Computer Support Forum

Fix for Virus Protect Pro Malware with Super Antispyware

Question: Fix for Virus Protect Pro Malware with Super Antispyware

I finally found a fix to the malware the the Virus Protect Pro created and it cleaned out everything. The free software (to use and clean) is called Super AntiSpyware (that's quite some name) and you can download the free home version at http://www.superantispyware.com/superantispywarefreevspro.html
I'm going over there now to donate some money as it was my stupidity that had me lose about 6 hours trying to fix what I did. It's always nice to find a hero.

With blessings for a great day.
K

More replies
Relevance 100%
Preferred Solution: Fix for Virus Protect Pro Malware with Super Antispyware

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Relevance 76.26%

Hi..

When i try to run the spyware removal tools, nothing comes .. I think my system is deeply affected by spywares. I renamed mbam.exe to mb.exe and ran. Still it didn't run. so please tell me to run these anti spywares. PLease help !!
I am attatching the Mlogs.zip which i got when i ran MGtools :cry


http://citycricketers.wordpress.com The IPL Team
 

Answer:Cannot run malware antibytes or super antispyware like removal tools

Welcome to MajorGeeks!

Please follow the instructions in the READ & RUN ME FIRST link given futher down and attach the requested logs when you finish these instructions.

If you have problems where no tools seem to run, please try following the steps given in the below and then continue on no matter what you find. You only need to try the TDSSserv steps if having problems getting scans in the Read & Run Me First. If TDSSserv is not found, just continue on with the READ & RUN ME.
TDSSserv Non-Plug & Play Driver Disable

READ & RUN ME FIRST. Malware Removal Guide

If something does not run, write down the info to explain to us later but keep on going.
Do not assume that because one step does not work that they all will not.
After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:

If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware, Malwarebytes and Spybot ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip... Read more

1 more replies
Relevance 75.44%

Two days ago I ran Mbam and it found several pups and 1 trojan. Then yesterday I ran superantispyware and it found over 400 unwanted items and 2 trojans (different from the first trojan). For both scans, I deleted all the unwanted items.

Is there anything else I should be doing or is that enough. I still have issues with lag when I am online. And also I have so many pop up and ads on facebook, which I never had before. Also I cannot download any extensions for google chrome, which I used to be able to do. (when I try, it just continuously says "checking") I don't know if any of these things are related, but just in case I mention them. Thank you in advance for any assistance you can give me.

here is the mbam log
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.06.08

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Shelly :: JUBILEE [administrator]

1/6/2013 8:48:16 PM
mbam-log-2013-01-06 (20-48-16).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 370293
Time elapsed: 3 hour(s), 33 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 11
HKCR\CLSID\{11111111-1111-1111-1111-110211181102} (PUP.215Ap... Read more

Answer:Found 3 trojans on my computer when running malware and super antispyware

Hello, please run these next.Please download TFC (Temp File Cleaner) by Old Timer and save it to your desktop.alternate download linkSave any unsaved work. TFC will close ALL open programs including your browser!Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator. Click the Start button to begin the cleaning process and let it run uninterrupted to completion.TFC will clear out all temp folders for all user accounts (temp, IE temp, Java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder.Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.Note: It is normal for the computer to be slow to boot after running TFC cleaner the first time.MiniToolBoxPlease download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:Flush DNSReport IE Proxy SettingsReset IE Proxy SettingsReport FF Proxy SettingsReset FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList Users, Partitions and Memory size.Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.ADW CleanerPlease download AdwCleaner by X... Read more

10 more replies
Relevance 74.62%

I think I had this virus a week or so ago and I *thought* I had taken care of it with Malwarebytes. It came back yesterday and this new version won't let me run MBAM or Super AntiSpyware, even in safe mode. They both error out before they start. I think part of the virus is f***3.exe (without the asterisks). I've run my Norton scan (took nearly 3 hours) and my Windows Defender full scan (took nearly 9 hours) but neither found anything malicious.
Help please!!
-Ashley

Answer:virus won't let me run MBAM or Super AntiSpyware

Rename this file:C:\Program Files\Malwarebytes' Anti-Malware\mbam.exeto something else, such as:abcde.batthen double click this file and see if Malwarebytes will run.

12 more replies
Relevance 74.62%

Hi,

I run Windows XP. This same issue happened to another computer in my office a few weeks ago and the machine had to be completely wiped. I'm hoping to avoid that again.

To make a long story short, I was infected by one of the fake anti-spyware programs. I scanned with Norton and it found some Trojans, which were removed. On reboot, the problem was still there. I downloaded Malwarebytes, but the setup was not allowed to open. I happened to have already had Super Anti-Spyware on the computer, so I ran that and it deleted a bunch of stuff.

After running that and rebooting, my computer will no longer run any programs. When I click on an application, it brings up the windows box where you can select what program to open with.

Has anyone come across this and/or is there any way to fix it? It seems like the super antispyware program removed stuff that's needed for the computer to do anything. My network guy said some dll's probably got deleted.

Any help is appreciated.

Thanks,

Lew

Answer:Dll's Removed by Virus and/or Super AntiSpyware?

http://www.techsupportforum.com/f100...es-469005.html

I'm using the techniques described in this thread.

2 more replies
Relevance 72.16%

Hello,

I am looking n for some help. I had a virus/malware that kept running a "scan" and directing me to purchase an antivirus program...the scan that was run was called "analyzing PC & stability"...it is similar to a virus that I had a few months back. Previously, I had downloaded SUPER antispyware and it solved my problem. I did the same for this current issue and while it appears to have stopped the malware from prompting the fake scan, all my files and programs are hidden (nothing on desktop or my computer, etc..) Also, when I try to download SUPER antispyware or any other type of antispyware (or download anything for that matter)it will download but then it will not run...it asks me what program I want to use to run the file and nothing seems to work..

I am running Windows XP. Any help will be much appreciated.

Answer:ran SUPER AntiSpyware to rid a virus, all desktop files/programs hidden

can you post the scan log at all, and does your PC work in safe mode?

6 more replies
Relevance 64.37%

Hi, my computer was struck with that hideous virus AntiMalware and its various forms such as Trojan-Downloader.JS.Multi.ca and Virus.Win32.Gpcode.ak. I kept getting frequent messages or Security Center alerts whenever I used my computer saying those trojans were present and I had to install their program. I managed to stop getting those alerts by deleting some entries from a HijackThis scan such as -ex_08.exe and others stored in the temp folder in the scan that seemed suspicious and those that I verified on Google as trojans. But I still can't use system restore, malwarebytes antimalware program or super anti spyware. I went into safe mode and everything I described above as well trying to install Malware bytes but it's stuck at finishing installation. It just doesn't work so I cant remove all the malware. Im posting a Hijackthis log. Please help.

Answer:AntiMalware program infection and virus disabled all antispyware/virus/malware programs

Hello , And to the Bleeping Computer Malware Removal Forum. My name is Elise and I'll be glad to help you with your computer problems.I will be working on your malware issues, this may or may not solve other issues you may have with your machine.Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.-----------------------------------------------------------If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explanation about the tool. No inp... Read more

2 more replies
Relevance 63.14%

Hello - First, let me say thank you for helping me rectify a really poor choicesof opening software I wasn't 100% certain was verifiable. As a result I have the Virust Protect Pro problem (at a miniumum) which seems to tie up my machine a lot and causes problems with my wireless network adapter. I have used Spybot and Adware to no avail. I've copied and pasted the Hijack This log below and won't make any changes until I hear from you.
With great thanks for your help!
K

Logfile of HijackThis v1.99.1
Scan saved at 3:52:29 PM, on 8/27/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\System32\cisvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program F... Read more

More replies
Relevance 62.73%

I am in desperate need of a virus clean up on my computer. My computer was recently infected with a Malware virus - On my toolbar there are two symbols (a yellow triangle with a "!" and a red circle with a "X") claiming that I have been infected and to download the latest anti virus software. Can somebody take me through the steps on how I could remove these from my computer?? Any help is appreciated!

Answer:I Need Help Removing Malware/virus/antispyware From My Cpu!

Run a full system scan with Malwarebytes' Anti-Malware in Normal Mode (Instructions).

1 more replies
Relevance 62.73%

I've been fighting this problem for a few weeks now, off and on.  Occasionally I'll be infected with Antivirus Pro 2010, Antivirus Pro 2009, and most recently Antispyware Pro.  After running the usual "remedies" such as SAS, Malwarebytes Pro, Trojan Remover, and Spybot it'll somewhat go back to normal...only with a random popup here and there.  Everytime a popup hits, AVG will tell me that there is a threat, so it's almost like something is there but not being detected.Now, whenever I run Malwarebytes Pro absolutely NOTHING comes up as a threat/error; which is uncommon.  Some smaller stuff will come up with the other tests, but nothing that seems to fix the problem.  Any help would greatly be appreciated.- Mike

Answer:Undetectable malware/virus/Antispyware Pro?

I'm not sure what version of MBAM you're using. Could you please uninstall the version you have and download this newest one. Run a full scan and post the log. Please download Malwarebytes Anti-Malware from here.Double Click mbam-setup.exe to install the application.Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.If an update is found, it will download and install the latest version.Once the program has loaded, select "Perform Full Scan", then click Scan.The scan may take some time to finish,so please be patient.When the scan is complete, click OK, then Show Results to view the results.Make sure that everything is checked, and click Remove Selected.When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)Please save the log to a location you will remember.The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.Copy and paste the entire report in your next reply.Extra Note:If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

2 more replies
Relevance 62.32%

Hi there, about a week ago I was infected with the ANTISPYWARE SOFT. I seemed to get rid of it all and followed your unistall guide on the site here which worked perfect...until I opened up IE and whenever I load a web page, it comes up on the bottom waiting on about:blank then continues to the correct page however it hangs for a few seconds. How can I get rid of this nasty malware! I tried to run the gmer app that was told to execute however it says during midway into the scan that there is a program and windows is going to close the program. However, I did run DDS and attach the file. Thank you for your help in advance! Adam DDS (Ver_10-03-17.01) - NTFSx86 Run by Adam at 13:31:58.40 on 20/05/2010Internet Explorer: 8.0.6001.18904Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.2.1033.18.1470.735 [GMT -6:00]SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}============== Running Processes ===============C:\Windows\system32\wininit.exeC:\Program Files\AVG\AVG9\avgchsvx.exeC:\Program Files\AVG\AVG9\avgrsx.exeC:\Program Files\AVG\AVG9\avgcsrvx.exeC:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k rpcssC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:&#... Read more

Answer:MALWARE ---ABOUT:BLANK VIRUS/ ANTISPYWARE SOFT

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. HijackThis logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that it happens. Somethings to remember while we are working together.1.Please do not run any other tool untill instructed to do so!2.Please reply to this thread, do not start another!3.Please tell me about any problems that have occurred during the fix.4.Please tell me of any other symptoms you may be having as these can help also.5.Please try as much as possible not to run anything while executing a fix.If you follow these instructions, everything should go smoothly.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.Gmer is the best but can be hard to get a log lets try this and see what we get.Scan With RKUnHookerPlease Download Rootkit Unhooker Save it to your desktop.Now double-click on RKUnhookerLE.exe to run it.Click the Report tab, then click Scan.Check (Tick) Drivers, Stealth, Files, Code Hooks. Uncheck the rest. then Click OK.Wait till the scanner has finished and then click File, Save Report.Save the report somewhere where you can find it. Click Close.Copy the entire contents of the report and paste it in a reply here.Gringo

15 more replies
Relevance 61.5%

Can you tell me your advice on what/which program or combination of programs you think I should get? I am not worried about the expense... just want the security.

