Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Trojan Horse/unable to run malwarebytes & hijackthis [Closed]

Started by slmitten , Mar 01 2009 10:48 AM

  • This topic is locked This topic is locked

#1
slmitten
Posted 01 March 2009 - 10:48 AM

slmitten

    Member

  • Member
  • PipPip
  • 59 posts
I have been trying to clean my brother-in-laws laptop with AVG, Ad aware & Kaspersky.
Still having Problems.
I am unable to get Malwarebytes, Mcafee,spybot & hijackthis to run
Toshiba laptop running XP
Upon booting getting many apps with "has encountered a problem and needs to close"

Verify class ID
McAfee Spamkiller server
Image mastering API
cfsserv.exe
run a dll as an app
toscdspd.exe
Toshiba power saver
smoothview
synaptics touchpad enhancements
padexe.exe
tfncky
McAfee Task Scheduler
swupdtmr.exe
toddsrv.exe
fax service
McAfee WSC Integration service

All of these encountered a problem at boot.

I am currently rerunning AVG Scan which is not complete but it shows
Trojan Horse SHEUR2.OOX
Trojan Horse Geneeric12.BRSJ
Virus Win32/ Huer
I have already run AVG scan a few times and thought stuff had been cleaned.
I really need some guidance....
Thanks.
  • 0

Advertisements

#2
SpySentinel
Posted 05 March 2009 - 04:45 PM

SpySentinel

    R.I.P.

  • Retired Staff
  • 5,152 posts
Hi slmitten,

Welcome to Geeks to Go! My name is SpySentinel and I will be helping you fix your computer problem.
Sorry for the delay, we have been very busy lately, and I apologize for your wait.




Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT !!! Save ComboFix.exe to your Desktop


  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

  • Double click on ComboFix.exe & follow the prompts.

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.


Posted Image



Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Posted Image


Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.
  • 0

#3
slmitten
Posted 05 March 2009 - 06:38 PM

slmitten

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
I tried to run Combofix but it would never start.
After seeing "Verify Class ID has encountered a problem and needs to close" several times
windows shutdown and restarted.
Now I am having recursive rebooting.
  • 0

#4
SpySentinel
Posted 05 March 2009 - 07:20 PM

SpySentinel

    R.I.P.

  • Retired Staff
  • 5,152 posts
Try this, delete ComboFix, then


Download Combofix from any of the links below. You must rename it before saving it. Save it to your desktop.

Link 1
Link 2

Posted Image


Posted Image
--------------------------------------------------------------------

Double click on Combo-Fix.exe & follow the prompts.
  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt along with a HijackThis log so we can continue cleaning the system.

  • 0

#5
slmitten
Posted 05 March 2009 - 09:38 PM

slmitten

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
When executing the file combo-fix app I now get several verify class id encountered a problem and needs to close
errors and a few "freeware implementation of reg.exe encountered a problem .
Then I see " Incompatible OS. combofix only works for workstations with windows 2000 & XP.
My OS is XP Home (I believe SP2 but I am unable to get my computer properties to show status...just get that
verify class id error)
  • 0

#6
SpySentinel
Posted 06 March 2009 - 06:25 PM

SpySentinel

    R.I.P.

  • Retired Staff
  • 5,152 posts
Plug in a usb mouse and then use start --> run --> type in...msconfig... enter...start tab...and uncheck everything

Then reboot

*You will need the usb mouse because your touch pad will not work when you reboots
  • 0

#7
slmitten
Posted 07 March 2009 - 08:21 AM

slmitten

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
I had to reboot to get the usb mouse to be seen.
Tried to run "msconfig" and nothing happens...
The same can be said when I tried to run regedit.. nothing happens.
  • 0

#8
SpySentinel
Posted 07 March 2009 - 08:03 PM

SpySentinel

    R.I.P.

  • Retired Staff
  • 5,152 posts
Looks like you have many windows files corrupted... I believe you are so infested it may be quicker and easier to repair xp.

Go HERE
to learn how to repair your computer.


Let me know how it goes.
  • 0

#9
slmitten
Posted 10 March 2009 - 05:29 AM

slmitten

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
It would appear that my brother-in-law cannot find any of the CDs that came with the laptop.
What would you suggest that I try and do next ?
Thanks....
  • 0

#10
SpySentinel
Posted 10 March 2009 - 06:33 PM

SpySentinel

    R.I.P.

  • Retired Staff
  • 5,152 posts
You will have to borrow a copy from friend, family or coworker...
HAS TO BE the same flavor..if the system has xp pro...then the version you borrow needs to be the same
  • 0

#11
SpySentinel
Posted 16 March 2009 - 02:06 PM

SpySentinel

    R.I.P.

  • Retired Staff
  • 5,152 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP