Computer Support Forum

Malware preventing Vista security updates

Question: Malware preventing Vista security updates

Hi Guys,

I could use some help getting rid of some malware that has been vexxing me for quite a while now. Looking back at my windows update history, I have been unable to install Vista Security Update KB979683 since 16 Apr 10 with it attempting to install everyday since then and always getting the same error 'FFFFFFFF'

I was unable to get a RootRepeal log as the program would use up all my RAM (2GB) and then just exit itself after about 20 mins.

My logs are attached. Thank You!

Relevance 100%
Preferred Solution: Malware preventing Vista security updates

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Answer: Malware preventing Vista security updates

Welcome to Major Geeks!

You ran steps in safe boot mode not normal boot mode. You should be running in normal boot mode to get proper logs unless that is not possible.

Also you skipped running step 6 of the READ & RUN ME so we cannot tell whether you have a Master Boot Record rootkit infection or it is just the disk emulation software you did not disable. To properly continue, you will have to run this step and then rerun MGtools and attach a new log; however, based on the sum of all logs, I don't think you are having malware problems.

While problems with Windows Updates can sometimes becaused by malware, it is quite frequently not malware. It could just issues with Windows itself or it could be your own protection sofware. You could try shutting down Symantec and Windows Defender and see if you can update.

3 more replies
Relevance 87.33%

This topic is tied to the following post: http://www.bleepingcomputer.com/forums/t/304226/unable-to-update-mbam-spybots-d-or-avg/I have malware on my machine that prevents me from updating any of my security apps (MBAM, SpybotS&D, AVG). If I do scans with them in both regular and safe mode I receive no results.Steps i've already taken with the help of a moderator includes: - running fixexe.reg - running TFC - running rkill - running SuperAntiSpyware - re-running MBAM (to no avail)Now I have run Defogger, DDS, and GMER and will post the results per the guidelines and attach the appropriate files:DDS.txtDDS (Ver_10-03-17.01) - NTFSx86 Run by Duong at 20:43:34.07 on Mon 03/22/2010Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_05Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1270 [GMT -8:00]AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) coloro:#E567177FW: ZoneAlarm Firewall *enabled* coloro:#E567176FW: NVIDIA Firewall *disabled* coloro:#E567175============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exeC:\Program Files\AVG\AVG9\avgchsvx.exeC:\Program Files\AVG\AVG9\avgrsx.exesvchost.exeC:\Program Files\AVG\AVG9\avgcsrvx.exeC:\WINDOWS\system32\spoolsv.exesvchost.exeC:\Program Files\AVG\AVG9\avgwdsvc.exeC:\WINDOWS\system32\CTsvcCDA.exeC:\Program Files\Juniper Networks\Common Files\dsNcService.exeC:\Program Files\NVIDIA Corporation\... Read more

Answer:Malware preventing security apps updates (i.e. MBAM, Spybot, AVG)

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

27 more replies
Relevance 71.34%

Hello.

I posted in the Vista section about trouble I am having with updates installing. One person replied that "[b]ecause of the large number of problems in category items that [I] posted, and the corrupted SFC store," before I do anything else, I should post in this forum to make sure my system isn't infected.

To briefly summarize what I posted over there, I can't get some updates to install, and I have some corrupted files (or corrupted something . . . I honestly don't know enough to know what the problem is).

Here is what I got when I ran the dds:


DDS (Ver_09-03-16.01) - NTFSx86
Run by admin at 16:00:03.31 on Thu 04/16/2009
Internet Explorer: 7.0.6000.16830 BrowserJavaVersion: 1.6.0_07
Microsoft? Windows Vista? Home Premium 6.0.6000.0.1252.1.1033.18.2037.1118 [GMT -5:00]

AV: ZoneAlarm Security Suite Antivirus *On-access scanning enabled* (Outdated)
FW: ZoneAlarm Security Suite Firewall *enabled*

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkS... Read more

Answer:Possible malware infection preventing updates

Hello ti2,

I'm not seeing any malware in these logs. You can run an online scan and see if it detects anything lurking about. It can take some time, so please be patient and allow it to run it's full course:

**Vista users - right click on the IE icon and run as administrator

Using Internet Explorer or Firefox, visit http://www.kaspersky.com/kos/eng/par...avwebscan.html

1. Click Accept, when prompted to download and install the program files and database of malware definitions.


2. To optimize scanning time and produce a more sensible report for review:Close any open programs
Turn off the real time scanner of any existing antivirus program while performing the online scan

3. Click Run at the Security prompt. The program will then begin downloading and installing and will also update the database. Please be patient as this can take several minutes.Once the update is complete, click on My Computer under the green Scan bar to the left to start the scan.
Once the scan is complete, it will display if your system has been infected. It does not provide an option to clean/disinfect. We only require a report from it.
Do NOT be alarmed by what you see in the report. Many of the finds have likely been quarantined.
Click View scan report at the bottom.



Click the Save as Text button to save the file to your desktop so that you may post it in your next reply

2 more replies
Relevance 71.34%

Hello guys, I hope I've posted this in the correct place. I'm only averagely tech minded so I'll try my best

I'm running Windows XP (sp3) and mostly use Chrome browser with IE occasionally.

My Avira Free has refused to net update for over 24hrs, and when I look at Internet Options I see the 'use proxy server' button is checked although I've previously un-checked it. I've managed to download manually from Avira and am currently running a scan with it & Malwarebytes.

I have some log files but I take notice of the warning against posting hijack this logs in this forum.

There are several processes & files that look decidedly fishy to me but am not sure of where/how to proceed. "ProxyServer = http=127.0.0.1:49717" for example!

I also use Malwarebytes free version & update & scan regularly with this & Avira free AV.

I usually scan any potentially fishy files with AV & MWB before downloading but something's gotten through (could be another user when I've not been here is responsible) or can hardware like a cheap chinese USB hub be responsible?

Answer:malware &/or virus (I think) is preventing AV updates

Welcome joolzLet's run these as I feel you have a rootkit.Many malwares like to change the proxy setting on you.Please click Start > Run, type inetcpl.cpl in the runbox and press enter.Click the Connections tab and click the LAN settings option.Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.Now check if the internet is working again.Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!Be sure to download TDSSKiller.exe (v2.4.0.0) from Kaspersky's website and not TDSSKiller.zip which appears to be an older version 2.3.2.2 of the tool.Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
Vista/Windows 7 users right-click and select Run As Administrator.If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.Click the Start Scan button.Do not use the computer during the scanIf the scan completes with nothing found, click Close to exit.If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.... Read more

10 more replies
Relevance 71.34%

Info in this thread:
http://forums.techguy.org/windows-nt-2000-xp/736643-automatic-updates-rundll32-error.html

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:55:39 PM, on 8/3/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.com/
O3 - Toolbar: AIM Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AIM Toolbar 5.0\aoltb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avi... Read more

Answer:MalWare preventing Automatic Updates?

Er hm, was I suppose to post the HJT log while in non-safe mode?
 

1 more replies
Relevance 68.88%

Hi, my computer somehow picked up some nasty little programs that caused a lot of problems. This is my first time posting on a tech help forum so I hope I followed the rules correctly. If I've done anything wrong or you need some information I didn't supply, please let me know and I'll try to correct it ASAP.

Thanks in advance for your help :]
Okay, here's an outline of my problem:

Initially the desktop of my computer was changed into a screen that read "Warning! Spyware has been detected on your computer!" in Blue and Yellow text.

I downloaded and ran a few different antispyware programs:
SUPERAntiSpyware Free Edition
Dr. Web Cure It!
and Malwarebyte's Anti-Malware

Each of these programs detected some things and I had them remove them.

The desktop issue is no longer present now, however two issues that I know of remain.

I use Mozilla Firefox 3 and it works normal, same homepage and everything, except when I do a search in google, I can not follow the links. If I click on a link it'll divert me to some other things.
At first the links (under properties) all lead to some weird website that started with an "a" sorry I don't remember what it was...

Now all the links are to a go.google.com/? followed by a ridiculously long string of characters.

Some of the redirects try to get me to download some pseudo antivirus program antivirus 2009? I think it was called.

Other issues I have is I can't access any help sit... Read more

More replies
Relevance 63.55%

Hello. I have a troubling problem on my wife's home computer. We suddenly are unable to run certain programs, as they now display messages saying we need administrator privileges. For example, Adobe photoshop cannot run because it says we need to be logged in as an administrator. We are running a Windows Vista Home Premium PC, and she is logging in as the same user she always logs in under, which has admin privileges. In fact, I downloaded malwarebytes, and cannot even run it for the same reason -- it tells me I may need different privileges. We also are suddenly seeing malware like popups for companies called "forex" or weird search interceptors.

I have run the DDS log application, and here are the results. I have also attached the attach file. Thanks for anyone's help.

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.6000.17037 BrowserJavaVersion: 1.6.0_20
Run by scherschligt at 21:54:16 on 2011-10-06
Microsoft? Windows Vista? Home Premium 6.0.6000.0.1252.1.1033.18.2046.768 [GMT -5:00]
.
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetwor... Read more

Answer:Virus on Windows Vista preventing administrator privileges, other malware

An update: I have tried to determine the nature of this issue on my own. After getting some advice from some others, I ran some rootkit utilities, and discovered this is apparently something called rootkit.win32.zaccess.e. Of course, that doesn't help me resolve the issue. If anyone can help, great. Otherwise, I'll close the topic in a day or two. Thanks. This flippin' virus is terrible.

3 more replies
Relevance 57.4%

Hi,I have been unable to use Windows Update for a while (it keeps checking for updates and then eventually fails with error code 8024402F). I first thought that it was a Windows Update issue and tried a bunch of fixes but to no avail. However, I figured something was amiss when I couldn't download security tools like Trend House Call or Microsoft Malicious Tool Remover. To cut a long story short, Malwarebytes detected three items (Malware.Packer.Gen, Trojan.Downloader,and Trojan.Bancos) and removed them. These items were found in keygen installer files that were put on our computer without authorization (ours is a public computer in a non-profit organization). Luckily the programs that these files were for were not installed. We do not use or condone the use of pirated software and I deleted these installer files immediately. However, I still could not get Windows Updates. I then tried to reset the hosts files but this didn't help either and I am not sure if it worked. I tried to create a HiJack This log but error message stating that "the system denied write access to the Hosts file" and is unable to create a logfile. I am attaching the logs that I have run below and would really appreciate help in resolving the issue. Thanks! DDS LogsDDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16448Run by Sangeet Kendra at 18:25:43 on 2012-12-27Microsoft Windows 7 Professional 6.1.7601.1.1252.91.1033.18.4011.2447 [GMT 5.5:30].AV: Microsoft Securi... Read more

Answer:Malware prevents Windows and other security updates

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.===Lets start with this.Please download ComboFix from any of the links below, and save it to your desktop. For information regarding this download, please visit this web page: http://www.bleepingcomputer.com/combofix/how-to-use-combofixLink 1Link 2* IMPORTANT !!! Save ComboFix.exe to your DesktopIMPORTANT....1. Close any open browsers.2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.3. Do not install any other programs until this if fixed.How to : Disable Anti-virus and Firewall...http://www.bleepingcomputer.com/forums/topic114351.htmlDouble click on ComboFix.exe & follow the prompts. When finished, it will produce a report for you. Please post the C:\ComboFix.txt Note:Do not mouse click ComboFix's window while it's running. That may cause it to stallNote: If you have difficulty properly disabling your protective programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.htmlNote: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.===Third party programs if not up ... Read more

16 more replies
Relevance 57.4%

Hi everyone,

I am new to this site and hoping you may be able to help me.

As the title says, I haven't had any windows updates in ages, and I can't update any anti spyware applications. I used to have ad-aware, I removed this as it wasn't updating.

I then installed Spybot, and I still can't update this either.

I have tried running spybot as it is but it detects no problems.

I am using AVG as my antivirus, this updates fine, but cannot detect any problems.

A lot of the support pages for these applications have been blocked, sometimes when I do a google search I click on the link and I get redirected to another page.

Internet is running a lot slower than normal.

Any help is appreciated, I have followed the instructions and attached all relevent files. I was unable to do a full scan with the gmer.exe as it kept crashing.



DDS log:

DDS (Ver_10-03-17.01) - NTFSx86
Run by Khus at 19:04:51.78 on 04/04/2010
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_18
Microsoft Windows XP Professional 5.1.2600.3.1252.44.1033.18.2045.1184 [GMT 1:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe... Read more

Answer:Virus/Malware has blocked security updates

I would like to ads, with ad-aware I downloaded the update for it on another un-infected computer and transferred over via usb, and the application didn't seem to load update, or acknowledge that it had been updated.

8 more replies
Relevance 56.58%

Logfile of Trend Micro HijackThis v2.0.2Scan saved at 7:30:53 AM, on 9/28/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 SP2 (7.00.6000.16414)Boot mode: NormalRunning processes:E:\WINDOWS\System32\smss.exeE:\WINDOWS\system32\winlogon.exeE:\WINDOWS\system32\services.exeE:\WINDOWS\system32\lsass.exeE:\WINDOWS\system32\svchost.exeE:\WINDOWS\System32\svchost.exeE:\WINDOWS\Explorer.EXEE:\WINDOWS\system32\spoolsv.exeE:\Program Files\Trend Micro\Internet Security 2007\pccguide.exeE:\Program Files\BillP Studios\WinPatrol\winpatrol.exeE:\WINDOWS\system32\ctfmon.exeE:\Program Files\BySoft FreeRAM\FreeRAM.exeE:\WINDOWS\system32\netdde.exeE:\WINDOWS\System32\svchost.exeE:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exeE:\WINDOWS\System32\tcpsvcs.exeE:\WINDOWS\System32\svchost.exeE:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exeE:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exeE:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exeE:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exeE:\Program Files\Safari\Safari.exeE:\Documents and Settings\PYRO\Desktop\HiJackThis.exeR1 - HKCU\Software\Microsof... Read more

Answer:Possible Spy/malware Detected; Security Logs/updates Fails

Hello FireItUp Welcome to Bleeping Computer! Sorry about the delay. We're all volunteers here, and it's been very busy. If you still need help, please post a new HijackThis log to make sure nothing has changed. Before posting the log, please make sure you follow all the steps found in this topic: Preparation Guide For Use Before Posting A Hijackthis Log <--link And I'll be happy to take a look at it for you. I also need to see a different type of log from Hijackthis: Run Hijackthis.Click on "Open the Misc Tools section".Next click on "Open uninstall manager".Press the button 'save list'. It will open a Notepad file.Place the content of that file here in your next reply.Thanks, for your patience. Stelios

1 more replies
Relevance 56.17%

I haven't been able to sucessfully install updates for Trend Micro Security. I tried manually installing, but it didn't take. It also continuously disables my firewall. I ran hijack this. Here is my log... help please! Logfile of Trend Micro HijackThis v2.0.2Scan saved at 11:29:56 PM, on 2/21/2009Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16791)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exeC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\WINDOWS\system32\lxdncoms.exeC:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXEC:\WINDOWS\system32\nvsvc32.exeC:\Program Files\Trend Micro\Internet Security\SfCtlCom.exeC:\Program Files\Analog Devices\SoundMAX\SMAgent.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Webroot\Spy Sweeper\SpySweeper.exeC:\Program Files\Cano... Read more

Answer:Unknown malware? Problems with firewall and installing security updates

Hello Amy,Sorry about the delay. If you still need help, please post a new HijackThis log to make sure nothing has changed, and I'll be happy to look at it for you.The current formatting of your log makes it difficult to read. Please open Notepad:On top, click Format >uncheck Word Wrap.Thanks,tea

2 more replies
Relevance 56.17%

we only do WSUS Security updates at work, and I need to MANUALLY download the update to MS Malware Protection Engine to get to version 1.1.10701.0. everything I find says windows update - can't do it.  I need a URL to go to that has the definition
to download, every URL I find only has information regarding it. I need a URL to download the update. Any help would be appreciated.

Answer:need to download MS Malware Protection Engine / we use Security updates only in WSUS

Hi,
Like below article description, the Microsoft Malware Protection Engine is running in these products:

Microsoft Forefront Client Security Microsoft Forefront Endpoint Protection 2010 Microsoft Forefront Security for SharePoint Service Pack 3 Microsoft System Center 2012 Endpoint Protection Microsoft System Center 2012 Endpoint Protection Service Pack 1 Microsoft Malicious Software Removal ToolMicrosoft Security Essentials Microsoft Security Essentials Prerelease Windows Defender for Windows 8 Windows Defender for Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2
Windows Defender Offline Windows Intune Endpoint Protection
Thus you only could update it via these products as its description. This article provides information about how to update the Malware Protection Engine. Please read it as reference:
http://support.microsoft.com/kb/2510781/en-usKaren Hu
TechNet Community Support

2 more replies
Relevance 55.76%

I have a new(ish) desktop & laptop, both preinstalled with Vista Home Premium (probably needing all the updates, as I bought them last November). They've only been on the internet for 1 brief test dialup connection (as my phone line then got too bad to connect with their USB modem; I'm using the old 98SE machine for the internet).After a year of false starts, the local wireless broadband scheme (from a mast) suddenly got me connected the other day. I saw it working in the laptop, then disconnected again immediately as I haven't yet got internet security sorted (I presume it's as necessary whatever kind of broadband?)What sequence should I follow to be secure on broadband while getting security in place? So far, I've just removed the preinstalled Norton Internet Security trials (ready to install preferred security software), and cleared some preinstalled clutter that might interfere (eg stuff from UK ISPs, not usable here in Ireland).I think I've gathered (mostly from PC Advisor magazine & forums) all the info I need about the sequence & method of getting Vista updates including SP1, and about which 3rd-party anti-malware apps to go for. But from the security point of view (or any other reasons), does it matter which I do first?I guess that at least I should have Windows Firewall on from the start, except if & when advised to turn it off during Windows updates/other security software installation?The preinstalled Internet Explorer worked immediately with the BB test (not needi... Read more

Answer:Which to do 1st, Vista updates or security s/w?

Forgot to say don't be offended if it takes me a while to respond (my phone line's more often dead than alive in this weather!)

8 more replies
Relevance 55.76%

after having to do a full restore on a vista laptop there is the following on almost every website i want to access(from ebay to facebook)'to help protect your security internet explorer has blocked this website............'etc.also windows update is unavailable.'windows could not search for new updates...error code 80072f8f.'what can i do !.

Answer:vista security and updates

check to see if your date and time are set correctly

3 more replies
Relevance 55.76%

I am running Vista Home Premium on a compaq presario. It is set to automatically download Windows updates. Upon checking the logs I found that the security updates were not installing. I tried to install them manually but get an error, number 4397. I could not solve the problem. Below is the log from Trend Micro.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:25:26 AM, on 11/2/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Windows\system32\schtasks.exe
C:\WINDOWS\RtHDVCpl.exe
C:\WINDOWS\System32\igfxpers.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\jusched.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redire... Read more

Answer:Vista security updates

You can try this: http://support.microsoft.com/kb/949104
 

1 more replies
Relevance 55.76%

My computer is running Vista Home Premium. While trying to install an update it failed to install. I checked the update history and found several failures. It turned out that they were all security updates. So I assume that my computer is not as secure as it should be. Can you help with this? Thanks in advance.
 

Answer:Vista security updates

10 more replies
Relevance 55.76%

Just bought a new laptop and I plan to install all the necessary security before I begin playing with it. Nortons is already installed. Which site is it for Vista? I am not accustomed to Vista as my previous computer was windows xp so I knew which security update site to go to. Just want to make sure I go to the right site. Cheers
 

Answer:Security updates for Vista

For Vista you'll go to Windows Update, same as you did for XP.
 

3 more replies
Relevance 55.35%

Windows 7 Home edition PC.
 
I'm getting the 0x80073b01 Error Code when I install Security Essentials after it completes the installation but before it starts the program for the first time.  If I click on it from the start menu, it gives the same error as I try to start it.  I believe the same problem is preventing the Microsoft updates from happening as well....they show two new critical updates needed, but it is never able to install them.
 
Found the program titled "PC Speed Fix" installed on her computer.  I uninstalled it, and after reboot it shows up again (now it is not showing up in her installed programs list).
 
I have ran updated versions of Malwarebytes and SpyBot...both removed some items, but still unable to start/run Security Essentials.
 
Any help would be greatly appreciated!!  Thanks!!

Answer:Malware stopping Security Essentials and Microsoft Updates (0x80073b01 Error)

Welcome aboard   Download Security Check from here or here and save it to your Desktop. Double-click SecurityCheck.exe Follow the onscreen instructions inside of the black box. A Notepad document should open automatically called checkup.txt; please post the contents of that document.NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me. Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.Make sure the following options are checked:
Internet ServicesWindows FirewallSystem RestoreSecurity Center/Action CenterWindows UpdateWindows DefenderOther ServicesPress "Scan".It will create a log (FSS.txt) in the same directory the tool is run.Please copy and paste the log to your reply. Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList Devices (do NOT change any settings here)List Users, Partitions and Memory sizeClick Go and post the result. Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/products/malwarebytes_free to your desktop.* Double-click mbam-setup.exe and follow the prompts to install the program.* At the end, be sure a checkmark is placed next to Up... Read more

5 more replies
Relevance 55.35%

Since Feb 9, several Vista security updates (7 in total, e.g. KB2483185, KB2485376 an others) fail to install. Reported errorcode 80071AA7.

In last few days these few other updates did install without problems (e.g. KB890830).

Answer:Security updates for Vista won't install

Try to install one at a time and not all at once.
Set Windows update to notify and and not install. You install yourself one at a time.

8 more replies
Relevance 54.94%

I just ran the Remove Vista Internet Security 2012 (Uninstall Guide) tutorial and it seems to taken car of the malware in safe-mode. But now an issue is happening when I get to the end of tutorial after rebooting from Malwarebytes and booting back to the normal boot mode. And the system seems to give give the following error then lock up not allowing other programs to run. A dialog box titled MalwareBytes, with the following message:"[Open Event] failed to perform desired action. Error Code : 2"A search on the error points to basically reinstalling Malwarebytes, but that does not solve it, even just removing malwarebytes all together doesn't solve it. After normal startup then the error the system gets lock up.Is there something else going on here that needs to be looked at, I was trying to find registry entries tied to malwarebytes or Run Once that might be causing it to run and error, but no luck yet? HiJackThis does not show any weird programs in the Run keys either?Any Further Ideas?

Answer:Vista System Locks Up After Malware Reboot - Remove Vista Internet Security 2012 (Uninstall Guide)

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything. We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. To help Bleeping Computer better assist you please perform the following steps:*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/432088 <<< CLICK THIS LINK If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.*************************************************** If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lo... Read more

2 more replies
Relevance 54.94%

Yesterday while reading a pop up of Vista Internet Security pops up, It looked fake so I know I picked up something. I'm using a public network if that makes a difference since these are places I never had a problem with before.

When I did the Gmer.exe I tried to follow the instructions but when to scan the section was already checked and the rest were grayed out.

Checked sections: Services/Registry/Files/C:/ADS

So I've added what it did with the attach.txt file. At the moment I don't have a boot disk but I am still able to use this laptop with the infection. I'm either saying no to "fix the problem" or closing the pop ups when they occur.

Here's my stuff:


DDS (Ver_09-12-01.01) - NTFSX64
Run by Arlene at 7:47:03.44 on Tue 03/09/2010
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_15
Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.1.1033.18.1914.919 [GMT -5:00]

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\RtkAudioService... Read more

Answer:Vista Internet Security 2010 malware x64 Vista

I fell asleep and left the wireless on I think but the windows update decided to update and restart my computer, now I have lost my task manager saying it is not there. I also no longer see the fake vista logo my start up and the popups are gone. Since I didn't get help yet I decided to let my Mcafee do its weekly scan.

Now something has happened and I don't know what it is. I knew as long as I kept the computer on, the malware couldn't do anything but I am asking really for help since it Friday and I don't have a backup plan if I need to wait three more days into the weekend.

2 more replies
Relevance 54.53%

Dell m1330 Vista home premium. I have malware isses, frequent memory dumps, google redirection and something is preventing me from running or installing anti-malware programs. I had to install malwarebytes using the rename method, but the program will not run in safe mode or normal. I had spybot previously installed but I was also prevented from opening, so I tried reinstalling, but before it can complete the installation I get the blue screen of death memory dump! Before reading the procedure I ran coolweb, kill2me, windows defender and windows malicious software tool. None of the programs found anything. I also perfomed a couple system restores, but both failed.

Should I continue with the cleaning procedure (combofix), or does anyone know how I can get malwarebytes and spybot to run?
 

Answer:Trying to follow malware removal procedure, but malware is preventing me?

Here's my MGtools log, it was the only program that worked.
 

4 more replies
Relevance 54.53%

Hi. I am trying to diagnose a problematic laptop for a friend. I don't know the details of what happened to cause the problems. The main problem I can detect is that the laptop is EXTREMELY slow. It seems like anything I try has a delayed response (even a simple mouse click). I followed the Malware Removal Guide, but was only able to run two of the five suggested tools as follows:

1) SUPERAntiSpyware - I ran this after manually updating the definition files on the version already installed and the scan found nothing.

2) Malwarebytes Anti-Malware - I was not able to update the definition files for the current version installed. After several attempts to uninstall this (via the Control Panel), I was able to do it via CCleaner. However, I was not able to re-install a more recent version due to problems with the Windows Installer service. After uninstalling an outdated version of Java (Update 14) via the Control Panel, I have not been able to install/uninstall any more programs.

2) combofix.exe - not compatible with 64-bit OS

3) RootRepeal - did not run on 64-bit OS

4) MGtools - did run; kept getting errors, but continued to completion

Attached are the SUPERAntiSpyware and MGTools logs:
 

Answer:Possible Malware preventing me from running malware removal tools

I am not seeing any malware in those logs. I do not know why MalwareBytes would not run, are you able to run it in safe mode? How does the PC behave when you use safe mode?

More than likely I think I will be sending you off to the software forum.

We can do this:

Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:



O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - (no file)
O2 - BHO: (no name) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - (no file)
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - (no file)
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - (no file)
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsM... Read more

5 more replies
Relevance 54.53%

hey guys,

Do any of you guys know why my desktop machine will not install the 7 microsoft windows security updates:

Security Update for Windows Vista (KB980232)
Installation date: ‎15/‎04/‎2010 18:51
Installation status: Failed
Error details: Code 80071AA7

Security Update for Windows Vista (KB979309)
Installation date: ‎16/‎04/‎2010 11:23
Installation status: Failed
Error details: Code 80070643

Security Update for Windows Vista (KB980232)
Installation date: ‎15/‎04/‎2010 18:51
Installation status: Failed
Error details: Code 80071AA7
Update type: Important

Security Update for Windows Vista (KB979683)
Installation date: ‎15/‎04/‎2010 18:51
installation status: Failed
Error details: Code 80071AA7
Update type: Important

Security Update for Windows Vista (KB978601)
Installation date: ‎16/‎04/‎2010 11:23
Installation status: Failed
Error details: Code 80070643
Update type: Important

Security Update for Windows Vista (KB979683)
Installation date: ‎15/‎04/‎2010 11:38
Installation status: Failed
Error details: Code 80071AA7
Update type: Important

Update for Windows Mail Junk E-mail Filter [April 2010] (KB905866)
Installation date: ‎15/‎04/‎2010 18:50
Installation status: Failed
Error details: Code 80071AA7
Update type: Recommended

It has been failing to install all these updates, how do I come about installin... Read more

More replies
Relevance 54.53%

Hey

Vista wont let me update important security files and is not letting me download from the site myself. Instead it keeps redirecting to to google or otherwise saying there was no response from the server and or Microsoft.com, however I can still download from CNET just as usual. Also Google keeps redirecting me to fasttools.biz. Anyhelp would be MOST welcome

Answer:Vista wont let me download security updates

Hello see if you can run and post a log from MBAMCNET downloadhttp://download.cnet.com/windows/security-...tent;contentNavNext run MBAM:Please download Malwarebytes Anti-Malware (v1.35) and save it to your desktop.alternate download link 1alternate download link 2If you have a previous version of MBAM, remove it via Add/Remove Programs and download a fresh copy.Make sure you are connected to the Internet.Double-click on mbam-setup.exe to install the application.When the installation begins, follow the prompts and do not make any changes to default settings.When installation has finished, make sure you leave both of these checked:Update Malwarebytes' Anti-MalwareLaunch Malwarebytes' Anti-MalwareThen click Finish.MBAM will automatically start and you will be asked to update the program before performing a scan.If an update is found, the program will automatically update itself.Press the OK button to close that box and continue.If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install. Alternatively, you can update through MBAM's interface from a clean computer, copy the definitions (rules.ref) located in C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware from that system to a usb stick or CD and then copy it to the infected machine.On the Scanner tab:Make sure the "Perform Quick Scan" option is selected.Then click on the Scan button.If asked to select... Read more

28 more replies
Relevance 54.53%

Windows XP Machine infected with XP Internet Security malware software.... removed using Malwarebytes and Spybot, but now have red sheild in bottom tray saying XP AutoUpdates are turned off, when in fact they are turned on.Also Microsoft Security Essentials will not update either.I presume part of the malware is still left over and stopping these things working.Please find logs below and attached..DDS (Ver_11-03-05.01) - NTFSx86 Run by Peter Brand at 21:23:44.95 on 12/05/2011Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_24Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.1023.257 [GMT 1:00].AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}FW: ZoneAlarm Firewall *Enabled* .============== Running Processes ===============.C:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exeC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupsvchost.exesvchost.exeC:\WINDOWS\system32\ZoneLabs\vsmon.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exesvchost.exeC:\Program Files\Common Files\Apple\Mobile Device S... Read more

Answer:Removed XP Internet Security Malware... now MSE and XP Auto Updates dont work...logs inside.

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Please take note:If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available.If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply'... Read more

3 more replies
Relevance 54.12%

Dear All,
 
For a  long time I was trying to protect the home PCs W Vista 7 system w a few tools available but seems to be that I failed miserably.
 
Now Windows does not downloads updates and Sec Essentials (working better than AVG before) does not update as it used to.
 
i tried to look at the connections and the programs themselves but did not see any results. It seems to be that quick scan did not found anything (Sec Essentials) and I am not aware of any running processes that would be suspicious.
 
I would need some advice how to scan and find the culprit (have some former malware removers from a run 3 yrs before but dont know whether I will succeed this time.)
 
All help would be appreciated.

More replies
Relevance 54.12%

Hello guys,

Since 16 April 2011 all of my Windows security updates are failing to configure. All seems to be going well at the installation stage, but when required to restart I'm given the message "Updates failed to configure. Reverting changes". I have trawled the internet for solutions but nothing seems to work - I would really appreciate it if somebody here could help me out.

Operating system: Vista Home Basic Version 6 Service Pack 1

If any additional information is required please let me know! Thanks a lot to anyone who can help.

Answer:Windows Vista Security Updates Failing to Configure

Hi .

Does that mean that you have tried to download/install SP2? Is SP2 one of the failed installs?

Louis

3 more replies
Relevance 53.71%

I'm having startup issues with a Windows 10 Build:
Cumulative update for Windows 10 ver. 1511
KB3192444. (I hope I copied it correctly).

Before this update is installed the problem doesn't exist, after it's installed it does.
I posted this issue here but have not gotten any help.
Because windows 10 automatically installs updates I needed to go into Group Policy Editor-Computer Configuration-Windows Components-Windows Update and set it to
"Notify for download and notify for install"

But, when I go back into settings for windows update advanced settings, the choose how updates are installed has remained with the same 2 options.

How can I be sure that Windows 10 does not install this update????
Does changing this setting in GPE work ok?

Any help will be appreciated,
James

Answer:Preventing Auto Updates

Hi, to hide (stop) a particular update see:
Windows Updates - Hide or Show in Windows 10 - Windows 10 Forums

1 more replies
Relevance 53.71%

I'm having startup issues with a Windows 10 Build:
Cumulative update for Windows 10 ver. 1511
KB3192444. (I hope I copied it correctly).