I have Spydoctor and Mcafee Virusscan already but is there a better/safer combination? People keep mentionning AVG and some others... Please let me know which combinatons are best, as I am sick of occasionally having these critters sneaking into my system!

All the best in advance!

Jeff
 

Answer:Super Quick Advice On Virus/Malware program

Hi Id add to the list.
Spybot search and destroy.
Ad-Aware...links below.
As for the combination of programs..all down to personal choice.
Check link.
http://forums.techguy.org/security/110854-security-help-tools.html
 

1 more replies
Relevance 61.5%

Hello, my CPU usage often stays at 100%. I can't open up too many Internet Explorer windows (more than one) at a time and if I attempt to play a video the IE9 browser freezes then has to restart. I find myself rebooting my computer often.

A few weeks ago I managed to clean my computer of Trojan viruses using Norton antivirus, their FixZeroAccess program and TDSS Killer. I thought everything was fine, but my CPU Usage still gets to 100%. I disabled some programs from automatically running when I start my computer but CPU problem still exists.

Most recently I ran Malwarebytes AntiMalware and it came up with what looks to be three important files that appear to be infected still with the Trojan:

Memory Processes Detected: 3
C:\Windows\Temp\ecssxxpfoeubn.exe (Trojan.Agent) -> 3892 -> Delete on reboot.
C:\ProgramData\fKadgTtAQuSyyt.exe (Trojan.Agent) -> 5580 -> Delete on reboot.
C:\Windows\svchost.exe (Trojan.Agent) -> 3152 -> Delete on reboot.

Whenever I search for something via Google and click on one of the results, I'm directed to happili.com which apparently is redirection virus. I got rid of the happili.com problem before but I notice whenever I uninstalled and reinstalled the Malwarebytes programthen happili.com reappears.

I'm not sure if deleting the 3 files above will cause harm to my computer but I'm hoping to get some help with the CPU usage, removing happili.com and the Trojan before things get any worse.
Thanks


_________... Read more

Answer:CPU Usage @ 100%, Super Slow, Malware & Redirect Virus

7 more replies
Relevance 61.5%

Well, a few days ago my FF started lagging. Then some pages were unable to load, and some didn't load at all. Any help on this?

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:42:30 PM, on 1/8/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18349)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\wuauclt.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\System32\atwtusb.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files\Electronic Arts\EADM\Core.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Wind... Read more

Answer:Super laggy comp, Virus/Malware/Adware?

16 more replies
Relevance 61.09%

I've been using AVG, and have bought the full version, yet was confused with what I had to do.  Can anyone tell me which product is user friendly, yet a good system choice.  Thanks,
Would be appreciated. 
 

Answer:What is a good product to buy to protect and remove virus, malware etc...

My personal choice is ESET NOD32 Anti-Virus if choosing a paid for program as it leaves a small footprint...meaning it is not intrusive and does not utilize a lot of system resources. Kaspersky Anti-Virus is also a good choice if looking for a paid for program. If you don't want to pay then I recommend avast! Free Antivirus.For more specific information to consider, please read:Choosing an Anti-Virus ProgramSANS Institute Choosing Your Anti-virus SoftwareImportant Fact: It has been proven time and again that the user is a more substantial factor in security than the architecture of the operating system or installed protection software. Therefore, security begins with personal responsibility and following Best Practices for Safe Computing.

6 more replies
Relevance 61.09%

is superanti spyware a antivirus?
i just installed when i had windows live onecare

Answer:super antispyware help

If you mean SuperAntiSpyware, then if you downloaded from http://www.superantispyware.com/ then no, it is not anti-virus, though it might catch some. It's mostly for spyware in the form of keyloggers, trojans, browser hijackers etc.If you really mean superanti spyware then I have no idea what it is, sorry.I don't understand what you are trying to say here "i just installed when i had windows live onecare" - what is the relation to live onecare and did it install antispyware application or what?

2 more replies
Relevance 61.09%
Question: super antispyware

I scan my system every day using super anti spyware and today I got this SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 02/04/2011 at 11:59 AM

Application Version : 4.48.1000

Core Rules Database Version : 6333
Trace Rules Database Version: 4145

Scan type : Quick Scan
Total Scan Time : 00:59:01

Memory items scanned : 599
Memory threats detected : 0
Registry items scanned : 2438
Registry threats detected : 0
File items scanned : 12903
File threats detected : 151

Adware.Tracking Cookie
C:\Documents and Settings\Michael\Cookies\[email protected][2].txt
media.scanscout.com [ C:\Documents and Settings\Michael\Application Data\Macromedia\Flash Player\#SharedObjects\D5DKR3TU ]
s0.2mdn.net [ C:\Documents and Settings\Michael\Application Data\Macromedia\Flash Player\#SharedObjects\D5DKR3TU ]
secure-us.imrworldwide.com [ C:\Documents and Settings\Michael\Application Data\Macromedia\Flash Player\#SharedObjects\D5DKR3TU ]
.serving-sys.com [ C:\Documents and Settings\Michael\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.media.adfrontiers.com [ C:\Documents and Settings\Michael\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.interclick.com [ C:\Documents and Settings\Michael\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.interclick.com [ C:\Documents and Settings\Michael\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Documents and Sett... Read more

More replies
Relevance 61.09%
Question: Super Antispyware

I have the free version of this on my PC. Have not run a scan in a while, decided to run a full scan tonight, did a check on database updates first and it said definitions were up to date, as of DECEMBER! Could this be right? Seems like there should have been a more recent database update by them?

Answer:Super Antispyware

I have the free version of this on my PC. Have not run a scan in a while, decided to run a full scan tonight, did a check on database updates first and it said definitions were up to date, as of DECEMBER! Could this be right? Seems like there should have been a more recent database update by them?

Hello Junior2007:
They do update their database many times per day. You would probably do well to clean uninstall/reinstall even if your executable's file version is 5.7.0.1008/1018. SAS is still good at finding cookies.
 
You might recall that SAS has its own uninstaller assistants if your interested. http://www.superantispyware.com/prerelease.html
Please let us know how it goes.

2 more replies
Relevance 61.09%
Question: Super Antispyware

Hello,

I recently downloaded/installed Super Antispyware on my HP Pavillion PC running Vista Home Premium. The computer has 4 separate accounts, mine, my Wife, and 2 for my kids. I am the Administrator account. Under my settings I can run the program fine, but if I try it under one of the 3 other accounts I get a popup saying all scanning must take place from an administrator account, and will not let me utilize the program from the 3 other accounts.

When I installed it, the program asked if I wanted access only via my account, or for anyone who uses the computer. I checked any users, so that it would run from any other user, but this is not working. I also run AdAware 2007, AVG Anti Spyware, and Spybot S & D, and these are all accessible under all 4 accounts. Super Antispyware just isn't working with the 3 other accounts. Any help or suggestions would be greatly appreciated.....Thanks.

Answer:Super Antispyware

You might want to go into your computer settings. There is an option where only Administrator's can install/change programs. If this is set no other user can access programs like Superantispyware. My dad had our old family computer like this and the only way I could find around it was to make myself the admin. Just a thought feel free to add in.

2 more replies
Relevance 61.09%
Question: Super AntiSpyware?

My repair shop recommended: AVAST/Spybot/AVG. A friend's computer specialist recommended Super AntiSpyware. Your opinion would be greatly appreciated...

Thank you,
Apadana
 

Answer:Super AntiSpyware?

15 more replies
Relevance 61.09%
Question: Super antispyware?

Hello
I have been looking through some past threads on computer security.
Super antispyware seems fairly popular. Is it worth downloading the free version or paying for the full version.
I have looked a quite a few alternatives but as ever it looks like a mine field out there. Thanks tdc
 

Answer:Super antispyware?

Try the freebie.

If you like it, keep it.

If you don't like it, uninstall it.

If you're impressed enough to see what the paid for package offers over the freebie, then buy it.

Simple

I use the freebie version. As yet, after a couple of years use, it hasn't caught a single thing. Which is possibly a good thing and I also use Crap Cleaner first before running a scan.

I use it alongside Antivir (freebie version) for Anti-Virus protection.
 

9 more replies
Relevance 61.09%
Question: Super Antispyware.

Hey,Today Ive been a bit of a naughty boy and a result of this ive ended up getting loads of trojans and malware virus. In a search to find out how to get rid of the ones that have showed up on the screen i found Super Antispyware. Super Antispyware has been able to find trojans malwares and adwares that Ad-Aware and AVG havnt been able to find. I will admit that Ad-Aware did find 4 trojans and malwares but Super Antispyware has found 133. So i just wanted to post this to recommend this software.

Answer:Super Antispyware.

I stand corrected. Its actually found 231. But i cant use task manager and i cant shut down via the start menu. I dont know whether this is the program or the virus's.

10 more replies
Relevance 61.09%

Hi there, a friend of mine is having some problems with SCUMWARE ( my personal phrase for anything bad to a computer).

He basically via one means or another ended up with your typical spyware screen stating "you have spyware on your computer, click on this link to download software" but instead of thinking about it first, he did and actually purchased the product.

Based on my reaseearch this has turned out to be antispyware 2009 but i think theres more added to the computer since.

NOw obviously there are the scans, S and D, adaware, anti virus hijack this etc.... to help withthe problem. HOWEVER, this is the twist .......... when the computer is loaded up, the screen informing of the spyware threat appears immediately. NOTHING ELSE WILL LOAD UP, windows explorer will not load and therefore you can only navigate via task manager and starting a new task in there. Also, in the process list, there is a process that is obviously SCUMWARE of some kind (it changes name everytime the computer is loaded up) i kill this process but the screen still remains. other than this one process, all the others appear to be legitamate although Iexplore.exe is running but the application is not open.

At this point if i check the networking section, somkething is uploading or downloading as the network utilization graph is constantly up and down.

ALSO i have downlaoded hijack this and spybot, these seemed to install but neither of them will run (is s and d's case... Read more

Answer:Very Tricky malware / virus infection - including Antispyware 2009

Hi there

Thank you for your patience. I will be helping you deal with the issues raised in your log from this point onwards

Before we start jumping into things, here is a quick basic note which I mention to everyone. The fix which I have provided for you is for this computer only, it should not be used on any other computer. Each fix is tailor made for the specific task in hand. If for some reason you have system restore disabled, then please re-enable it before proceeding, an infected restore is better than none. Please read through the fix first and set enough time aside to complete the task in one session. If there is anything you feel needs clarification then please ask - do not guess! Please copy and paste any requested logs into replies rather than add as attachments, this makes it easier for analysis.

If this is a computer from a work place then please advise your IT department of the concerning issues before commencing past this point.

Please follow these directions in the order they are set out for you.

Download ComboFix from one of these locations:

Link 1
Link 2
Link 3

* IMPORTANT !!! Save ComboFix.exe to your Desktop

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

Open Task Manager by pressing the Ctrl Alt and Del keys, at the same time.

In the menu at the top of the dialog box, click File>New Task (Run...)

Copy/paste (or type) ... Read more

1 more replies
Relevance 60.27%

Hello,

I purchased the Super AntiSpyware program as suggested, however, it doesn't seem to function quite right. At least, I think the settings are correct, but updates and scan don't happen according to schedule.

Have I missed something?

stars15
 

Answer:Super AntiSpyware program

Purchased? At whose suggestion? The free version is more than satisfactory as part of a defensive force.
Can't say about your scheduled scanning or updates because they don't come with the free version.
 

2 more replies
Relevance 60.27%

I was wondering if super antispyware is any good still. I seen some low rating on it. If it isn't what it isn't what it wasn't use to be what takes it's it's place? I run Kasp internet secuerty with malwarebytes pro and would like to maybe use superantispyware and a 3rd scanner.

Answer:is super antispyware any good still?

I recommend using SUPERAntiSpyware Free as a separate stand-alone on-demand scanner. The free version does not provide real-time protection, auto-Scanning, auto-updates or scheduled scanning so there is no need for it to run at startup and waste system resources. However, it does offer technology to deal with some rootkit infections so it gives you another tool to use for a second opinion or in the event of malware infection where some of your tools may be disabled.

6 more replies
Relevance 60.27%

When I try to install Super Antispyware, I get the following error:

Error 1606. Could not access network location
%USERPROFILE%\My Documents\My Pictures\


If I click ok, this window just appears again; if I click cancel, the instalation fails.
 

Answer:Problem with super antispyware

Welcome to Major Geeks!

This is most likely not a malware issue. I suggest you see the below link:

http://support.microsoft.com/kb/886549
 

3 more replies
Relevance 60.27%

Hi,

You were tremendously helpful when my computer was infected by a Trojan a few months ago, but now, it's my husband's computer. So, I promised him I'd take care of it for him.

Approximately two days ago, Symantec Endpoint detected Trojan.FakeAV!gen17 and took care of the infected files. However, fake dialog boxes still were popping-up warning of infections (e.g., Trojan SPM/LX). An icon also appeared on the toolbar (red circle with an X in the center) with warnings, which I'm assuming is related to the virus.

I have followed the first few sets of instructions in the READ ME document. SAS detected a lot of infected files, but I lost internet connectivity after that and have not been able to repair it using either the SAS repair or Windows repair. I went ahead and ran MBAW and used another computer to download updates via the internet and then transfer the updates via a flashdrive. That worked fine. Combofix was not able to install the Recovery Console, although it progressed with the scan. I know that I need to install this in order to finish the rest of the cleaning, but I am a little unsure how to proceed given that I don't have an internet connection. I would appreciate any advice on how I may restore this conenction and/or what to do next!

I attached the logs that I do have. Thanks very much for your time and help.
Rebecca
 

Answer:No internet after Super AntiSpyware

Still need the other two logs:
RootRepeal
C:\MGLogs.zip
Have you opened SAS and gone to preferences / repairs / and scrolled to restore internet connections?
 

5 more replies
Relevance 60.27%

Hi Guys,

I didn't get an answer in the malware forum so here goes again, it seems that everytime I run Super Antispyware it knocks out my broadband connection, however my broadband supplier (Toucan) says it has nothing to do with any software, its to do with the line, this has happened three times so far and each time I've had to wait a couple of days for Toucan to re-instate it, it just cannot be a coincidence, although it happens every single time I run Anti spyware, just before I decided to write to you, I ran Super Antispyware and once again my system started to break the connection saying there was no dial tone, each time this happens the ADSL light starts to flash and I cannot connect, it seems to be steady at the moment though for how long I do not know, Toucan might be monitoring the system and re-instating it as this is happening, is it possible for this programme to break the connection or cause some problem to prevent a dial tone, Anti spy seems to just be quarantining cookies, I cannot see how they would affect my system, the internet also seems to be slowing down when changing between pages, if someone can help I would appreciate it, I am running updated CC, Spyware blaster, Adaware, AVG, etc, thankyou.
 

Answer:Super Antispyware and broadband

It is unlikely that a program could pyhsically effect the telephone line. Have you tried replicating the issue while you speak to them ?
 

6 more replies
Relevance 60.27%

Hey guys, hop you're doing well! Gotta question for all of you that are pretty familiar with SuperAntiSpyware. I noticed something funny/questionable about the behavior of this app. First: I just downloaded it and Second: I know it's free and some may think it sucks. However my question refers to the question of what it is exactly doing when I "check for updates" and I haven't given it automatic internet access through Zonealarm? It seems to be doing something even though it was never allowed to connect - even to the point it says it's finished and updated. Try it if you guys have this application, any ideas???  Thanks for any help.

Answer:Super Antispyware ligitmacy

What SUPERAntiSpyware does and how often depends on your settings...see this FAQ: How do I keep SUPERAntiSpyware up to dateDatabase Definition Information (Core and Trace definitions) is located here.If set for automatic updates...it will attempt to check even though no Internet access is available.SUPERAntiSpyware Free does not provide real-time protection, auto-Scanning, auto-updates or scheduled scanning so there is no need for it to run at startup, waste system resources and possibly cause conflicts with other security software. However, when installing SUPERAntiSpyware it installs to run at each start-up automatically. I recommend to disable its' startup and use it as a separate stand-alone on-demand scanner. As such, I do not have it configured to automatically update/check for updates. When I want to perform a scan...I manually check for and download updates at that time.

22 more replies
Relevance 60.27%

Whenever i try running a scan with Super Antispyware, randomly around 40 minutes in, the application crashes (my OS does not crash).  I'm able to run scans with the following with no problems though:
Eset NOD32 Antivirus
Malwarebytes Anti-Malware
Spybot Search & Destroy
 
No malware was detected in the other scans either.
 
Any idea what'a happening?

Answer:Super Antispyware Crashing

Do you have the latest version of SUPERAntiSpyware? If you do, try uninstalling and reinstalling it.

11 more replies
Relevance 60.27%

Being very security conscious I have installed on my PC Comodo Firewall Pro, Comodo CAVS AntiVirus, Comodo BoClean and Spyware Blaster installed as real time security. I also have installed AVG AntiSpywareFree Edition, AVG AntiRootkit Free, SpyBot S&D, AdAware 2007 and SuperAntispyware which I use on a sort of rota basis manually, approx 3 - 4 times a week. My question is this. All of the above if/when they detect something either quarantine/delete it without having to reboot my PC except for SuperAntiSpyware which always says it has to reboot my PC in order to get rid of infection ( almost always tracking cookies as my PC is pretty well cared for security wise) Why does this one program need to shut down and reboot my machine to do what the others can do without rebooting?.

Answer:Super Antispyware Question

It's a feature included in the program by the developer of SAS. An explanation is given in here > Superantispyware Suggests PC Restart .Certain malware can be stubborn to remove because it's "active' or "in use by other programs". When a reboot occurs, the malware is not yet loaded into the system making easier to remove them. It's similar to when it is suggested to run scans with any AV/AS programs in Safe Mode. In Safe Mode, fewer programs & drivers are loaded making malware removal that much more effective.

2 more replies
Relevance 60.27%

Hi, on my brother's pc i have put AVG on but should i also include Super AntiSpyware too? I have put Ccleaner on and MalwareBytes.Thank you in advance!

Answer:Got AVG, should i install Super AntiSpyware too?

Simple answer YES its a great tool...

6 more replies
Relevance 60.27%

I actually posted this "tip" in the software forum before I thought about putting it here in the Malware forum, so here's the link to the original thread:
http://forums.majorgeeks.com/showthread.php?t=168847

[dlb]
 

Answer:A tip for Super Antispyware users....

Yes thanks! We know about them and already use at least one of them in our standard cleaning procedure. See: SUPERAntiSpyware - running & getting a log where we make use of the Repair for a broken Network Connection.
 

1 more replies
Relevance 60.27%

My super antispyware doesn't seem to be updating. It gets stuck for some reason
Here is a screen shot I've attached
 

Answer:Super AntiSpyware(pro) isn't updating

16 more replies
Relevance 60.27%

Hi folks,last night I opened super anti spyware it said there was an update to make uninstalling easier?I downloaded it then ran my scan.During the scan I heard a loud click and my computer shut down with an error(blue screen)When I rebooted it said there was no hardrive connected.I thought it had had it.After opening it up and checking for loose wires it eventually rebooted.I uninstalled super antispyware via add/remove programs but it's still showing in all programs and I can run it.But it's not in add/remove programs.Any ideas folks?Thanks.

Answer:Super antispyware troubles

Seems that quite a few people are experiencing problems with Super antispyware. I had the same problems as you did, except that instead of no hdd, my ext drives would not show and 50% of shortcuts on the desktop had gone. Then during a scan the pc froze and required a re-boot, on re-boot all my settings had changed, nor could I connect to the internet and my encryption program would not open and my half the programs and data files appeared to be missing from all my drives!It took 3 attempts to do a system restore but that solved nothing nor could I re-establish an internet connection. It took a destructive re-format and re-install of windows to get back online. Fortunately most of the data I had lost had been backed up to dvd's and I had all programs ready for re-install with the exception of the encryption program.Once back online I was able regain my encryption from an online source and open my encrypted volumes though they too had been decimated! Again I could recoup most of the data from online sources but will take me some time.My suspicions say either it was a virus that was not picked up by AVG or that Super Antispy was at fault, leanings are towards the latter and have not re-installed that prog and have had no problems since. I know that many are running the program without these problems but it does seem that it is causing others big headaches!

