google it and went to the microsoft support site and read their comments about this code error. They said something about a rootkit issue. I then tried to download their rootkit removal tool with a code "windows-kb890830-v3.18" and run it as an administrator. It started to scan my computer but found no infection. Assuming that that was the case I then tried to do a security update but came up with the same error: code 80072EFE. I then tried to download their April, 2011 security update file called "mpam-fe.exe." I run it as an administrator but then before I can be able to run it it was stopped and nothing even showed up whether it is still running or not. I tried to double click it again but still the same thing happened. Looking at another website, it showed something about a tdsskiller.exe file from Kaspersky. I downloaded it, saved it to the desktop and then renamed it to a fictitious name (as instructed) and run it also as an administrator. Same thing happened, before anything can be accomplished it just stopped working and not showing any sign of activity from the screen. From further reading I guess my computer is infected by an unknown virus that I know nothing about. Worst of it all... occasionally I'm visited by the Blue Screen of Death and telling me that there is a problem with windows. I then tried to go on a safe mode but I don't know what to do inside the safe mode. Upon reboot, I can go back to my windows previous state but still unable to do any security update for windows. I even have encountered a redirection when I google solutions regarding the windows code 80072EFE using firefox to some unusual websites that I don't know of.

I hope somebody would be kind enough to help me out. I am now trying to back up all my personal files before something gets worse about my computer. I am running on windows vista 32-bit version home premium edition. I have spybot search and destroy running on the system and also the free edition version of AVG anti-virus on my system.

Thank you very much in advance. :)

swatch212v

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:31 PM

Posted 30 April 2011 - 05:47 PM

With the information you have provided I believe you will need help from the malware removal team. I would like you to start a new thread and post a DDS log HERE and include a link to this thread. Please make sure that you read the information about getting started before you start your thread.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient. Help is on the way!

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 swatch212v

swatch212v
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:31 PM

Posted 30 April 2011 - 06:04 PM

Thank you very much, Broni. I hope I can follow the instructions well where to start a new thread and how to make a DDS log.

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:31 PM

Posted 30 April 2011 - 06:07 PM

Cool beans :)

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 swatch212v

swatch212v
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:31 PM

Posted 30 April 2011 - 06:30 PM

Broni, kindly be patient with me. I have read the link on how to prepare my computer before using the Malware Removal Tools and Requesting Help. When I came across instruction 5 about activating my Windows Firewall to the ON setting i encountered this message: "Due to an unidentified problem, Windows cannot display windows firewall settings. My question would be - "Should I proceed to the next instruction about disabling the CD emulation software or wait for further instruction for now?" Thank you very much for the help.

#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:31 PM

Posted 30 April 2011 - 06:31 PM

Yes, skip any step, you can't perform, but let the malware helper know about it.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#7 swatch212v

swatch212v
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:31 PM

Posted 30 April 2011 - 06:42 PM

Thank you very much for the prompt reply. I will try to proceed with the remaining procedures and hopefully I can post the result on a new thread. Thanks again. :thumbup2:

#8 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:31 PM

Posted 30 April 2011 - 06:52 PM

You're very welcome Posted Image

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#9 swatch212v

swatch212v
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:31 PM

Posted 03 May 2011 - 09:15 AM

An update:

Broni, thank you very much for your help. Unfortunately, I was greeted by the dreaded BSOD in succession that it was too hard for me to go to windows anymore. My computer is just dumping whatever is on the memory to the disk. I had no choice at this time but to reinstall windows vista. I was able to recover most of my files since windows kept my old data on a certain folder called windows.old. I retrieved all my personal files and deleted most of what's left. However, the old system files can't be deleted from the windows.old folder. Do you by any chance have a way of knowing how to delete them as they are eating almost 23GB of hard disk space for nothing. Thank you very much for the help.

Edited by swatch212v, 03 May 2011 - 09:24 AM.


#10 hamluis

hamluis

    Moderator


  • Moderator
  • 55,562 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:07:31 PM

Posted 03 May 2011 - 05:24 PM

Are you saying that you cannot delete the Windows.old folder?

You should be able to do so, that should be just a storage file.

Louis

#11 swatch212v

swatch212v
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:31 PM

Posted 03 May 2011 - 05:36 PM

After reinstalling windows vista OS and updating all the security patch from Microsoft, the system prevented me from totally deleting the whole folder. When the delete procedure comes across the windows old ***.dll files and program files it totally stopped the deletion process. I was only able to delete my own personal files that I am willing to delete and that's it. I thought the same, too that it's just a storage location of old junk files from the previous contaminated system but I have no idea why it can't delete the whole folder.

I installed Revo Uninstaller on my clean system and it did delete most of the old files but I still have 4GB of files that can't be deleted inside windows.old. I could probably live with this considering that it was total chaos when every time I boot before I can't go past the BSOD and unable to go inside windows anymore. Any technical assistance or explanation why Windows cannot delete the whole windows.old folder would be very much appreciated from you guys. Thank you very much in advance.

#12 swatch212v

swatch212v
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:31 PM

Posted 03 May 2011 - 06:19 PM

Another update:

Thanks guys, I was able to work around the situation about the deletion of Windows.old folder, subfolder, and individual files. I think by default all windows OS files are protected against deletion and is "owned" by the TRUSTEDINSTALLER. What I did found out is that by editing the properties of each folder, subfolder, and sometimes individual files (specially the *.dll type) you can change the "ownership" of these system files and change it to your administrative account. It is a lot of work but I was able to delete a whole folder, with the corresponding subfolder and files in it using this method. You have to click the option FULL CONTROL to be able to delete system files. I am referring to my old system files under Windows.old and not the actual system files used by Windows vista on my working system right now. Thank you very much.

Edited by swatch212v, 03 May 2011 - 10:02 PM.


#13 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:31 PM

Posted 03 May 2011 - 07:21 PM

Cool beans :)

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users