Before this update is installed the problem doesn't exist, after it's installed it does.
I posted this issue here but have not gotten any help.
Because windows 10 automatically installs updates I needed to go into Group Policy Editor-Computer Configuration-Windows Components-Windows Update and set it to
"Notify for download and notify for install"

But, when I go back into settings for windows update advanced settings, the choose how updates are installed has remained with the same 2 options.

How can I be sure that Windows 10 does not install this update????
Does changing this setting in GPE work ok?

Any help will be appreciated,
James

Answer:Preventing Auto Updates

Hi, to hide (stop) a particular update see:
Windows Updates - Hide or Show in Windows 10 - Windows 10 Forums

3 more replies
Relevance 53.71%

I've somehow got some malware/ trojans/ viruses, whatever you may call them, and I'm unable to update my spyware/ anti-virus software. I currently have Spybot, Zonealarm pro, ad-aware pro and a recent download of the free avg anti virus...all of which are outdated. Can anybody please assist in the removal of these things causing the problems?

Thank you!
 

Answer:virus preventing updates

Welcome! to MajorGeeks.com!

Please follow the instructions in the READ & RUN ME FIRST link given further down and attach the requested logs when you finish these instructions.

If you have problems where no tools seem to run, please try following the steps given in the below and then continue on no matter what you find. You only need to try the TDSSserv steps if having problems getting scans in the Read & Run Me First.
TDSSserv Non-Plug & Play Driver Disable

If something does not run, write down the info to explain to us later but keep on going.
Do not assume that because one step does not work that they all will not.
READ & RUN ME FIRST. Malware Removal Guide


Helpful Notes:


If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in Safe Mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware, Malwarebytes and Spybot ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
To avoid additional delay i... Read more

3 more replies
Relevance 53.71%

Hi,
Right now i have about 56 updates pending, most of them office updates, and a couple of Windows updates.
I've discovered that a update is preventing my PC from sleeping, as when i do a system restore back to before i updated my PC will sleep, and then instaill them again my PC wont sleep.

I'm assuming its a windows update rather than an office update causing this problem.
Is there a better way to see which update is causing the problem rather than instailling each update, one by one?

More replies
Relevance 53.71%

Hello
 
I recently did a fresh install of Windows 7 on my PC. I guess I forgot to install any AV until I was prompted to by Windows Update, which if I remember correctly, did install OK originally. Normally I would have installed AVG and MB, but I've had quite a few PC problems recently and so was a little haphazard, I can't remember whether I actually got MB installed prior to these problems or after. Anyhow, recently I started up my PC and upon starting got a message that MSE couldn't start because of error occurring during initialization, Error 0x80073b01.
 
I found a similar topic here and have run a few of the programs, most optimistically Hitman Pro, which found a couple trojans and malware items and deleted them. But I still have this issue with MSE that it can't load, can't be reinstalled and can't be uninstalled.
 
Other symptoms: Malware Bytes icon on my desktop went from being their logo to a generic .lnk/shortcut image and wouldn't load. I managed to reinstall it after using safe mode and using mbam clean to get rid of the mbamext.dll that wouldn't delete normally. I now have MBAM on my desktop and I can run it, but it won't get the latest updates (it appears to download them, but then says the db is missing or corrupt) and it won't let me do a scan.
 
I have been trying to copy some files to an external HD, but the ones with Security in their name can't be moved.
 
It seems like something is definitely running in the background ... Read more

Answer:Malware preventing MSE and Malware Bytes running?

Try running in Safe Mode and doing a full system scan with your antivirus.  You could also try a System Restore.  

2 more replies
Relevance 53.3%

There was an Office vulnerability that was fixed with the April patch Tuesday in an Office update, but we've had trouble making sure all users have the updated Office patch as N-Central(our patch management tool) doesn't always list what build/patch Office
is currently running accurately.

We do know all our PCs have the April/May security updates. Is the Office Update combined into the big monthly one?

More replies
Relevance 53.3%

Re: Security Update for Windows Vista for x64-based Systems (KB977816) &

(KB978338)

Hello,

On 4.15.2010, I had a total of 9 Security Update for Windows Vista for x64-based Systems which were successfully installed. However, 2 of those successful 9 had an equivalent of 5 failed installation each, displayed in the updated history listing. Will the failed 5 make the one successful installation null or void?. So far, I did not see those 2 mentioned updates again to be downloaded.

Should I ignore it and treat it as ok?. If not, how do I search for those 2 mentioned updates. . . or should I wait till it shows up again?

Thank you for your assistance

NBB

Below is the attachment shown in the update history listing:

Security Update for Windows Vista for x64-based Systems (KB977816)
Installation date: ‎4/‎15/‎2010 12:51 PM
Installation status: Successful
Update type: Important
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system.
More information:
Microsoft Security Bulletin MS10-026 - Critical: Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (977816)
Help and Support:
Microsoft Support

Security Update for Windows Vista for x64-based Systems (KB977816)
Installation date: ‎4/‎... Read more

Answer:Windows Vista for x64-based Systems' Security updates - 04.15.2010

Hello,

The idea is that if one or two updates fail, the rest will still be fine. The ones that report complete success are fine. The ones that have failed, if the most recent message is success, then they are installed fine. By not coming back, it looks like they have all succeeded at some point, so it looks like no problems here.

Richard

1 more replies
Relevance 53.3%

i keep getting this message. i have already disabled automatic updates through group policy editor.

Answer:updates preventing my computer from shutting down

With this batch script you can automatically close apps not responding at shutdown in windows. Please execute the batch script as a administrator.

1 more replies
Relevance 53.3%

hello everyone,
my sons laptop has acquired a virus. (an acer aspire 5100 on xp)basically it is preventing any windows updates & any security scans. It is clever; for example if i attempt trend micro house call i get blue screen & the pc shuts down immediately. When i reboot it refers to fat32 as follows:
checking file system on c the type of the file system is fat32.

i have current subscription to trend micro internet security for three pc's but can't download due to the virus.
i am not a "power user" but i am capable of starting the the laptop in safe mode & carrying out basic tasks.(but it appears to be stopping that unless i'm doing something wrong with the "f8" key)

how serious is this & is there the idiots guide to a resolution?
thanks for looking bob (uk)
 

More replies
Relevance 53.3%

I have a Compaq desktop at home running Windows 7 Home Premium. My girlfriend has a user account on it that she uses from time to time. She sometimes needs to restart the computer. When she tries to do that, many times the shut down screen shows "Install updates and Restart" as the default action. Is there a way to eliminate that option for her account or at least make Restart or Shutdown, without installing updates, the default choice? She is careful about changing the option, but I am concerned she might slip up one time.

I have no desire to upgrade to Windows 10 at this time (Yes, I know the free upgrade offer is supposed to end at the end of June). On my account, I manually go through the list of new available updates and remove any that are related to preparing the computer for Windows 10 or actually downloading and installing it.
 

More replies
Relevance 53.3%

What can I do to prevent updates from preventing me from using my computer?
Apparently whoever designed Windows update never considered the possibility of people using small SSD drives that only have a fraction of the space required to run applications. Everything worked under Windows 7, although I did have to do some tweaking to get it to install apps directly to drive E: (my multi-terabyte hard drive). After installing Windows Update, I had to do the same registry tweak to make it install programs on drive E:, and it worked fine the first six weeks or so, but then it started routinely breaking one or two of my applications with each update. The problem was initially tedious to fix, but I eventually got everything working. However, I was not successful at getting Windows to comply with running my Chrome browser from E: I finally relented, and moved as many of the commonly used apps to drive C: (the SSD) and consequently had to set the cache size smaller. Everything was fine for another month or so.
However, beginning sometime in November, Windows updates started failing. It schedules an update, runs the update, reboots my computer, says the update failed, and reboots the computer again, uninstalled the update, and then it works. This was an annoyance, but since it only happened once a month, I put up with it.
Recently however, Windows has started retrying updates every few days, and doesn't bother warning me in advance or asking my permission. It just unceremoniously shuts... Read more

Answer:What can I do to prevent updates from preventing me from using my computer?

In updates, there is a setting to schedule restart, usually 3am. Can you check that setting is enabled?

2 more replies
Relevance 52.89%

Hi you guys. This is my first time posting on a tech support forum, so please forgive any unintentional etiquette breaches. I've had what I understand is a common malware issue with a vista security imposter. I've run rkill and MalwareBytes, which helps for a little, but the problem returns. I tried to follow some more complicated advice given to another poster on this forum, but didn't see any improvement (I expect because the advice was specific to that person's situation and the logs they posted.)
I'm pasting TGS SysInfo results and hijackthis log below.
Thanks so much for any help you can give me!

Tech Support Guy System Info Utility version 1.0.0.1
OS Version: Microsoft Windows Vista Home Premium , Service Pack 2, 64 bit
Processor: Intel(R) Pentium(R) Dual CPU T3400 @ 2.16GHz, Intel64 Family 6 Model 15 Stepping 13
Processor Count: 2
RAM: 3998 Mb
Graphics Card: Mobile Intel(R) 4 Series Express Chipset Family, 1807 Mb
Hard Drives: C: Total - 225939 MB, Free - 121242 MB; D: Total - 12531 MB, Free - 2008 MB;
Motherboard: Wistron, 3612, 09.50, 2CE9121B5Q
Antivirus: McAfee VirusScan Enterprise, Updated: Yes, On-Demand Scanner: Enabled
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:44:07 AM, on 6/14/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19048)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Hew... Read more

Answer:Vista security malware

15 more replies
Relevance 52.89%

Hi everybody.
 
As we all know, Windows Vista is no longer supported by Microsoft in any way, shape or form. This means there will be no more updates for it. There is some good news, though. Due to Windows Vista and Windows Server 2008 sharing the same codebase, it is possible to install WS2008 security updates on Vista. This way you might be able to receive security updates until January 2020.
 
In this thread, I will compile a list of monthly updates for WS2008, and provide feedback on how the installation process went on a virtual machine running Win Vista x64. If you're interested and want to take this opportunity, be my guest, though be advised that while the updates will most likely install successfully, you're still doing this at your own risk.
 
 
 
Please note that if you are having problems with Windows Update taking hours or days to check for updates, and/or consuming your CPU, please check this thread.
 