10 more replies
Relevance 60.27%

Hello,

This is not a "please help" posting. Apparently neither McAfee, neither my Super antispyware are detecting anything !!??

How good are this programs ? I'm going to follow the instructions in your "sticky", but that will be tomorrow.... it is kind of
late here in Portugal.

Important question : are the two above mentioned programs going to interfere with Hyjackthis and vice versa?

Best regards
orion
 

Answer:Solved: Super antispyware...

8 more replies
Relevance 60.27%

I had a problem with virus. did all the malware removal/cleaning.
TimW helped me clean that up yesterday. I decided to go with Comodo instead of Super antispyware. Installed Comodo. Now I can not Uninstall the super anti spyware. When i try to uninstall I get an Error reading uninstall data. I thought I had uninstalled it yesterday. But when I turned the computer on this morning it popped up again.

Thanks again for all the help.
Again I do not know much about computers, so bear with me.
 

Answer:help removing super antispyware

Hi ka tee,
I use Revo Uninstaller to get rid off hard to delete programs/files....

http://majorgeeks.com/Revo_Uninstaller_d5706.html

it is easy to use with a friendly user interface and best of all it's free !!!. Any problems using this just post back and I will try to run through it with you.

iain.t :major
 

4 more replies
Relevance 60.27%

Hi I ran the program and have all kinds of Trojans including Smitfraud Variant and Trojan Media- Codec/V3. I wanted to take a screen shot of the results but could not figure how to do it but I quarantined what was found. Now what. How can I get the results so that I can post it. I have all these pop up for Virus Protect Pro and a million other infections. I wanted to post what I found but could not figure out how to do it. Anyway after quarantining everything found I rebooted my computer and have had it started and nothing is popping up so I may have found the problem. Now the question is how do I get everything off of my machine. What is the next step? Thanks

Answer:Ran Super Antispyware And Infected Now What

Are you asking how to permanently remove the Super Antispyware Quarantined files? You can delete those.You should update the Super Antispyware and run another scan in safe mode.Run the online scan for Bit Defender in normal mode. Allow it to quarantine whatever it finds.http://www.bitdefender.com/scan8/ie.html--------------------------------------------------------------------------------Post a Hijack This log in the Hijack This Forum by following the directions in the link below if the programs above have not removed ALL malware. DO NOT post the log in this forum.http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/ --------------------------------------------------------------------------------How To start Windows in Safe Modehttp://www.bleepingcomputer.com/tutorials/how-to-start-windows-in-safe-mode/

1 more replies
Relevance 60.27%

Hello and hoping someone has some insight on this. I ran SA the other day on my netbook. I left it on its own whilst working and would check periodically to see the status and was shocked that after nearly 5 hours (yes, 5 hours!), the scan still was not complete?? I have never had an SA scan take that long! And there is 184gb remaining of the 220gb available. I regularly clean out my temp files, etc. so this doesn't make sense to me. Does anyone have any insight as to why that scan took so long? Typically 1-2 hours is the norm, or at least that's what I've seen.

appreciate any opinions. am considering dumping SA and finding another maybe spybot. I've used that in the past as well.

thanks in advance!!

Answer:Super Antispyware questions

The speed and ability to complete an anti-virus or anti-malware scan depends on a variety of factors.The program itself and how its scanning engine is designed to scan: using a signature database vs heuristic scanning or a combination of both.Options to scan for spyware, adware, riskware and potentially unwanted programs (PUPS).Options to scan memory, boot sectors, registry and alternate data streams (ADS).Type of scan performed: Deep, Quick or Custom scanning.What action has to be performed when malware is detected.A computer's hard drive size.Disk used capacity (number of files to include temporary files) that have to be scanned.Types of files (.exe, .dll, .sys, .cab, archived, compressed, packed, email, etc) that are scanned.Whether external drives are included in the scan.Competition for and utilization of system resources by the scanner.Other running processes and programs in the background.Interference from malware.Interference from the user.-- Using two security scanning engines at the same time can cause each to interfere with the other, cause systems hangs, false detections, unreliable results and other unpredictable behavior.-- If the screensaver, hibernation or Sleep Mode are not turned off before scanning, those features can sometimes have odd effects when attempting to resume normal mode.Further, it is not unusual for an anti-virus or anti-malware scanner to be suspicious of compressed, archived, .cab, .rar, .jar, .iso, and packed files because they have diff... Read more

4 more replies
Relevance 60.27%

Hi folks,after trying super antispyware I've decicded to get rid of it because it was never finding anything when my other anti spyware's were.Anyway I've removed it via add/remove programs but there's a folder left in program files that will not delete?Can someone tell me how to delete it please?I've tried ccleaner and I've tried safe mode,any help is appreciated.

Answer:Uninstalling super antispyware

click here

5 more replies
Relevance 60.27%

update to version 3.8.1002 available

Answer:super antispyware update available

Does anyone think this is a good program?I'm currently using the pro version and when I click on the option to show what spyware has been blocked,there's nothing there,yet when I run avg it still finds stuff?

4 more replies
Relevance 60.27%

I realize I'm supposed to finish before I ask questions but this is the 2nd free spyware I've tried to download (Spy Doctor) and once it's downloaded it won't run - it allowed me to follow your instructions re set up but when I click the scan button it immediately goes offline (not responding); Also, I've tried to do a system restore to go backwards because I somehow deleted my Microsoft Office products (excel, word, etc.) with Windows install clean up (I think) (obviously I didn't understand what it was).  Any suggestions?  I'll continue on with your instructions - thanks!

Answer:Super AntiSpyware Problem

Try this please.Download this Malwarebytes' Anti-Malware file and save to your desktop.* Right click on the renamed Malwarebytes' Anti-Malware file on your desktop and chose Copy* Next go to Start > Computer > C > Program Files.* Right click on the Malwarebytes' Anti-Malware Folder and click Paste* Next Double click on the Malwarebytes' Anti-Malware file.* Malwarebytes should now run. Be sure to check for updates!* After the update have been completed, Select the Scanner tab.* Select Perform quick scan, then click on Scan* Leave the default options as it is and click on Start Scan* When done, you will be prompted. Click OK, then click on Show Results* Checked (ticked) all items and click on Remove Selected* After it has removed the items, Notepad will open. Please post this log in your next reply. You can also find the log in the Logs tab. The bottom most log is the newest.

14 more replies
Relevance 60.27%

Hello,
I want to know if it is safe to use super antispyware professional and kaspersky internet security 2009 on the same computer. Will these two conflict and kill each other off?
 

Answer:kis2009 and SUPER AntiSpyware

I don't have KIS myself, but I have read things about how intolerant it can be of some other software, presumably because so much security software 'hooks' deep into the OS and, if any other program tries to do the same, conflict results.

Perhaps a search of the 'System Requirement' or FAQ sections at the Kapersky website would help?
 

2 more replies
Relevance 60.27%

Can Super AntiSpyware be run while I'm working on the computer doing other things or do I have to let it run and not do anything else?

Same question for Malwarebytes
 

Answer:Super AntiSpyware/Malwarebytes

I usually start one, update and run it then continue what I was doing, you may notice a little lag sometimes but with most modern multi-core CPU's it's hardly a problem. I frequently run them both together too.
 

2 more replies
Relevance 59.86%

Hello I joined today because I needed to get rid of a Trojan and I used the advice in your forums.  As instructed I downloaded and ran SUPERAnti-spyware and fingers crossed it has detected and sorted the problem.My question is this.  Is is okay to have SUPERanti-spyware and AVG running at the same time on my PC?Thank you Sol

Answer:SUPER antispyware - can I run it alongside AVG Antivirus

If you are using the free version of SAS then it offers no real time protection and adjusting the settings in the guide will ensure it does not run at startup.AVG and SAS will run along with each other as long as you are using the free version of AVG. The paid version of AVG has antispyware protection and just like antivirus and firewalls you only want to run one at a time.1 antivirus1 firwall1 real time antispywareYou can have multiple antispyware software installed and run them as needed.

2 more replies
Relevance 59.86%

I saw/read the other thread. Mine is slightly different as MBAM removed 3 registry valuesHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.during the same scan, this was removed:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\SYS32DLL (Worm.KoobFace) -> Quarantined and deleted successfully.My System Restore is Corrupted... Do I have any other options for restoring those registry values? It was removed by MBAM and not placed in quarantine.Edit: Moved topic from XP to the more appropriate forum. ~ Animal

Answer:Malawarebytes and Super Antispyware can't update

Why do you want to restore those registry values?

The first three can be easily restored by going into the Control Panel and then Security Center and disabling those notifications if you do not want to be notified about them.

I see no reason to restore the last one, KoobFace is not something I would want on my system

9 more replies
Relevance 59.86%

Hi - On Friday I was infected with a virus: there was a Virus Alert! message next to the time on the bottom right, my desktop wallpaper was a giant radio-active sign that said I had a virus, I would get numerous Virus Waring pop ups (including Antivirus Pro 2008), my start menu lost alot of its options and the computer was running super slow.

I installed and ran Super Antispyware and it found and removed many files. I no longer get the pop ups, I was able to remove the Virus Alert! from the clock and get my start menu back to normal.

Orginally I thought that had taken care of if but I am still having speed problems, my wallpaper is just a white screen and I can't find any options to change it. When I logged on this morning I received a pop up that said "Error Loading. C:\Windows\System 32\TSFKXT:F.DLL"

I think the Antivirus Pro is still installed but I can't find it anywhere.

I am still infected? What should I do next?

I am using Windows XP Professional

Thanks so much!

Answer:Still Infected After Running Super Antispyware

don't worry about the error loading a missing malware filehttp://www.bleepingcomputer.com/forums/ind...mp;#entry811062run a scan with MBAM, let's try to finish cleaning the infectionwelcome to bleepingcomputer

9 more replies
Relevance 59.86%

I had the trial version of this and now it's ran out I've tried to uninstall it, but it's not in my Add/Remove Programs list.

The icon was still on my desktop but as a blue and white box and it just gave me the option to delete the shortcut which I did but it won't let me delete it from C/Program Files.

Can anyone help as this is obviously still running somehow on my pc?
 

