[X-post to Security Home Users newsgroup]

> I downloaded the Malicious software tool manually and ran it but it just
> doesnt run.

Skip to Steps #2 *and* #3.

> The pc that has the infections on prevously had an inferior antivirus
> package on, so have upgraded it to Norton 2009…

Too late now! And chances are that Norton [whatever] 2009 wouldn’t have
saved your a** in the first place if it were working properly.
–
~PA Bear

Dave wrote:
> I downloaded the Malicious software tool manually and ran it but it just
> doesnt run.
> The pc that has the infections on prevously had an inferior antivirus
> package on, so have upgraded it to Norton 2009. Norton has on manual scan
> found nothing but comes up on real time protection blocking a number of
> attacks.
>
> Internet explorer is creating on occasion new windows with adverts.
>
> Is there way to force the Malicious software removal to run?
>
> OH, I downloaded the Vundo removal tool from symantec and it found 2
> files,
> however issues still as is.(i did turn off system restore first)
>
> Will attempt the Live One Care online scan.
>
> “PA Bear [MS MVP]” wrote:
>> There’s a very strong possibility that you have a Vundo infection, which
>> is
>> usually accompanied by ZLOB and/or SDBot infections, all of which are
>> protected by a rootkit.
>>
>> 1. See if you can download/run the MSRT manually:
>> http://www.microsoft.com/security/ma…e/default.mspx
>>
>> 2. Run this online scan (in safe mode w/networking, if need be):
>> http://onecare.live.com/site/en-us/center/howsafe.htm
>>
>> 3. Run additional checks for hijackware, including posting your
>> hijackthis
>> log to an appropriate forum.
>>
>> Checking for/Help with Hijackware
>> http://aumha.org/a/parasite.htm
>> http://aumha.org/a/quickfix.htm
>> http://aumha.net/viewtopic.php?t=5878
>> http://wiki.castlecops.com/Malware_R…:_Introduction
>> http://mvps.org/winhelp2002/unwanted.htm
>> http://inetexplorer.mvps.org/data/prevention.htm
>> http://inetexplorer.mvps.org/tshoot.html
>> http://www.mvps.org/sramesh2k/Malware_Defence.htm
>> http://defendingyourmachine2.blogspot.com/
>> http://www.elephantboycomputers.com/…moving_Malware
>>
>> When all else fails, HijackThis v2.0.2
>> ( http://aumha.org/downloads/hijackthis.exe ) is the preferred tool to use
>> (in conjuction with some other utilities). HijackThis will NOT fix
>> anything on its own, but it will help you to both identify and remove any
>> hijackware/spyware with assistance from an expert. **Post your log to
>> http://spywarehammer.com/simplemachi…php?board=10.0 ,
>> http://forums.spybot.info/forumdisplay.php?f=22 ,
>> http://aumha.net/viewforum.php?f=30 , or another appropriate forum for
>> review by an expert in such matters, not here.**
>>
>> If the procedures look too complex - and there is no shame in admitting
>> this isn’t your cup of tea - take the machine to a local, reputable and
>> independent (i.e., not BigBoxStoreUSA) computer repair shop.
>> —
>> ~Robear Dyer (PA Bear)
>> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
>> AumHa VSOP & Admin http://aumha.net
>> DTS-L http://dts-l.net/
>>
>> Dave wrote:
>>> Hi Windows XP will not run the Malicious software tool nor will it
>>> install
>>> succesfully the update KB955069. It shows in ADD/REMOVE as installed but
>>> updates still wants to install along with the Malicious Software Removal
>>> tool. Also the pc is continually changing the services.msc file back to
>>> not
>>> to allowing automatic updates.
>>>
>>> Any ideas on how to fix and do a successful Malicious Scan?

See more here:
Re: Malicious Software / KB955069

Related posts

• Re: Security Config and Analysis issue (0)
• Re: POSSIBLE HACK…PLEASE, PLEASE HELP! (0)
• Re: Choosing antivirus and antispyware programs (0)
• Re: Auto updates and SP3 (0)
• Service Pack 3 Not Automatically Downloaded (0)