So without further ado, this is a list of WS 2008 updates for the month of May 2017 that I attempted to install on Win Vista. In general I've provided Microsoft Update Catalog links which allow you to choose either the 32 bit or 64 bit version, however, for .Net installers, I've provided direct download links separately to avoid Microsoft's stupid and confusing bundling of updates, which lumps updates with different KB numbers together. You will need to download them and install manually, as Windows Update will NOT find them. Vista is... Read more

Answer:Security updates for Vista after end of support - Windows Server 2008 patches

Very nice of you to do this for us, Sardoc! I'm waiting for other Vista owners to chime in here before I take the plunge. In the meantime, please update us on any changes in your system's performance as you move along with this, good or bad. Thank you!

more replies
Relevance 52.89%

I have a new Dell Dimension Desktop that came with Windows Vista Home basic. At first everything was fine, but now it is running EXTREMELY slowly. I thought maybe it could be infected with a virus or something, so I ran a scan with Norton security. The scan came back and didn't find anything, not even one cookie, so I know it didn't scan properly. Then a thing came up and said Norton needed to download updates, so I clicked OK to get the updates. However, my computer will NOT download them! The connection either times out or the updates get to a certain point, about 65%, and then just never finish. Why can't I download the updates? Why is Vista so slow? Its driving me CRAZY!!!

Answer:Extremely Slow Operation With Vista. Also, Will Not Download Updates For My Norton Security

Hello!

Sorry to hear about that. I work for Tier 3 at T-Mobile, and we handle all the data aspects of the company. 80% of our business is working with laptops/desktops and a lot of calls coming in are on Vista. What I, and my co-workers have personally noticed is that Windows Vista Home Basic, is crap. That's the clean, unfiltered truth. I personally have Home Premium, and I've had my fair share of problems with it, but I can just imagine the thousands of frustrated people with Basic. So, I highly recommend downgrading (in my opinion upgrading) to XP Pro. If that's not an option, upgrade to Premium. If that's not an option you can look at all the different settings to see if you can smooth things up a bit.

First, check Start - then type in MSCONFIG in the search box. Then, go to the services tab. Click on the box listed "hide all microsoft services". Then, disable all. This will disable all services from running besides microsofts that are required to run your comp. You can browse through the list for spyware and anti-virus that you want to run. Then, go to the startup tab and disable all there, and again, go through the list to see if theres anything specific you really want/need to startup when your comp starts up. Then click ok, and restart. This will make it so your computer doesn't load unneccasary programs at startup that can make your computer lag. I believe vista automatically has defrag set up to do it in the background, but just in case you can do i... Read more

2 more replies
Relevance 52.89%

GM!

I came in this morning and my computer was infected with the Vista Home Security virus. I did not have this problem on Friday and I do not know if my son tried to download anything over the weekend. But now I'm getting various pop-ups from the program and cannot disable it at all. I aslo noticed that I was not able to perform a windows update, even though my system is telling me I need to. When I go to update, it goes through the process but never completes the updates and does not give an error message. The system shows that I still have outstanding updates to add. Thank you so much for your assistance.

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Audrey at 9:24:33.12 on Mon 05/09/2011
Internet Explorer: 8.0.6001.19048
Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.1.1033.18.2036.981 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSys... Read more

Answer:Infected with Vista Home Security Virus & cannot perform windows updates

Hello AudreyMM ! Welcome to BleepingComputer Forums! My name is Georgi and and I will be helping you with your computer problems. Before we begin, please note the following:I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.The logs can take some time to research, so please be patient with me.Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.Instructions that I give are for your system only!Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Please perform all steps in the order received. If you can't understand something don't hesitate to ask.Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions. Please download http://www.winhelponline.com/fileasso/exefix_vista.zip'>the following file to your desktop.To unzip the file Right click on it and select Extract files.Double click on the .reg file you unzipped.Confirm that you want to add the key. Try to download the already renamed RKill by Grinler from one of the 3 links below and save it to your desktop.WiNlOgOn.exe
uSeRiNiT.exe
eXplorer.exe
Before we begin, you should disable your anti-malware softwares you have install... Read more

13 more replies
Relevance 52.48%

Hi,
Since an automatic update on my computer, my computer will not access the internet. I have tried to resart the computer to a previous point pre-updates but now it will longer do this either. So i am a stuck. Can you help?

Thanks

Answer:Automatic updates now preventing access to internet

Quote:





Originally Posted by duncan hill


Hi,
Since an automatic update on my computer, my computer will not access the internet. I have tried to resart the computer to a previous point pre-updates but now it will longer do this either. So i am a stuck. Can you help?

Thanks




I have a similar problem. Bun not from automatic updates. I updated Adobe reader(it says "Install security update). Since then It appeared in system Tray an yellow triangle with an exclamtion mark on it. If I click on it, it disappears, but my network connection has stopped working. It connects normaly, but the computer works like it would not be connected to the Internet. I unistaled the update, but the problem reappeard after 2-3 days. Now it looks that it is all OK, but I do not know what am I suposed to do.

7 more replies
Relevance 52.48%

I have a paid version of AVG Internet Security 2012 which commenced in August 2012. I've had paid versions in the previous two years and until the last two months have had no problems.
In the past few days when I switch on my PC (Windows XP with Mozilla Firefox browser, wired connection with BT) the automatic AVG update will not proceed, nor will a manual attempt.
Within a few minutes of switching on the following Windows warning box appears on the screen:
'The software you are installing for this hardware - Non-Plug and Plug Drivers - has not passed the Windows Logo testing to verify its compatibility with Windows XP. Continuation of installation of this software may impair or destabilise the correct operation of of your system either immediately or in the future.'
Two options are then given: Continue anyway or Stop installation.
The updates waiting to be downloaded are all version 2238 of the the following: Alert Manager; Anti Rootkit Driver; Anti Spam Component; Scanning Engine; Set Up Component; Kernel components; E-mail Scanner; Firewall Component; User Interface Component; Identity Protection; Language Files (English); Online Shield (Settings); Resident Shield Scanner; Link Scanner HTTP Redirector; Systems Tools Component; TDI Component; Pc Analyzer; Update Component.
If I click on 'Continue anyway' the system attempts to download the updates again but aborts very quickly and the same warning notice appears. If I do nothing the warning notice remains but my AVG page sa... Read more

Answer:Windows preventing paid AVG updates download

I'd recommend putting this to AVG in the form of an email. Even copy and paste what you posted here.

2 more replies
Relevance 52.48%

I was going to download Norton 2009 antivirus, but the setup said that the computer needed and upgrade. I proceeded to the windows update to check. Sure enough I needed windows service pack 2. I tried to download this but got the error 80072efd. Its not the firewall, but i also realized that I cannot download it directly from the windows update website. I am really confused and need this antivirus cause my computer is infected at this time. All help will be appreciated.

Answer:error 80072efd is preventing me fom downloading updates

hi and welcome to TSF the first thing you should do is go here
http://www.techsupportforum.com/f50/...lp-305963.html and get help for your infection and then see about antivirus i would not choose norton or mcafee as they can cause issues with vista

3 more replies
Relevance 52.48%

I have this Vista Security Virus that has disabled Ad-aware and Malware Bites. It keeps poping up sayingmy computer is infected with all these security breeches and will not allow windows internet explorer run. Its has put a Vista Security icon in my tray and it wants me to register it to get rid of all my so called viruses.Help pleaseI am running VistaDDS (Ver_10-03-17.01) - NTFSx86 Run by Mark at 3:43:22.79 on Thu 04/22/2010Internet Explorer: 8.0.6001.18904Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.1.1033.18.2037.745 [GMT -4:00]AV: Symantec AntiVirus *On-access scanning enabled* (Updated) {FB06448E-52B8-493A-90F3-E43226D3305C}SP: Spybot - Search and Destroy *enabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}SP: Symantec AntiVirus *enabled* (Updated) {6C85A515-B91D-4D2B-AF18-40984A4A8493}SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}============== Running Processes ===============C:\Windows\system32\wininit.exeC:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k rpcssC:\Windows\System32\svchost.exe -k secsvcsC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Win... Read more

Answer:Vista Security Pop-up virus/malware

Hi,Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.Please subscribe to this topic, if you haven't already. You can subscribe by clicking the Options box to the right of your topic title and selecting Track This Topic.Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.Please reply to this post so I know you are there.The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.Once I receive a reply then I will return with your first instructions.Thanks

2 more replies
Relevance 52.48%

Hi,

My laptop became infected with a nasty bug that kept popping up with virus alerts called "Vista Security Tool" (I think!). I had numerous virus scan windows open, and the task bar kept throwing up pop-up captions from the bottom right hand corner (they referred to the computer being infected and vulnerable to identity theft etc).

I ran through the steps in the Read & Run first thread. Everything went as described apart from RootRepeal, which I tried a couple of times to no avail. The last time I tried it, it stalled, and I had to shut down the computer. I did not want to try it again incase I was doing damage. I thus have all the logs apart from the RootRepeal log. Please advise if I need to go back and try this again.

After performing these steps, I no longer have any pop-ups, and the problem seems to be cleared. However, I would greatly appreciate it if someone could have a look at the logs I have posted as I would like to be sure that I've cleared the problem completely.

I would like to thank everyone involved at MajorGeeks for their time and selfless efforts to help. Also, would it be advisable to do an overhaul of internet passwords now?

Thanks and Best Regards,
Rick
 

Answer:Vista Security Tool Malware

We need to use ComboFix

Make sure that combofix.exe that you downloaded while doing the READ & RUN ME is on your Desktop but Do not run it!
If it is not on your Desktop, the below will not work.

Also make sure you have shut down all protection software (antivirus, antispyware...etc) or they may get in the way of allowing ComboFix to run properly.
If ComboFix tells you it needs to update to a new version, make sure you allow it to update.
Open Notepad and copy/paste the text in the below quote box. Ensure you scroll down to select ALL the lines:

Code:


KILLALL::

File::
c:\users\Moira\AppData\Local\2782660650.dll
C:\Users\Moira\AppData\Local\0CMR8yFmkXh
C:\Users\Moira\AppData\Roaming\Microsoft\Windows\Templates\0CMR8yFmkXh
C:\Users\Moira\AppData\Roaming\Microsoft\Windows\Templates\759680035
C:\ProgramData\0CMR8yFmkXh
C:\ProgramData\759680035
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

Folder::
C:\Users\Moira\AppData\Roaming\lowsec

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

Registry::
[-HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
[-HKEY_LOCAL_MACH... Read more

7 more replies
Relevance 52.48%

Well my daughter called last week and told me she had a virus that wouldn't allow her to do anything. After getting her computer and doing some research, I discovered it was the Vista Security Malware Rougue. I ran the fixes and thought I had it gone. I gave her computer back and the next day she called again. Something is back but not quite as vicious.

I turned her computer on and got a Symantec Auto-protect this time... It was av.exe infected with packed.mystic!gen4 virus. Symantec quarentined this but I was unable to run any exe files. Everytime I tried to run HiJackThis.exe, it asked me to choose a program to run the .exe with. Almost like the .exe files no longer were registered to operate with any programs.

So, I ran the Vista Security .reg file again and reinstalled the Malwarebytes software. After running the .reg fix, the computer was able to run .exe files again. This tells me that the malware is not fully removed so I need some help in determining where it is still residing.

Attached is the HiJackThis file after the .reg fix and Malwarebytes scan. Nothing was found on teh malwarebytes scan.