Answer:Solved: Can't uninstall Super Antispyware

6 more replies
Relevance 59.86%

I've had problems with pop-ups lately, so I ran SUPER AntiSpyware. It ran fine, but when I attempted to quarantine it, the computer gave me the blue screen of death.

I tried it again in Safe mode, where the same problem happened again. I ran all the other scans from the Read & Run, and they worked fine, as well as running a particular scan for AntiVirus XP, Smitfraudfix. All logs are attached in this and the next post.

I also checked for the TDSSserv, and it wasn't even on my computer.

Help?
 

Answer:SUPER AntiSpyware Quarantine Shutdown

No SASlog is attached, obviously.
 

2 more replies
Relevance 59.86%

I have a post open since Sunday about a virus and/or infection I have. I haven't heard anything so I thought I'd try to make some progress on my own. I downloaded (from another computer) the free version of the super antispyware program. When I double click on it to run, I get "The system administrator has set policies to prevent this installation." Does anyone know the fix to this, for this particular program? Thanks!

Answer:What's Preventing Install of Super AntiSpyware ?

Hi,

You have a reply in your other topic. Please only follow the instructions given by the Malware Removal Team Member in that.

Casey

Note to Mods: Suggest this thread be closed.

1 more replies
Relevance 59.86%

SuperAntiSpyware introduces a new online scanning service which is able to detect and remove over 1,000,000 spyware/malware infections. The scanner does NOT install anything on your Start Menu or Program Files and does NOT need to be uninstalled.
You may also use whatever browser you want. SUPER AntiSpyware.com - Online Scanner.

Answer:SUPER AntiSpyware online scanner - new

hi !
THANKS !

7 more replies
Relevance 59.86%

I have downloaded and installed the free version of Super Antispyware and it seems to do it's job quite well. As I am not PC technically minded I have only installed the recommended set up.

Looking through it though I could see that there seemed like several ways to tweak it if one were expert enough. My question is if one of you clever people here could possibly do a Tutorial on this program ala the ones on Adaware/Spybot etc. I am sure that people like myself would find this incredibly helpful.

Answer:Super Antispyware (free Edition)

This is one script used on the net
Install it and double-click the icon on your desktop to run it.
? It will ask if you want to update the program definitions, click Yes.
? Under Configuration and Preferences, click the Preferences button.
? Click the Scanning Control tab.
? Under Scanner Options make sure the following are checked:
o Close browsers before scanning
o Scan for tracking cookies
o Terminate memory threats before quarantining.
o Please leave the others unchecked.
o Click the Close button to leave the control center screen.
? On the main screen, under Scan for Harmful Software click Scan your computer.
? On the left check C:\Fixed Drive.
? On the right, under Complete Scan, choose Perform Complete Scan.
? Click Next to start the scan. Please be patient while it scans your computer.
? After the scan is complete a summary box will appear. Click OK.
? Make sure everything in the white box has a check next to it, then click Next.
? It will quarantine what it found and if it asks if you want to reboot, click Yes.
? To retrieve the removal information for me please do the following:
o After reboot, double-click the SUPERAntispyware icon on your desktop.
o Click Preferences. Click the Statistics/Logs tab.
o Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
o It will open in your default text editor (such as Notepad/Wordpad).
o Please highlight everything in the notepad, then right-click and choose copy.
? Click close and close again to exit the program.... Read more

1 more replies
Relevance 59.86%
Answer:SUPER Antispyware new build 3.6.1000

Thank you sunny staines, downloaded.

1 more replies
Relevance 59.04%

I know that after you run either one of them in normal mode, if they find Malware that is in use/or in memory, they prompt you to reboot to complete the removal process.So, is it necessary to run them in safe mode?Edit: Moved topic from All Other Applications to the more appropriate forum. ~ Animal

Answer:Should Super Antispyware and/or Malwarebytes be run in safe mode?

A lot of times, if I know a system is really infected (instinct) I run a scan in safe mode first and then follow it up with a scan in normal mode.

But in answer to your question, it isnt really necessary

5 more replies
Relevance 59.04%

Windows XP. Antivirus 2010 opens when I boot up (I run rkill to stop it).

Avast won't turn on, and none of my malware programs work.

Here is a rootrepeal report.
ROOTREPEAL ? AD, 2007-2009
==================================================
Scan Start Time: 2010/10/18 14:36
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP3
==================================================

Drivers
-------------------
Name: dump_atapi.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xF2871000 Size: 98304 File Visible: No Signed: -
Status: -

Name: dump_WMILIB.SYS
Image Path: C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xF7DD6000 Size: 8192 File Visible: No Signed: -
Status: -

Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xF0175000 Size: 49152 File Visible: No Signed: -
Status: -

Name: vbma4ada.SYS
Image Path: C:\WINDOWS\System32\Drivers\vbma4ada.SYS
Address: 0x86282000 Size: 25344 File Visible: - Signed: -
Status: Hidden from the Windows API!

Hidden/Locked Files
-------------------
Path: C:\hiberfil.sys
Status: Locked to the Windows API!

SSDT
-------------------
#: 025 Function Name: NtClose
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xf28b9cf0

#: 041 Function Name: NtCreateKey
Status: Hooked by "C:\WINDOWS\System32\Drivers�... Read more

Answer:MBAM, HJT, SUPER AntiSpyware won't run (RootRepeal report)

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the ... Read more

2 more replies
Relevance 59.04%

I uninstalled Super Antispyware with Total Uninstall and delet all traces from Program Files,Prefetch,Application Data ,and from the registry HKEY_CURRENT_USER\Software and HKEY_LOCAL_MACHINE\SOFTWARE , but he left keys!
I want permissions as the owner but it does not work with these keys:
HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet001 \ Enum \ Root \ LEGACY_SASDIFSV

HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet001 \ Enum \ Root \ LEGACY_SASKUTIL

HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet001 \ Enum \ Root \ LEGACY_SASENUM

Help Please

Answer:No permission to delete keys from Super Antispyware!

Right click the keys, and add yourself to its owner in the security tab under permissions.

5 more replies
Relevance 59.04%

Hello,

I have Avira and Super AntiSpyware installed on my cpu, but cannot seem to remove a lot of spyware. Each time I clean it out, I rescan and it still exists on my system. Also, when I log on to usernames on the internet, the popup button asks if I want it to remember the password, but just goes on into the site anyways.

Here is my dds log:

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_29
Run by GWR at 12:30:08 on 2012-02-01
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1013.461 [GMT -8:00]
.
AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
svchost.exe
C:\Program Files\EASEUS\Todo Backup\bin\EuWatch.exe
C:\Program Files\... Read more

Answer:Cannot remove spyware with Super AntiSpyware or Avira

Bump!

3 more replies
Relevance 59.04%

I know that after you run either one of them in normal mode, if they find Malware that is in use/or in memory, they prompt you to reboot to complete the removal process.
So, is it necessary to run them in safe mode?
 

Answer:Should Super Antispyware and/or Malwarebytes be run in safe mode?

No, as most files that are in use can not be deleted, the deletion of some AV found files are deleted doing the startup or the shutdown before or after the said file is no longer in use.

Being in the safe mode MAY not stop the infected files from being in use.
 

2 more replies
Relevance 59.04%

I recently recovered from a Antispyware soft / google redirect virus and have been trying to keep up with scheduled scanning of my computer (running Windows XP). Whenever I run Super Antispyware, I immediately get a blue screen of death with the IRQL_NOT_LESS_OR_EQUAL message. My system is otherwise running fine without any suggestion of infection. I couldn't find an answer for this on the SAS site. I have tried unchecking "Use Kernel Direct File and Registry Access" on the scan control preferences but it still happens. Thanks for the help in advance.

Answer:IRQL Blue Screen whenever I try to run Super Antispyware

Hi -

Try uninstalling then reboot, and reinstall. If still no joy...uninstall it if that's the only app which causes the issue. It may be in conflict with your other security apps.

If SAS is a must-have...

You may wish to ask in the dedicated SAS forum here

http://forums.superantispyware.com/

4 more replies
Relevance 59.04%

I recently took my computer in for a tuneup, because I was having some processing issues. He resolved that, but then changed all of the security settings that I had. My computer seams to be worse after bringing it home. Before I take my computer back to the shop to have him set it back to the way I had it, I wanted to make sure that I'm choosing the right options.

I've always had PC Tools Spyware Doctor Plus Antivirus and have loved it. It seems to catch or stop everything that tries to enter my computer. In fact, the tech was surprised, but said he couldn't find a single virus anywhere. Anyway, when I got it back from the shop, he had uninstalled Spyware Doctor Plus Antivirus and replaced it with AVG Free and Super AntiSpyware Free Edition. Within 1 week, I had 264 viruses and 9 threats and hijacks. I am not impressed at all with these two new programs and want Spyware Doctor back on my PC. Does anyone know of a reason why I shouldn't have Spyware Doctor back on here or why AVG or Super AntiSpyware might be superior?

Thanks!
 

Answer:Spyware Doctor Plus Antivirus vs AVG and Super AntiSpyware

16 more replies
Relevance 59.04%

Somehow I got malware on my home HP desktop computer (I am currently on a work computer). Everytime I were to open up an internet browser, another tab would open simutaneously withwebsiteconfirmreq.com and than it would go to someother website.

I searched all over the internet for steps to remove it. I came accross this forum linkhttp://forums.majorgeeks.com/showthread.php?t=218986
I eventually got to the Windows XP cleanup section link: http://forums.majorgeeks.com/showthread.php?t=139313
As you will see the first thing the above thread tells you to run is Super Antispyware.http://forums.majorgeeks.com/showthread.php?t=127217

So I ran that program, and quarantined/removed all of the suspicious files that the program had found. The program than said to reboot, and so I did. When it rebooted it would get passed the windows logo screen, stay black for about ten seconds, and than reboot. The computer just keeps doing this. I even tried safe mode but the same thing occurs.

I ran the Windows Recovery Console and ran chkdsk /r. It came up with found one or more errors. I inserted the windows cd to the drive to repair, but I am unable to press F12 to get to the CD to repair windows.

Any suggestions/directions on how to get to the CD to repair windows. Or does anyone know of another way to fix this problem? As i stated earlier I am on a work computer, so I won't be able to try anything until I gethome later.

Thank you everyone in advance for you help!
&nbs... Read more

Answer:Can't get passed windows screen after Super Antispyware

You can try doing this:

How to recover from a corrupt registry.
 

