Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected Windows XP HDD Virus


  • This topic is locked This topic is locked
4 replies to this topic

#1 Scraptilldawn

Scraptilldawn

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:10:34 AM

Posted 27 March 2012 - 09:25 AM

I am trying to clear an apparant HDD virus from a co-workers computer. OS is Windows XP Pro. First got this virus a week ago. I've been trying to clear it with MalWare Bytes and SpyBot up until this point. It appears to be fine after clearing, but then the virus issues reappear at least daily. At this point, I really do not know what else to try with it. I am trying to avoid a format and reload.

MalWare Bytes detects:
PUM.Hijack.Startmenu
Trojan.FakeAlert
PUM.Hijack.TaskManager
Rogue.FaketDD

Also the HDD fake utility keeps popping up and running.

I had to run rkill & unhide in order to run the gmer program. Ran gmer after running these two utilities.
I have attached the log created by gmer.

Thank you in advance for any help you can lend me!

Attached Files



BC AdBot (Login to Remove)

 


#2 ratman

ratman

    Bleepin' gnawing at it!


  • Malware Response Team
  • 1,799 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:05:34 PM

Posted 29 March 2012 - 05:04 PM

Hello Scraptilldawn,

My name is ratman and and I will be helping you with your computer problems.

Before we begin, I would like to make a few things clear so that we can fix your problem as efficiently as possible:

  • Be sure to follow all my instructions carefully! If there is anything you don't understand, don't hesitate to ask.
  • Please do not do anything or perform other steps unless I have asked you to do so.
  • Please make sure you post all logs I ask you to, and make sure that the entire log gets posted.

====================================================================================

I need to see some information about what is happening in your machine.
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.

Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


In your next reply, please copy/paste the contents of the following:
  • DDS.txt
  • Attach.txt

regards, ratman

a proud member of:
Posted Image

If I am helping you, it has been 48 hours since your last post, and I have yet to reply to your topic, please send me a PM

If I have helped and you would like to show your appreciation you may Posted Image to the cause.



#3 ratman

ratman

    Bleepin' gnawing at it!


  • Malware Response Team
  • 1,799 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:05:34 PM

Posted 02 April 2012 - 07:41 AM

Hello Scraptilldawn,

I have not had a reply from you for 3 days. Can you please tell me if you still need help with your computer as I am unable to help other members with their problems while I have your topic still open. The time taken between posts can also change the situation with your PC making it more difficult to help you.
regards, ratman

a proud member of:
Posted Image

If I am helping you, it has been 48 hours since your last post, and I have yet to reply to your topic, please send me a PM

If I have helped and you would like to show your appreciation you may Posted Image to the cause.



#4 Scraptilldawn

Scraptilldawn
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:10:34 AM

Posted 02 April 2012 - 01:15 PM

Sorry Ratman. I could not get the DDS to run so I did have somebody come in and fix the computer for me. Thank you for your assistance!

#5 ratman

ratman

    Bleepin' gnawing at it!


  • Malware Response Team
  • 1,799 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:05:34 PM

Posted 03 April 2012 - 06:35 AM

Thanks for letting me know - glad you got problem sorted.

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
regards, ratman

a proud member of:
Posted Image

If I am helping you, it has been 48 hours since your last post, and I have yet to reply to your topic, please send me a PM

If I have helped and you would like to show your appreciation you may Posted Image to the cause.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users