Thanks for the help. Her finals are next week and she could really use her computer back ASAP......

Fred
 

Answer:Vista Security Malware...Arghhhhh

16 more replies
Relevance 52.48%

Hi,

I owe a Dell computer with Windows Vista Home Basic 32-bit SP2. I've removed Vista Security 2011 twice already, only to have it come back again this time. What I used were Microsoft Security Essentials and Malwarebytes. I also experimented with the registry last time I had the malware by following instructions online. Currently, I can't open Malwarebytes and Microsoft Security Essentials did not detect anything. This happened last time too, even in safety mode, but somehow, after several trials, they both worked last time.

Please let me know what my next step should be. Thanks!

-Jess

Update: I was able to access Malwarebytes in Safe Mode with Command Prompt so I should be able to remove it just like the last two time. Please let me know what I should do to prevent it from coming back. Thanks!

Answer:Vista Security 2011 malware

Hello,I have a suspicion that you never completely got rid of it - just the symptoms. Please follow the instructions in ==>This Guide<==. If you cannot complete a step, skip it and continue.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues and what you have done to resolve them.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Orange Blossom

1 more replies
Relevance 52.48%

Hi there, I really need help with this. I tried using mbam, spyware doctor and a couple other antivirus/spyware/malware programs and I still have issues. Upon turning on my computer, I get a pop up saying that Windows Defender has an error: 0x80070006. Adobe is not updating and neither is Windows. Soon after I installed Spyware Doctor, I've been getting an Interactive Services pop up that has something to do with system32\SHELL32.dll and that's concerned with it not being able to open TFUN.exe . Any help would be greatly appreciated, thank you in advance.
Also, I had to zip the Gmer log file, I hope that's not a big deal.
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Icekibby at 19:04:08.80 on Fri 05/06/2011
Internet Explorer: 8.0.6001.19048 BrowserJavaVersion: 1.6.0_21
Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.1.1033.18.1916.546 [GMT -4:00]
.
AV: Spyware Doctor with AntiVirus *Enabled/Updated* {2F668A56-D5E0-2DF1-A0AE-CB1284F42AB2}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spyware Doctor with AntiVirus *Disabled/Updated* {94076BB2-F3DA-227F-9A1E-F060FF73600F}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.e... Read more

Answer:Vista Home Security Malware Help!

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Please take note:If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available.If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply'... Read more

2 more replies
Relevance 52.48%

I know we are not supposed to post about limewire but this isn't a question about limewire it's somethint that deals with security and malware. I have read that there is a malware that could change your save folder on limewire to add personal files from your computer to your limewire share folder for the whole network to view and download. Is this true or does this exist. Wouldnt the hacker only get Access instead of sharing it with the world and is it likely that a malware virus could change your save folder to make all files available for sharing. I read this on a couple different articles and just wanted to see how accurate it was. Please don't Delete this post I'm just asking about security dealing with limewire notjing illegal about it.
 

Answer:Security problem malware on vista

People over at 'Gnutella Forum' maybe better able to help with your problem.

 

1 more replies
Relevance 52.48%

the 'Vista Total Security' malware has basically debilitated my sisters laptop.
Very little, if anything at all, will open. While Rkill will run, I get this message before it closes --

" sed.exe: can't read c:\users\anna\appdata\local\temp\rks1.log: no such file or directory "

and after that it doesn't terminate any of the malware keeping me from using Malware Bytes and Superantispyware.
The same goes for trying it in safemode....

Any help would be terrific !!

Thanks.

Answer:Vista total security malware

Hi,Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.

Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

Please reply to this post so I know you are there.The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.Once I receive a reply then I will return with your first instructions.Thanks

2 more replies
Relevance 52.07%

I have 93 updates for XP & Office 2003 which I cannot install. I have stopped and re-started the update service & tried everything else I can find on the web.

I would be very grateful for any help anyone can provide!

Answer:A problem on your computer is preventing updates from being downloaded or installed

Is your windows update allowed to install updates automatically? Check your settings in the security center. I hope you are updating via a broad band connection. Also does windows download the updates and stalls have way thru the installation? During the install of the downloads, Windows will ask you to accept certain agreements. You may not be seeing these and think Windows has stopped installing. Windows will not move forward unless you respond to these agreement. When downloading be sure all the downloads are complete and upon the installation part, Minimize your screen to see these agreements. IE7 download and install is one of the biggest culprites. It hides behind your Download and install screen.
Hope this helps.

5 more replies
Relevance 52.07%

For some reason, whenever windows 8.1 updates, internet explorer stops working. Every time I try to get on the internet, I just keep getting a message that 'this page cannot be displayed'. Skype still works, so the problem seems to be internet explorer itself.

I have decided to switch to google chrome to fix the problem, but I can't do so without getting on the internet.

I would like to restore the computer to a point in which it worked, and I have one restore point which I'm certain will work, but the problem is, immediately after restoring, windows automatically updates, which kind of undermines the entire purpose of the restore. I have tried changing the update settings so it will restore without updating, but as soon as the system restores, my changes are undone and windows then proceeds with the stupid updates.

I just want to get on the internet somehow to install google chrome! (and no, I can't just copy and paste from the computer I'm currently on because this one has windows 7).

Any ideas?

Thanks,
smile puppy

Answer:Windows Updates Preventing Internet Explorer from Running!

Unplug your router, then do your system restore. You then have as much time as you need to configure Windows Update not to auto check.

2 more replies
Relevance 52.07%

Hi

With Windows 8.1 Update, how do I prevent all users that the notification of any updates to the apps by Microsoft Store will never be displayed?

Thanks

Bye

Answer:Preventing the notification of any updates to the apps by Microsoft Store

This should cover it: Tech Blog :: Enable/Disable App Notifications In Windows 8

1 more replies
Relevance 52.07%

I am not able to install the windows updates>>used Express and got like 72 updates required. dloaded all but NONE installed.. got this message>>

A problem on your computer is preventing updates from being downloaded or installed

any help on this? this is after a windows XP install/repair

thanks, bo bo bolinski
 

Answer:A problem on your computer is preventing updates from being downloaded or installed

Re: A problem on your computer is preventing updates from being downloaded or install

no help on this? I am suprised! do I have to do the HJT routine or does someone have an easier solution??

thnx, bo bo bolinski
 

3 more replies
Relevance 51.66%

Hi all,
One of my machines is infected with this bug. I followed the instructions on this site as to removal, but was unable to download the fixexe.reg file. The download window just sits there saying that it's "Getting File Information". I waited about an hour before giving up; is there another way to obtain this file?

BTW, running MalwareBytes (full scan) did not remove the bug. I assume this is because I was unable to obtain and install the fixexe.reg file. I did have to install the MalwareBytes program by means of a thumb drive. All help greatly appreciated!

Gary

Answer:Removing Vista Internet Security malware

I will ask and see if there is an alternate source or a work around

13 more replies
Relevance 51.66%

Thanks in advance for all of your help. I am posting from another pc because the infected system will not launch firefox. The malware seems to be called edy.exe and launches at start up. Even after I kill the process from task manager it launches whenever I attempt to open malwarebytes setup, even after I renamed the .exe installer file.

.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by Lucas at 17:18:11.85 on Thu 03/31/2011
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_24
Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.1.1033.18.4062.2602 [GMT -4:00]
.
AV: Norton Internet Security *Disabled/Outdated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Disabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
FW: Norton Internet Security *Disabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepo... Read more

Answer:Malware edy.exe - Fake Vista Security Popups

Hello , And to the Bleeping Computer Malware Removal Forum. My name is Elise and I'll be glad to help you with your computer problems.I will be working on your malware issues, this may or may not solve other issues you may have with your machine.Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.The cleaning process is not instant. Logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen. Please reply using the Add/Reply button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, send me or a moderator a personal message with the address of the thread or feel free to create a new one.You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.-----------------------------------------------------------If you have since resolved the original problem you were having, we would appreciate you... Read more

13 more replies
Relevance 51.66%

Hi! I'm running windows 7 and I have the same problem as this guy has:

http://forums.techguy.org/virus-other-malware-removal/983966-wpn-exe-file-posing-vista.html

It's malware masquerading as some kind of anti virus software that jumps up and starts doing a false scan and then tries to make me buy it. It pops up whenever I open an IE/Chrome window and attempts to hijack my browsing. I think it's also somehow hijack spybot search and destroy because I can't get that to scan at the moment. Nor can I get hijack this to produce a log (it just produces a blank notepad file and then 'vista home security' pops up and starts scanning again).

I can only use IE/Chrome when I terminate the process in the task manager (bal.exe - description is 'steam'.)

Being that it has pretty much crippled every possible form of defence my computer has I really would appreciate some help getting rid of this awful thing!

Thank you!
 

Answer:Vista Home Security malware removal

9 more replies
Relevance 51.66%

Hey there, first time I have encountered this malware. I could not access the internet on the infected computer, hence used my families laptop to download ComboFix (one of the first steps taken in a similar vista security thread here), transferred the programme to the infected computer, renamed it to username123.exe and ran it to great success (so i think.. xD) I have copied the log file over to the laptop (since i noticed the steps did not end at combofix for this other user).

If there is anything else I must do to ensure the safety of my computer please let me know! I am very foreign as far as malware/viruses are concerned (im certain should my pc ever meet me in the said afterlife...) and would love your help on securing it.

Cheers Andrew.

ComboFix 11-05-24.06 - Andrew 05/26/2011 3:42.1.2 - x86
Microsoft Windows Vista Home Premium 6.0.6002.2.1252.1.1033.18.2046.1118 [GMT 12:00]
Running from: c:\users\Andrew\Desktop\username123.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\progra~1\COMMON~1\UIE\DIEM.dll
c:\users\Andrew\AppData\Local\Temp\MS2011Helper.DLL
c:\users\Andrew\AppData\Local\yjw.exe
c:\users\Andrew\AppData\Roaming\inst.exe
.
.
((((((((((((((((((((((((( Files Created from 2011-04-25 to 2011-05-25 )))))))))))))))))))))))))))))))
.
.
2011-05-25 15:48 . 2011-05-25 15... Read more

More replies
Relevance 51.66%

Your excellent forum has been invaluable for me for years, but now I must ask for your help directly. I have been attempting to remove this malware from my mother's computer, and it appears I have made some progress following the Read Me steps, unfortunately I am unable to run combofix. It only goes to blue screen, then reboot. (Oh, it's 32 bit)

I should mention that I am not seeing the fake 'virus detected' scans anymore, but the random popups, redirects and lethargic performance continue.

Please see attached logs. I sooo appreciate any advice!
 

Answer:Malware Doctor/Vista Home Security - Please Help?

Welcome to MajorGeeks!

Please download TDSSKiller.exe and save it to your Desktop. <-Important!!!

Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
Vista/Windows 7 users right-click and select Run As Administrator.
If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123tdk.com).
If you do not see the file extension, please refer to: How to view hidden, system files & folders!

Click the Start Scan button.
Allow the application to run if prompted by Windows or any security programs you have installed
Do not use the computer during the scan
It will start the scan and run rather quickly and will notify you of whether anything is found or not.
Follow the instructions to delete/quarantine if asks you what to do when if finds something.
Whether an infection is found or not, a log file should be created on your C: drive ( or whatever drive you boot from) in the root folder named something like TDSSKiller.2.1.1_27.12.2009_14.17.04_log.txt which is based on the program version # and date and time run. Please attach this log to your next reply. (See: HOW TO: Attach Items To Your Post )

Also attach the requested
RRlog.txt (from RootRepeal)
MGlogs.zip - normally it is C:\MGlogs.zip - only attach this log from MGtools.exe DO NOT attach any logs seen in the MGtools folder.

 

10 more replies
Relevance 51.66%

Its called 'Total Vista Security' and i never heard of it. When i log on to my pc, the security window pops up and acts like its scanning my pc and it says it finds a lot of infections but if i go to remove them it just tries to get me to buy the 'full' version.This thing keeps popping up on the side of my screen that says there is a security alert and if i try to block it, it brings up a page for me to register for a full version. Same thing when little bubbles pop up on the lower right hand corner saying my system is hijacked or tracking software found or something weird. i've tried running malware-bytes but it wont let me

Answer:Total Vista Security virus/malware?

Please refer here - > http://www.bleepingcomputer.com/virus-remo...irus-vista-2010 and post the results of your Malwarebytes log when complete.

1 more replies
Relevance 51.66%

I have pretty much the identical problem that the person in this thread does:

Vista Security 2011 virus exe files

None of my .exe files work, although I can still access the internet. I was able to run dds.scr and have the output (DDS.txt and attach.txt) but I can't compress the latter because I can't run winzip.exe.

Output from DDS.txt:

.
DDS (Ver_11-03-05.01) - NTFS_AMD64 NETWORK
Run by Tony at 7:59:07.54 on Sat 04/30/2011
Internet Explorer: 8.0.6001.19048
Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.1.1033.18.6134.4986 [GMT -4:00]
.
AV: Norton AntiVirus *Enabled/Outdated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton AntiVirus *Enabled/Outdated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Inte... Read more

Answer:I got nailed by Vista Security 2011 Malware

Hi Tony and welcome to TSF.

My name is Iain and I will be helping you clean your system.

You may wish to Subscribe to this thread (Thread Tools > Subscribe to this thread) so that you are notified when you receive a reply.

Please read these instructions carefully and then print out or copy this page to Notepad in order to assist you when carrying out the fix. You should not have any open browsers or live internet connections when you are following the procedures below.

Note that the fix may take several posts. Please continue to respond to my instructions until I confirm that your logs are clean. Remember that although your symptoms may vanish, this does NOT mean that your system is clean.

If there is anything you don't understand, please ask BEFORE proceeding with the fixes.

Please ensure that you follow the instructions in the order I have them listed.

Please do not install or uninstall any programmes, or run any other scanners or software, unless I specifically ask you to do so. Also please copy and paste logs into the thread, rather than add them as attachments.




Please download FixExe.reg to your desktop. Now double click FixExe.reg to run it.



Download Malwarebytes' Anti-Malware to your desktop.
Double-click mbam-setup.exe and follow the prompts to install the program.
At the end, be sure a checkmark is placed next to the following: Update Malwarebytes' Anti-Malware
Launch Malwarebytes' Anti-Malware

Then click Finish.
If an... Read more

19 more replies
Relevance 51.66%

Hi,

Just got infected with the above named 'software' from visiting another site.

First of it would not let me surf - kept running scans and offering to 'fix' them if I registered.

It also disabled Task Manager but got that back thanks to Spybot ( see below) ....

Now online via Safe Mode With Networking to post this.

Just run updated Spybot scan and it removed about a dozen items.

Have run HJT - Here is my logfile :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:15:32, on 14/02/2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Safe mode with network support

Running processes:
C:\Windows\Explorer.EXE
C:\Users\RSM123\AppData\Local\av.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://uk.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3D... Read more

Answer:Vista Internet Security 2010 Malware

Just ran Malwarebytes - numerous items found and deleted/

New HJT Scan :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:45:30, on 14/02/2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://uk.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (file missing)
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix ... Read more

2 more replies
Relevance 51.66%
Question: Preventing Malware

I am not sure the best place to post this. I am trying to find a secure method of moving files from home to office. Our office has a rule stating that you should not bring a thumb drive into the office from home without going through IT. This is to prevent infecting the work network. IT can run a Symantec scan on the USB device but is still not in favor of using the USB due to what might not be caught on a scan.

Any ideas of methods that IT might be willing to implement that allows the convenience of USB drives and the security that IT needs. I am in the position of greatly influencing this research if I had a direction to suggest. Of course IT would be researching in order to feel confortable. Thanks in advance. If there is a better forum for this question please advise.
 

Answer:Preventing Malware

There is not a lot that you can do to insure that any USB device is clean without running scans on them. Your IT department would have to insist that all employees install programs such as AutoEater on their home computers and scan them with something like USB Vaccine. But that would require faith that all employees took these measures.
 

2 more replies
Relevance 51.25%

Hello all!Firstly, thank you so much for running such a magnificent site with such detailed and easily understandable instructions. I direct everyone I know to this site once they become infected--you offer such useful tools and great suggestions. Anyway, onto my problem. I'm working on a friend's laptop that was infected with System Check. (Boo!) The computer is unable to connect to my wireless, nor his wireless at home and the Windows diagnostic tool is of no help in that area. So everything I'm downloading to run on his computer, (rkill, gmer.zip, etc.) is being downloaded on my computer and transferred via flashdrive. Everything is being run on this computer while it's in Safe Mode with Networking. After going through the steps per the removal guide for System Check, I discovered that the infection was a lot tougher to remove than previously thought. It has kept MalwareBytes from being able to update, and I had to initially rename both TDSSKiller and MalwareBytes installer with single word names so that the malware wouldn't stop the process from running. When trying to run MalwareBytes after going through the guide with Rkill and TDSSKiller (which found no infection,) I receive an error from MalwareBytes that states: Program_Error_updating(11004,0,No address found)I am unsure if this is related to the rootkit, or if the rootkit is preventing the update due to the wireless connectivity issue. So I suppose my questions are thus:1.) Is the rootkit... Read more

Answer:TDSS infection preventing updates to MalwareBytes/Internet connection

Hello and welcome to the forums!My secret agent name on the forums is SweetTech (you can call me Agent ST for short), it's a pleasure to meet you. I would be glad to take a look at your log and help you with solving any malware problems.If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed. If you have not, please adhere to the guidelines below and then follow instructions as outlined further below:Logs from malware removal programs (OTL is one of them) can take some time to analyze. I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forums.
Please make sure to carefully read any instruction that I give you. Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.
If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask!
In Windows Vista and Windows 7, all tools need to be started by right clicking and selecting Run as Administrator!
If I instruct you to download a specific tool in which you already have, please delete the copy that you have and re-download the tool. The reason I ask you to do this is because these tools are updated f... Read more

18 more replies
Relevance 51.25%

Requesting assistance for a friend who recently got a problem where a pop up window appeared stating that it was "VISTA INTERNET SECURITY 2011 UNREGISTERED VERSION" and it had detected x# of viruses or infections on his system. He is unable to access to the Internet and his antivirus (Avast Internet security 2010) has been rendered useless. He also can't uninstall this "Vista 2011" program. Any assistance will be greatly appreciated.

Arigato

More replies
Relevance 51.25%

I was happily on my computer & everything was swell. All of a sudden, I get this supposed anti-virus box that pops up so I do what it says, except I do NOT buy anything.

So I find out I have the malware Total Security. The icon is not on my desktop OR in the bottom right corner. The only way I know it's on here is when I look at my list of programs.

I Googled & found all kinds of sites that say how to remove it, which I've attempted for hrs, but it's still hard & I can't figure it out. I certainly can't do it manually.

Can someone please tell me in SIMPLE, VERY BASIC step-by-step directions from start to end on how to remove this malware. To show you how much of a novice I am, I don't even know how to set my computer into Safe Mode.

PLEASE HELP ME!!!

Answer:HOW to Uninstall Total Security Malware that's on Windows Vista?

Figured it out...I did a system restore from before the crap got on my comptuer.

1 more replies
Relevance 51.25%

Hello,

I seem to have the same issue as the poster below - except that I'm runnin Windows Vista. I can't seem to be able to download any program - even in safe mode - as the malware starts popping up it's own security windows. I would greatly appreciate any help.

http://forums.techguy.org/virus-oth...5697-vista-home-security-malware-removal.html

Thanks
 

Answer:Vista Home Security 2011 Malware removal

I was really hoping that someone can help on this. It's been 2 days since my original post; so I thought I would bump it up. Any help would be greatly appreciated. Thank you.
 

1 more replies
Relevance 51.25%

Windows Vista is better at protecting against malware than XP but more easily infected than Windows 2000, according to a study by Australian anti-virus firm PC Tools.
The survey calls into question Microsoft's oft-cited claims that Vista is its most secure operating system.
Recent research based on malware scans of more than 1.4m PCs running PC Tools' ThreatFire security technology over a period of six months turned up 639 threats per 1,000 PCs running Windows Vista compared to 1,021 threats per 1,000 Win XP boxes and 586 for 1,000 machines running Windows 2000. Servers running Win 2003 had the lowest number of infection with 586 unique threats per thousand machines. PC Tools' results were verified by checking against third-party scanners.
It's worth bearing in mind that PCs infected with malware are likely to harbour multiple infections, so PC Tools' stats don't shed much light on the percentage of infected machines.
"[Vista]has been hailed by Microsoft as the most secure version of Windows to date. However, recent research conducted with statistics from over 1.4 million computers within the ThreatFire community has shown that Windows Vista is more susceptible to malware than the eight year old Windows 2000 operating system, and only 37 per cent more secure than Windows XP," said Simon Clausen, chief exec at PC Tools.
Clausen notes that Microsoft spent a great deal of effort in making Vista more secure. He argues that the findings of the PC Tools survey show that s... Read more

Answer:Vista security credentials tarnished in malware survey

Wow. A NT based system is more secure than a 9x/NT based system? Wow. Who would have thunk it...

Seriously Windows 2000 was created as a Server based OS. Not really a desktop OS. Yes i know of Windows 2000 Pro but it still wasnt classified as a desktop OS.

Maybe if they said Server 2008 was less secure than Windows 2000 i would acted shocked and surprised.