5 more replies
Relevance 58.63%

Hi once i have read some of your arhive threads last 6-27-08 i began to follow all of the steps from cleaning, defrag and Removal. I found out my PC had been infected with Trojan.Vundo(it was detected by malware)... I think it started when i downloaded last 6-26-08 a file at Bitlord. The first virus that was detected was a backdoor.trojan the Norton Anti-virus detect it and remove it. So i thought it was ok when i noticed my PC is slowing I already think that there are still problems with my PC. So i run again the Anti-virus and when it reaches 24% (estimated) my PC reboot and my keyboard got stalled and in my monitor it is BAD BIOS. but when i manually reboot it, it just jump to windows and didn't do the normal process when booting... and everytime I scan my PC with my AV it always reboot so i try to search the net and find you guys... a bit STRICT but helps us more to know and learn how to fix things with our PC

1. From cleaning guide my pc was running better than it was before...
2. From the Malware Removal Guide i don't know if i got the right proceedure
but got some problems...
a. SAS - it doesn't goes blue screen,but my problem here is when it attemps to scan my files it becomes stalled. the first time i ran it i left it for almost 6 hours... (thinking it would still work) so reading from the procedure if it doesn't work proceed to the next
b. Spybot - I dom't have problem here works really great
c. MAM - no problem he... Read more

Answer:Trojan.Vundo,Malware.Trace and Problems on boot and Norton Anti-virus Protect

here are the second logs of HJT and Combofix.

BTW,when i right-click all my folders and files and choose properties it seems that it has security tab and when i click the security tab there's been so much users and administrators in it. Is my files been publicly displayed or does this HighJacka** i mean Hacker get and manage my files...

Thanks...
 

16 more replies
Relevance 58.63%

I was surfing the net when small square popped up..........Warning you have virus infection, do you want to scan?

I have AVG8 and Malaware, so I thought they should take care of this! But that was not the case.

The screen popped up,and got more frequent. I spent all yesterday trying to locate the problem. To no avail.

After several hours I had to give in. Why? Simple! It started to change my URLs! Then I checked the security, and it appeared I had none! I got Smitfraud down eventually after many tries. This would not work either, Malaware was neutralised and of no value, I tried to get Spybot down, no good! The rogue was really getting at me.

I read your pages for a short while, then it cut me off and put a Chinese screen up. This then was the pattern that took place. Every page I tried I got the URL change and the Chinese screen.

I spoke to someone who is familiar with computers, and they said it looks as if you will have to give in, the Mafia are knocking on your door.

I did then submit, and had the scan and then paid them US$49-95 to leave me in peace. The computer worked OK then. Malaware has been neutralised and AVG8 appears to be doing the Firewall and antivirus etc I paid them for.

What I am concerned about now: To what extent has that rogue compromised my computer? Can I get to taking it off, but if I do, will I be left with a messy computer, will it still be in the Registry?

They oddly offer a 30 day trial.

How could I have stoppe... Read more

Answer:Rogue Antispyware Spyware Protect. [Moved]

As no logs have been posted, I am shifting this topic from the specialized HiJack This forum to the Am I Infected forum.==>PLEASE DO NOT NOW POST LOGS<== unless a log is specifically requested..Warning you have virus infection, do you want to scan?To what extent has that rogue compromised my computer? Can I get to taking it off, but if I do, will I be left with a messy computer, will it still be in the Registry?They oddly offer a 30 day trial.What is the name of this rogue?~ OB

2 more replies
Relevance 58.22%

I use Super Antispyware free version for periodic scans, but only Pro version does continuous scanning.

So why does the free version run all the time with an icon in the taskbar? Is it important?
 

Answer:Super Antispyware free edition running in background.

Its just a running program in an idle state. It isn't important. Unless you want to check for updates, configure, or run the scanner, just right click the icon, and left click exit. :wave
 

6 more replies
Relevance 58.22%

I'm curious about a facet of the Super Antispyware program. I run a 2002 Optiplex GX270 using Widows XP. I employ Comodo firewall. Firefox is my browser. I regularly run Malwarebytes. After scanning with Super Antispyware a list of programs is presented, hundreds, which other users have rated by their importance. Am I supposed to rate these myself? I am not qualified to do so. Thanks

Answer:After using Super Antispyware a list is created for ratingented to me as of line

Can you post the log?I just performed a scan and SAS Free did not provide such a list.Unless you are referring to the list of items generated after using System Investigator which generates and identifies a list of Startup programs, running processes, registry load points, installed applications, browser plugins, services & Drivers, CLSIDs, Program Files, shortcuts on desktop and start menu, temporary folders, task scheduler and document and download folders as explained here....Everything System Investigator finds on your system is checked against SUPERAntiSpywares whitelist database, before being separated into "Known Good" and "Unknown" categories. Other users can vote "Unknown" files up or down, and while the scores dont tell you much just yet, over time they should help you identify potentially unwanted programs.

5 more replies
Relevance 58.22%

So after posting and using combofix, I still wasn't able to remove all the adware from my computer. There's still 200 something files detected. Also, I didn't respond in time after combofix so I have to repost again.

Also, does QQ chat have possibility of any intrusion into my PC? Please advise.

Here are my logs:

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_31
Run by GWR at 17:36:07 on 2012-03-01
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1013.235 [GMT -8:00]
.
AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\Program Files\Tencent\QQPCMgr\6.6.2150.401\QQPCRTP.exe
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
c:\program files\kingsoft\kingsoft antivirus\kxescore.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe
C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\s... Read more

Answer:Super Antispyware still detecting many adware and spyware on my computer

bump.

6 more replies
Relevance 57.81%

Can not run any of the up dater's in anti-malware, super anti-spyware or spy-bot search and destroy. Tried to just download new copy of anti-malware and cannot get anything to download from any web site.

window xp pro version 5.1

More replies
Relevance 55.35%

ok, i've got like an anti-virus, anti-malware, anti-spyware, and a hijack this. Should i like remove some of these programs? Cause i need the laptop to speed up. any suggestions?? thanks.
 

Answer:Anti-virus, antispyware,anti-malware, hijack this! should i remove some of them?

There is excellent support here on TechSpot for major infestations.
In the meantime, if you need free software, I would download Avira Antivir, SuperAntiSpyware, MalwareBytes, and the free Microsoft Security Essentials. Run full scans with each. If they find evil infestations, remove them, then reboot and rerun the scans one more time.
 

7 more replies
Relevance 52.48%

In the past day, my computer has been very tempermental. I am running Vista Home Premium and have been for about 2 months without any issues. I run Avira Antivir and Kaspersky Internet Security in the background. I ran a full Kaspersky scan and have no issues. Antivir has not found anything either, except for HP false positives. When I run Ad-Aware and Spybot scans, nothing shows up. I also ran CCleaner to scrub temp files and registry. Also, a quick scan with MBAM was clean.

But when I try to run a full scan in MBAM or SuperAntiSpyware, the computer hangs. This usually happens when the screen saver kicks in. So I disabled the screen saver, but it still happens. I cannot access anything at that point and have to power off from the power supply (ctl alt delete won't work).

Does anyone have any thoughts?

Answer:Computer Freezes When Running Full MBAM Scan or Super AntiSpyware Scan

Try disabling your anti-virus for the scans
Just remember to turn it back on
Also disable Spybot's Teatimer function if you use it

7 more replies
Relevance 52.48%

Ok this is weird. I run Ntl netguard, and Spyware Doctor. A few days ago, SpyDoc refused to auto update. Nothing strange thought I, site must be down.

Well its been four days now. Then I noticed I couldn't connect to Microsoft to do updates either. On further investigation, I found I can't connect to ANY legit malware sites. I have run Spybot, Ntl netguard, Malware Byte's anti malware, and Norton AV, none found anything wrong.

However, I tried setting up a proxy within Firefox, and CAN connect to the sites I couldn't otherwise. (albeit incredibly slowly).

As things stand, I can't update any malware software, and assume my poor PC must have caught something new and nasty.

Please help

Hi jack this follows:-

Code:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:10:08, on 19/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ntl\ntl Netguard\fws.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Command Software\dvpapi.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterSer... Read more

Answer:Help Pls! Can't update Malware Protect or Visit Any Malware Sites

sorry, bump
 

2 more replies
Relevance 49.2%

Hi May i know whats the best  AntiSpyware And Malware software to use for my PC?Im looking for the one that use less resources for my PC,.thank you

Answer:Best AntiSpyware And Malware?

SUPERAntiSpyware real time antispyware protection. http://www.superantispyware.com/Either Avast or AVG for antivirus.

14 more replies
Relevance 49.2%

Sorry, I used the rkill to remove the malware for now so I can't see a specific message of the malware, but there have been different threat messages. I have tried to use Webroot, superantispyware, and malwarebytes', but they don't work. Webroot says it can not connect, Malwarebytes' doesn't do anything, and superantispyware shows that I have encountered a problem and that I need to close it down. After I see the error messages a series of antivirus ads pop up.

DDS (Ver_09-12-01.01) - NTFSx86
Run by jdl at 18:56:28.01 on Sat 12/19/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3067.2188 [GMT -8:00]

AV: Malware Defense *On-access scanning enabled* (Outdated) {28e00e3b-806e-4533-925c-f4c3d79514b9}
AV: Symantec AntiVirus Corporate Edition *On-access scanning enabled* (Updated) {FB06448E-52B8-493A-90F3-E43226D3305C}

============== Running Processes ===============

C:\Program Files\Fingerprint Sensor\AtService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\agrsmsv... Read more

Answer:Malware won't let me run antispyware

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below I will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Follow the instructions... Read more

2 more replies
Relevance 49.2%

Hello,

I have Winantispyware on my computer and cant get rid of it. Im getting a ton of pop ups. Here is the Hijackthis log:

Logfile of HijackThis v1.99.1
Scan saved at 10:15:59 PM, on 8/16/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\system32\phombeft.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
C:\WINDOWS\TEMP\win3B.tmp.exe
C:\WINDOWS\mgrs.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\Program Files\Network Monitor\netmon.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SiteAdvisor\6065\SiteAdv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\e... Read more

Answer:Win Antispyware and other Malware

NOTE: If you have downloaded ComboFix previously please delete that version and download it again!

