[x]
Posted via EE Mobile

Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.
09/02/2009 at 06:15AM PDT, ID: 24701143 | Points: 500
[x]
Attachment Details

New Malware Desote

Asked by Sc0tsm4n in HijackThis Software, Enterprise Anti-Virus, Avast Anti-Virus Software

Tags: Desote, Antispyware 2009, Spyware police

I have an especially tough case of Antispyware Pro 2009. I have tried multiple suggestions from the forums and have tried working through the "Read and Run Me First" list; here are the results:

I have Windows XP

1. Step One is maintenance I do regularly
2. Uninstall of any program cannot be accomplished. When I open the control panel and select "Add or Remove Programs" the following message appears: C:\WINDOWS\system32\rundll32.exe The parameter is incorrect.
3. I cannot add/remove programs or access any of the antivirus or antispyware apps as they will not open. I was able to run ccleaner once (already had it on my machine) when I first had the virus but it did not clean/remove it.

Note: Above steps have been attempted both in safe mode and normal mode.

4. When I attempt to view hidden files, the only options under the tools tab are "map Network Drive, Disconnect Network Drive, and Synchronize.

When I attempt to run Msconfig, I can see a nanosecond flash of the DOS command window, but it instantly disappears.

4. Uninstall Malware: every antivirus program I run will attempt to start  be shut down by windows. I have tried saving programs (Such as Malware Bytes and SpyBot S&D) to a Jump drive from a clean computer and have tried to run with the same results as above. Note that when I even tried to save the programs to the system under a different name.

5. I have tried every tool suggested in the Windows XP Cleaning Procedures and followed the step by step instructions and details for each. The programs will not open when double clicked, so I have tried right clicking and selecting "Run as" instead of just double clicking the programs. The result is an error message that says registy editing has been disabled by your administrator .

6. basically everything on the system is borked, its a clients system, i ran 9 different Antivirus software against it last night from a boot load CD and they cleaned 127 of a 128 known infections from the system. However in Safemode or regular windows i am at a loss to resolve this, thus posting here for suggestions.

Cheers
RJ



[+][-]09/02/09 06:25 AM, ID: 25240754

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]09/02/09 06:33 AM, ID: 25240829

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]09/02/09 06:53 AM, ID: 25241054

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]09/02/09 07:06 AM, ID: 25241192

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]09/02/09 08:21 AM, ID: 25242005

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]09/02/09 08:22 AM, ID: 25242014

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]09/02/09 08:53 AM, ID: 25242373

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]09/02/09 10:29 AM, ID: 25243396

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]09/02/09 10:37 AM, ID: 25243487

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]09/02/09 05:05 PM, ID: 25246864

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20090824-EE-VQP-74 - Hierarchy / EE_QW_3_20080625