Download this file :

http://www.techsupportforum.com/sectools/sUBs/ComboFix.exe
or
http://download.bleepingcomputer.com/sUBs/Beta/ComboFix.exe

Double click combofix.exe & follow the prompts.
When finished, it shall produce a log for you. Post that log

Note:
Do not mouseclick combofix's window while its running. That may cause it to stall

=====================
Download Superantispyware (SAS) free home version

http://www.superantispyware.com/superantispywarefreevspro.html

Install it and double-click the icon on your desktop to run it.
It will ask if you want to update the program definitions, click Yes.
Under Configuration and Preferences, click the Preferences button.
Click the Scanning Control tab.
Under Scanner Options make sure the following are checked:
o Close browsers before scanning
o Scan for tracking cookies
o Terminate memory threats before quarantining.
o Please leave the others unchecked.
o Click the Close button to leave the control center screen.
On the main screen, under Scan for Harmful Software click Scan your computer.
On the left check C:\Fixed Drive.
On the right, under Complete Scan, choose Perform Complete Scan.
Click Next to start the scan. Please be patient while it scans your computer.
After the scan is complete a summary box will appear. Click OK.
Make sure everything in the white box has a check next to i... Read more

1 more replies
Relevance 49.2%
Question: Super Malware

I reformated my computer changed all my router settings and reformated my computer. I also turned off all auotmatic updates. Even though all automatic updates were off windows starts downloading updates such as internet drivers connected to my Bios system. When I try to clear my DNS setting under Admin rights, It tells me I dont have perrmisson. The more internet drivers that my Bios connects to itself to the slower my internet connection gets. I started disabling these internet drivers and my connection speeds up. Then one more connects and my internet slows down again. I disabled that one then windows started installing more updates that I didnt have the right to even cancel. My computer shut down now it wont even turn on it just beebs when I hit the power button. I was looking at the windows update loggs before it shutdown and it looked like each windows update was being stopped by a "special user" and then replaced with another one with the same name. please help me how do I stop this when I can't even install windows update

Answer:Super Malware

[Device Install Log]
OS Version = 6.1.7600
Service Pack = 0.0
Suite = 0x0300
ProductType = 1
Architecture = x86

[BeginLog]

[Boot Session: 2009/07/13 21:52:48.109]

>>> [DIF_REMOVE - ROOT\*ISATAP\0000]
>>> Section start 2009/07/13 21:56:40.721
cmd: D:\Windows\system32\sysprep\sysprep.exe /generalize /OOBE /quit
cci: NCI: Deleted persisted NSI Interface; IfType=00000083, NetLuidIndex=00000004
cci: NCI: Freed NetLuidIndex; IfType=00000083, NetLuidIndex=00000004
cci: NCI: Successfully deleted Connection Registry Key for GUID={91F1FBE8-EE3B-40A8-A69E-C267342CFDA6}
<<< Section end 2009/07/13 21:56:41.221
<<< [Exit status: SUCCESS]
>>> [DIF_DESTROYPRIVATEDATA]
>>> Section start 2009/07/13 21:56:41.221
cmd: D:\Windows\system32\sysprep\sysprep.exe /generalize /OOBE /quit
<<< Section end 2009/07/13 21:56:41.221
<<< [Exit status: SUCCESS]
[Boot Session: 2012/08/05 12:36:29.406]

>>> [DIF_REMOVE - ROOT\LEGACY_MSDSM\0000]
>>> Section start 2012/08/05 13:37:28.468
cmd: C:\Windows\system32\oobe\setup.exe
! dvi: Query-removal was vetoed by Root\LEGACY_MSDSM\0000 (veto type 1: PNP_VetoLegacyDevice)
! dvi: Setting needs reboot
! dvi: Query-and-Remove failed: 0x17: CR_REMOVE_VETOED.
<<< Section end 2012/08/05 13:... Read more

2 more replies
Relevance 48.79%

Something (Malware ? ?) locked up my PC (Windows XP). I got a pop up message that my PC was infected and click "yes" to buy an AV program. I did not click "Yes", but every program I tried to run came up with the same message. I took it where I bought it and they fixed it by cleaning my hard drive and re-loading my OS. Fortunately, I had BU'd my personal files. They called the problem an "intercept". Norton AV did not catch it. They also loaded "Malwarebytes" for me.

What is the best way to protect for this kind of problem ?
 

Answer:How to protect against Malware ?

Welcome to Major Geeks!

Please read ALL of this message including the notes before doing anything.

Pleases follow the instructions in the below link:

READ & RUN ME FIRST. Malware Removal Guide


and attach the requested logs when you finish these instructions.

**** If something does not run, write down the info to explain to us later but keep on going. ****
Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.


After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:


If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
If you cannot seem to login to an infected user account, try using... Read more

1 more replies
Relevance 48.79%

Make sure you get your system protected from ocurrences of malware problems. Below are some simple steps you can take to reduce the chance of infection in the future. I strongly encourage you to do them all. There is no perfect solution for totally preventing malware from getting on your PC, however, these steps will help.

Please do not make the false assumption that this thread is old or out of date based on the date the thread was started ( 10-10-04 21:52 ). Look at the Last Edited date at the bottom of this message as this procedures does evolve with time.

IMPORTANT NOTE: It is getting more and more difficult to find real true freeware these days that does not include bundleware, toolbars...etc and junk you just don't want. Make sure you pay attention during installation of anything you download and read license agreements. Be sure to uncheck check boxes for the bundleware and toolbars where you can so that you opt out because the defaults are always to opt in.


1. Visit Windows Update: Make sure that you have all the Critical Updates recommended for your operating system and IE. The first defense against infection is a properly patched OS. For anyone who is not yet running at least Windows 7 (which you really should be running at a minimum if your PC supports it) see the below link before updating. Note: Windows XP is not longer supported by Microsoft and is hence a security risk.

Windows 7 Upgrade Advisor
You should check for Windows Updates at least once a ... Read more

More replies
Relevance 48.79%

i Just bought a new PC. i have a couple questions from the 'How to protect yourself from malware' thread.

My Pc is running windows 7.

In the Firewall section it doesnt say if the windows 7 firewall is sufficent? If it isnt i will download and outpost firewall and disable the windows one.

In the Antispware tools i downloaded Micrsoft security essentials for Winbdows 7. Since i also downloaded Avast as my anti Virus is it ok to run both these?

In the disable the autoruns feature there is no update for windows 7?
 

Answer:How to protect yourself from Malware

avilo4u said:





In the Firewall section it doesnt say if the windows 7 firewall is sufficent? If it isnt i will download and outpost firewall and disable the windows one.Click to expand...

While the Windows 7 firewall is better than what was in previous versions of Windows, it is still very inadequate.





avilo4u said:





In the Antispware tools i downloaded Micrsoft security essentials for Winbdows 7. Since i also downloaded Avast as my anti Virus is it ok to run both these?Click to expand...

No! MSE is and antivirus and antispyware. So is Avast. You can only have one of them installed.





avilo4u said:





In the disable the autoruns feature there is no update for windows 7?Click to expand...

Microsoft has never updated their info ( from here http://support.microsoft.com/kb/967715 ) for Windows 7 so I'm not sure if everything that is used for Vista would apply.

You can just run this >> Autorun Eater
 

6 more replies
Relevance 48.79%

How would you protect yourself from a fud?
 

Answer:How to protect yourself from a FUD malware?

LukeNukesEm said:





How would you protect yourself from a fud?Click to expand...

Supplement your security with something besides signatures.
 

34 more replies
Relevance 48.38%

I'm pretty conservative when online, but somehow picked up this malware. It's forcing ad's to open, and redirecting me to "AntiSpyware Master". It seems to be some malware originating out of russia? I've run Norton Internet Security 2008, PC Tools Spyware Doctor and Norton AntiBot. They all pick up variations or stop something, but they don't remove and kill the basic malware. It seems to regenerate. How do i get rid of this thing? Any and all help is appreciated. I'm running and attaching the Hi Jack This log as I noticed it's usually asked for. Thanks!!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:32:42 PM, on 5/3/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\Norton AntiBot\agent\Bin\NABAgent.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.... Read more

Answer:AntiSpyware Master malware

8 more replies
Relevance 48.38%

help i have the antispyware master pop ups on my computer. here's combo fix and hijack this logs:

ComboFix 08-05-21.3 - Debra Ritzema 2008-05-24 19:47:42.4 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.1.1252.1.1033.18.63 [GMT -4:00]
Running from: C:\Documents and Settings\Debra Ritzema\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Debra Ritzema\Desktop\winxpsp1_en_hom_bf.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Debra Ritzema\Application Data\TSKS~1
C:\Documents and Settings\LocalService\Application Data\NetMon
C:\Documents and Settings\LocalService\Application Data\NetMon\domains.txt
C:\Documents and Settings\LocalService\Application Data\NetMon\log.txt
C:\Program Files\Common Files\SLMSS
C:\Program Files\Common Files\SLMSS\acp1.dat
C:\Program Files\Common Files\SLMSS\acp2.dat
C:\Program Files\network monitor
C:\temp\tn3
C:\WINDOWS\BMf3075b31.xml
C:\WINDOWS\cookies.ini
C:\WINDOWS\pskt.ini
C:\WINDOWS\RGVicmEgUml0emVtYQ\
C:\WINDOWS\system32\bcikhpvq.exe
C:\WINDOWS\system32\drivers\AGRSMM.sys
C:\WINDOWS\system32\iifcBqoM.dll
C:\WINDOWS\system32\iqtgrurt.ini
C:\WINDOWS\system32\ljJyyyVP.dll
C:\WINDOWS\system32\mkwjwtpt.ini
C:\WINDOWS\system32\mnfhdkai.ini
C:\WINDOWS\system32\MoqBcfii.ini
C:\WINDOWS\system32\MoqBcfii.ini2
C:\WINDOWS\system32\MSINET.oca
C:\WINDOWS\system32\msna... Read more

Answer:help!! antispyware master malware

Malwarebytes' Anti-Malware 1.12
Database version: 784

Scan type: Quick Scan
Objects scanned: 37236
Time elapsed: 7 minute(s), 15 second(s)

Memory Processes Infected: 1
Memory Modules Infected: 2
Registry Keys Infected: 19
Registry Values Infected: 5
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 22

Memory Processes Infected:
c:\WINDOWS\system32\rwwnw64d.exe (Adware.Agent) -> Unloaded process successfully.

Memory Modules Infected:
c:\WINDOWS\system32\{d941b493-6bc9-0a9e-3d7f-a88219262be0}.dll (Adware.Vapsup) -> Unloaded module successfully.
C:\WINDOWS\system32\ntinbeeu.dll (Trojan.Vundo) -> Unloaded module successfully.

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{ce6363b2-39a0-36ac-68ea-f89339fa745a} (Adware.Vapsup) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ce6363b2-39a0-36ac-68ea-f89339fa745a} (Adware.Vapsup) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1e404d48-670a-4085-a6a0-d195793ddd33} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{9f593aac-ca4c-4a41-a7ff-a00812192d61} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{749ec66f-a838-4b38-b8e5-e65d905fff74} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1e404d48-670a-4085-a6a0-d195793ddd33} (Adware.BHO) -> Quarantined and del... Read more

19 more replies
Relevance 48.38%

Hey!

I was just on facebook yesterday, no other browser window was open, I haven't had something annowing like this in AGES, but anyways, all of a sudden 'antispyware soft' came up saying I needed to fix some problems. I knew something fishy was going on straight away as I've never seen this 'software' before in my life. I hit ctrl alt del but it says the task manager is infected and needs to fix it, thus not opening it. No document of program can open unless it is called 'iexplore.exe' or 'winlogon.exe'. I assume because it also uses internet explorer to give me adverts for viagra.

I ran hijack this and got the following log, but dont know how to analyze it :/ Any assistance would be fantastic, as these pop ups, 'scanners' and whatnot are really irrirating. Besides from the fact I can open next to nothing..

Many thanks

Andeh

More replies
Relevance 48.38%

I've read and gained a great deal of knowledge over the last week. As a result I can't find the thread that offered a few suggestions regarding the use and deployment of anti malware & spyware tools. I've put together the following list of tools mentioned often:

Emsisoft Anti-Malware 5.0
Superantispyware
Malwarebytes
Spy bot search and destroy

I am sure I may have missed a few, but these were mentioned often with high regard. I know you should not run 2 AV or FW installations, but many people run multiple anti malware/spyware tools (some live and some on demand). Are there any gotchas with any of these tools I should be aware of in combination with avast av & comodo FW?

Thanks for the help getting into the Win7 world!

Answer:Malware/Antispyware Implementation

By far the best AV/Malware Tools are Microsoft's Security essentials, Windows Firewall and Sandboxie.

Run unknown programs in Sandboxie. Microsoft Security Essentials + Windows Firewall for everything else.

Anything else is not worth the trouble and money.

8 more replies
Relevance 48.38%

I picked up the MS Antispyware 2009 bug and it is wreaking havoc on my PC. I am running XP Pro and am trying to complete the first set of steps for posting the log files, but I cannot get the gmer.exe tool to run. I was able to run the dds tool and save the two log files, but the gmer.exe tool will not execute.

What should I do if the gmer.exe tool isn't allowed to run when I double-click on it?

Thanks for the help.

Answer:MS Antispyware 2009 malware

Hello and welcome to TSF.

Open notepad and copy/paste the text inside the quotebox below into it:


Quote:




@copy /y gmer.exe gomer.exe
@Start gomer.exe -protect




Save this as fix.bat Choose to "Save type as - All Files"
It should look like this:
Place fix.bat next to gmer & double click to launch it.

15 more replies
Relevance 48.38%

I have the exact problem that one of your other members encountered. I've ran every scan i can think of and did a smitfraud fix in safe mode...which didn't work. I do my work from this computer. I cant have popups every 10 mins. Please help!!! I dont know if your instructions posted in the forum will help me also... The symptoms are:
-The desktop background changed to all blue with a warning message about spyware on it. (I managed to get back my old background)
-every so often one of two warning windows pop up;
1) window says "Security system protection control panel"
! possible spyware infection detected to remove detected threat click here....a web page opens from "Antispyware-Reviews.biz". This page gives you a choice to download or buy "PC-Antispyware or PC-Cleaner"
2)Window says "Security system warning"
Alert details: File c:\windows\wml.exe
Threat Abebot
Click here to visit PC-Antispyware web site
-Also a yellow triangle with a pop up "Security system Warning" balloon is on the task bar.
 

Answer:Malware;Antispyware-Reviews.biz

Hi RedRoseNHugs2U,
Welcome to Major Geeks!

The reason most malware isn't completely resolved is because there are individual files which remain despite the use of a variety of tools. In the end, it is the manual deletion of these files which allows us to fix your computer. Please go through the procedures in the READ & RUN ME FIRST and attach the requested logs with your next post.

Thanks.
abri
 

1 more replies
Relevance 48.38%

I continually receive popups for this software with a Windows security warning from fp.pc-on-internet or em.pc-on-internet.com. I have run spybot S&D, AdAware 2007, CCleaner, Eusing registry cleaner, MalwareBytes anti Malware (this one found three problems) and use CA EZ Antivirus but nothing seems to help.
I think it came in through Web Media Player, now uninstalled.

Here is the HJT file
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:12:29 PM, on 29/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
K:\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\ISafe.exe
C:\WINDOWS\system32\DRIVERS\dcfssvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\NDAS\System\ndassvc.exe
C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxMediaDB.exe
C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatch.exe
C:\WINDOWS\system32\svchost.exe... Read more

Answer:Malware sws antispyware help needed

Let's have a look at a more comprehensive set of logs.

Download Deckard's System Scanner (DSS) to your Desktop. Note: You must be logged onto an account with administrator privileges.Close all applications and windows.
Double-click on dss.exe to run it, and follow the prompts.
When the scan is complete, two text files will open - main.txt <- this one will be maximized and extra.txt <-this one will be minimized
Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of main.txt here.
Please attach extra.txt to your post.
To attach a file to a new post, simplyClick the[Manage Attachments] button under Additional Options > Attach Files on the post composition page, and
copy and paste the following into the "Upload File from your Computer" box:C:\Deckard\System Scanner\extra.txt

Click Upload.

What DSS will do: create a new System Restore point in Windows XP and Vista.
clean your Temporary Files, Downloaded Program Files, and Internet Cache Files, and also empty the Recycle Bin on all drives.
check some important areas of your system and produce a report for your analyst to review. DSS automatically runs HijackThis for you, but it will also install and place a shortcut to HijackThis on your desktop if you do not already have HijackThis installed.

---------------------------------------------------------------------------------------------

19 more replies
Relevance 48.38%

Hi There
 
Instead of writing a vast list of what I think is going wrong with my PC, I will just sum it all up by saying that I have over the past two years been unable to use a PC properly. From my research I can only conclude that the cause of numerous hidden files and services that relate to RAS, Virtualisation, Screen Grabs, Audio and Video recording, also ever present Trojans (Upatre, BHWE, FakeAV, MSWord.agent, ZBot), relates to a UEFI Rootkit that I must have on an infected USB stick and continuosly (re)infect myself. I do a HD format and reinstall Windows every week. It would be nice to work with functional technology again.
 
Any help would be greatly appreciated.
 
A
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:24-02-2016
Ran by A (administrator) on DESKTOP-TE3136L (27-02-2016 21:41:14)
Running from C:\Users\A\Desktop
Loaded Profiles: A (Available Profiles: A)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Tempo Semiconductor Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Mi... Read more

Answer:Paraniod, or Super Malware???

Welcome to Bleeping Computer's Malware Removal Logs area. My name is Sintharius. I will assist you with your problem.Please allow me some time to review your logs and I will be back with instructions.

7 more replies
Relevance 48.38%

Hi,

A week or two ago hit an AOL site that casued the PC to blink, act funny and it's been super slow ever since.

Did a webroot scan it found: Mal/FakeAVJs-A

From your forum, I ran Hijack. Here's the log:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:52:11 PM, on 3/4/2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Webroot\Security\Current\Framework\WRConsumerService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Micro... Read more

More replies
Relevance 48.38%

hi all,

please help me solve my computer problem, because i have this so called trojan horse virus, tracking cookie. adbrite etc...i already do the scanning using my anti virus software called symantec anti virus corporate edition...i scan my pc in safe mode, and i turn off system re store..my anti virus software doesnt detect the virus, but the avg anti spyware detect it, i already deleted it all but when i go back to noramal window, my symantec antivirus auto protect is still disabled, iaso tried uninstalling the anti vius software and install it again but still cannot, the virus is still there ..what should i do? bec if my anti virus auto protect is disabled, my computer is at risk because i often connect to the internet and i might get so many viruses that will destroy my pc.. PLease help me...
 

Answer:trojan horse virus has disabled my symantec anti virus auto protect

Welcome to Major Geeks!

Cookies are not problems and cookies would also not be able to disable your antivirus.

Please work thru the below procedure and attach the requested logs when you finish:

Read & RUN ME FIRST Before Asking for Support
 

1 more replies
Relevance 48.38%

We maintain several PCs from a library, a research lab for students in a university. Just recently bunch of malwares swarm inside the lab and nearly affected all the machines. Most of these malwares are being imported from student's flash drives in which they're freely allowed to plug on the PC's. So cleaning the infections was really tedious. We cloned the drives and some were fixed using anti-malware softwares. 
 
Each computer is running a Microsoft Security Essentials for virus protection, and that's it.

Our main problem is, how should we setup each PCs so that we can prevent those viruses from porting inside the system? Is there any particular software or windows configurations that can offer such functionality? MSE merely detects all these viruses and most of it already infiltrated the system and removing each as I said is very tedious and time consuming.
Maybe you guys got some efficient workarounds with this type of predicament.NOTE:
All PCs have the same hardware and uses Windows 7 32bit.
 

Answer:How to protect PCs from USB-malware carriers?

Simple, look at:
 
http://www.bleepingcomputer.com/forums/t/541639/security-suggestions-post-3-of-7/
 
Have a great day!

 

11 more replies
Relevance 48.38%

I have read this threadhttp://forums.majorgeeks.com/showthread.php?t=44525 and i am paying particular attention to #5 AntiSpyWare Tools, and it states ONLY USE 1 REALTIME BLOCKER So my question is, i use ESET'S nod32 Antivirus to protect my machine, but it has antispyware protection included. I also have Malwarebytes Pro providing real time blocking, so am i in effect useing more then 1 realtime blocker? If so what do i do about that? I paid for Malwarebytes Pro, not using it will defeat it's purpose and be considered a waste of money!
 

Answer:How to Protect yourself from malware Thread

You;re fine. One AV only, but you can have more than one AS (Anti-spyware ).
 

3 more replies
Relevance 48.38%

Hi. I am rather a person with basic knowledge about computers so don?t be surprised if my question will sound stupid to you.
I have a Windows PC and I often use my thumb drive to print some documents in my university. I?m afraid that it will become infected someday so I thought it would be a good idea to use it only with Puppy Linux when I'm at home. This is why I made my thumb drive a bootable one with Puppy on board. What I want to do is to boot to Puppy, copy the files I need to print or use at the university to the USB drive, then close the system and disconnect the USB drive. To be clear, only one USB stick is involved in this process (Puppy and data are on the same USB stick). Would that prevent infecting my Windows PC? If not then how can I avoid viruses spreading through USB? Can malware do any harm to Windows OS when Puppy is booting?
 

Answer:Can puppy protect me from malware?

Good idea if I understood correctly
 

7 more replies