1 more replies
Relevance 51.25%

Hi, I caught the Vista Home Security malware on my PC and am getting desperate. I tried to change the registry, I tried to go into safe mode but nothing works.In safe mode, everytime I try to launch IE or any malware removal software I have, the same process launches: xxt.exe, and prevents the program to start.I have tried to download anti malware programs to my flash drive but the only healthy computer I have at home other than mine is a Mac.What to do? Any advice will be appreciated.Fanny

Answer:Vista security malware: SAFE MODE WON'T WORK!

Here are techniques used to get MBAM working, you can use these on any program.Malwarebytes' Anti-Malware ( MBAM )http://www.softpedia.com/get/Antivi...http://www.softpedia.com/progScreen...http://www.malwarebytes.org/mbam.phphttp://www.spywareinfoforum.com/ind...http://www.bleepingcomputer.com/vir...Forumhttp://www.malwarebytes.org/forums/Error codeshttp://forums.malwarebytes.org/inde...Common Issues, Questions, and their Solutions, Frequently Asked Questions.http://forums.malwarebytes.org/inde...http://www.spywareinfoforum.com/ind...VIPRE Rescue Programhttp://vipre.malwarebytes.org/http://live.sunbeltsoftware.com/Try it in Safe mode with Networking.If it won't run, rename the downloaded mbam-setup.exe file to mb.exe to help work around certain malware that will block it from being run.If it still will not run.1: Go to Control Panel > Programs and Features and uninstall Malwarebytes.Next redownload Malwarebytes but rename it before you download it to your desktop. As you are in the process of downloading when you get to the point that the "enter name of file to save to" box appears, in the "filename" slot, rename mbam-setup.exe to something.exe, then click Save.If it installed but will not run, navigate to this folder:2: C:\Programs Files\Malwarebytes' AntiMalwareAt the top of the page, Tools > Folder Options > View, click > Show hidden files and folders and untick > Hide extensions for known file types.How to see hidden files in Windowshttp://www.bleepingcomputer.com/tut...... Read more

4 more replies
Relevance 51.25%

I have Vista Internet Security 2010 in my computer. I tried to get rid of it but not being computer savy I don't think I accomplished much! So I saved what I could and attempted to reformat. Only I keep getting an error that says,"This PC is not supported by the System Recovery Discs." However, I have reformatted 4 or 5 times previously using theses discs so that's not true. Could the virus be causing this error to come up?

I'd really appreciate any advice at all.

Thank you.

Answer:Error possibly caused by vista security malware...?

Hello ,this may not be a malware issue, I am moving you to Vista to see if someone has an idea for now.

1 more replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4570 ? with BETA updates enabled:

Fixed an occasional issue where the taskbar icon disappeared after a reboot.
Fixed an occasional issue where Windows Security Center did not recognize EAM/EIS.
Fixed an occasional crash bug during update.
http://changeblog.emsisoft.com/2014/10/13/beta-updates-2014-10-13/
 

Answer:Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4570 – with BETA updates

Thank you, for the Message
 

2 more replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4668 ? with BETA updates enabled:

Improved Updating mechanism.
Improved Surfprotection for windows XP.
Stability improvements.
GUI enhancements.
Source
 

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4783 ? with BETA updates enabled:

Emsisoft Anti-Malware:

Improved GUI loading speed for other than en-us languages.
Improved license renewal behavior.
Improved functionality for all grid columns (auto-width, sorting).
Improved Behavior Blocker logging for application rules.
Improved behavior for Alert windows: no focused default button to avoid accidental confirmations.
Improved functionality for the Quarantine submission form (added ?Back? button?).
Improved functionality for detections from scan results: manual addition to the white list as ?file?.
Improved stability and GUI enhancements.
Fixed a possible memory corruption.
Fixed an issue causing an ?SQLLite 5? error.
Fixed an issue with multiple confirmations in the factory defaults feature.
Emsisoft Internet Security:
additionally :

Improved Installer checks on required Microsoft patches and existence of Virtual Box.
Improved Firewall logging for application rules.
Improved Firewall application rule?s additions. (automatic).
Improved Firewall performance and stability.
Fixed a network blocking issue during raised Firewall Alert.
Fixed an issue where addition of a CIDR network rule caused a lockup.
Source
 

Answer:Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4783 – with BETA updates

I got false positive so removed beta
 

1 more replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4799 ? with BETA updates enabled:

Emsisoft Anti-Malware:

Improved column header sort indicators for all grids
Improved stability and GUI enhancements.
Emsisoft Internet Security:
additionally :

Fixed a network shares being blocked issue.
Source
 

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4649 ? with BETA updates enabled:

Fixed a memory corruption issue in a2cmd.
Fixed an issue in Windows Safe mode.
Improved download speed during installation.
Improved surfprotection notifications and handling.
Improved a2cmd /wl and /q parameter parsing.
Stability improvements.
GUI enhancements.

Improved Firewall performance and stability.
Source
 

Answer:Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4649 – with BETA updates

UI has good performance now with this beta
 

1 more replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4925 ? with BETA updates enabled:

IMPORTANT:
It is not possible to downgrade (by un-ticking ?enable beta updates?) to current public stable 9.0.0.4799. You will have to uninstall 9.0.0.4925 and reinstall 9.0.0.4799 stable.

Emsisoft Anti-Malware:

Fixed a possible install wizard hang after entering an incorrect license key.
Fixed an occasional issue where ?Application changed alert? resulted in a loop.
Fixed a crash on GUI unload after ?shutdown on scan finish?, if auto-quarantine option selected.
Fixed repeated removable drive notification.
Fixed an issue where sending a test email froze the GUI.

Improved Emsisoft Protection Platform implementation.
Improved logging details for Behavior Blocker/File Guard/Surf Protection.
Improved automatic refreshing of logs.
Improved notification with scan statistics after boot, if pc was shutdown due to enabled setting ?shutdown when scan finished?.
Improved added Scheduled Scans button on scan page.
Improved added context menu to Application Rules grid.
Improved ?Restore? and ?Save copy? from Quarantine shows a dialog whether you want to add the file to white-list.
Improved Restore from Quarantine shows a dialog whether you want to overwrite an existing file.
Improved White-list grid keyboard navigation and columns correctly resized.
Improved Automatic Update scheduler.
Improved Installation Wizard now requires a reboot in last step instead of after ... Read more

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4957 ? with BETA updates enabled:

IMPORTANT:
? It is not possible to downgrade (by un-ticking ?enable beta updates?) to current public stable 9.0.0.4799. You will have to uninstall 9.0.0.4957 and reinstall 9.0.0.4799 stable.
? Update to 9.0.0.4957 requires a computer reboot.
Fixed an issue with the Notification Area icon context menu.
Fixed an issue with Surfprotection for Chromium based browsers.
Fixed an issue in Windows safe mode.
Source
 

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4985 ? with BETA updates enabled:

IMPORTANT:
? It is not possible to downgrade (by un-ticking ?enable beta updates?) to current public stable 9.0.0.4799. You will have to uninstall 9.0.0.4985 and reinstall 9.0.0.4799 stable.

Improved: Behavior Blocker digital signature check on computer startup.
Source
 

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4605 ? with BETA updates enabled:

Fixed an occasional Eurekalog crash.
Fixed a memory corruption issue.
Fixed ?cannot connect to service? issue.
Fixed a disappeared icon in notification area.
Fixed some issues with scheduled scans.
Fixed a permissions/password related issue.
Fixed an occasional issue where actions were being denied by the behavior blocker although they were explicitly allowed
Improved icon ?last update? information.
Improved WSC integration on vista.
Improved surfprotection notifications.
Improved a2cmd /L parameter parsing and related folder creation.
Emsisoft Internet Security: improved Firewall performance and stability.
http://changeblog.emsisoft.com/2014/10/29/beta-updates-2014-10-29/
 

Answer:Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4605 – with BETA updates

Thanks Champ
 

1 more replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.5066 ? with BETA updates enabled:
Improved: Occasional crash or guards not loading.
Improved: Occasional delays during system boot.
Fixed: Settings button on malware alert notification.
Fixed: Out of resources error.
Source
 

More replies
Relevance 51.25%

This update will require a computer restart.
Improved: Processing of firewall rules (Emsisoft Internet Security).
Improved: Processing speed when moving a large number of items to Quarantine.
Improved: Task scheduler stability.
Improved: Notification about actions to be taken after malware is found on a network computer.
Improved: Factory reset feature.
Improved: Processing of whitelisted items during scans.
Improved: Uninstaller.
Fixed: Occasional crash in the import hosts list dialog.
Fixed: Occasional hang of the main screen.
Fixed: Occasional hang after creation of an empty rule in a Firewall Alert.
Fixed: Incorrect processing of ?On scan completion? settings.

Go Emsisoft!
 

Answer:Emsisoft Anti-Malware & Emsisoft Internet Security 10.0.0.5735 – with BETA updates

Saw Petrovic was faster, damn

Nevermind, delete/lock this.
 

2 more replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 10.0.0.5167 ? with BETA updates enabled:

Added: ?Kill process? and ?Quarantine? feature in Behavior Blocker panel.
Added: tooltips for program paths and company verification
Improved: loading procedure and data display of Behavior Blocker panel.
Improved: online update mechanism
Improved: online update scheduler algorithm for missed updates.
Fixed: issues with online lookups.
Fixed: occasional downgrade issue during online updates.
Fixed: support for proxy server connections.
Fixed: occasional crashes with progress bars.
Fixed: ?Hide fully trusted applications? bug in Behavior Blocker panel
Source
 

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 10.0.0.5310 ? with BETA updates enabled:

Improved: Updates scheduler, corrected logic when no new updates are available.
Improved: Scheduled scans, corrected display of Last scan time.
Improved: Scheduled scan editor.
Improved: Scheduled scans, corrected logic when set to ?Daily?.
Improved: localized all captions of the scan task?s editing form.
Improved: wording for the tray icon tooltip during update.
Improved: Behavior blocker ?Process? column auto-sizing.
Improved: Behavior blocker filtering logic.
Improved: Progress indication on taskbar button.
Fixed: Scheduled scans, ?Next scan in ?? time, for missed and ?On PC reboot? scan tasks issue.
Fixed: Scheduled scans, Scan silently was not applied issue.
Fixed: Scheduled scans, Default scheduled scan missing.
Fixed: Scheduled update intervals issue.
Fixed: Occasional Service hang after system wakeup.
Fixed: Occasional lost privacy settings issue.
Source
 

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 10.0.0.5409 ? with BETA updates enabled:

Improved support for SSL during updates.
Improved search functionality in the Behavior Blocker panel (filter applied on filename, description and company name).
Improved Behavior Blocker Monitor stability.
Improved auto-update logic at computer boot.
Improved Scheduled scan task edit form unticks ?Run missed scan after startup? and ?Update before scanning? if they are disabled due to other settings.
Fixed an issue in the Behavior Blocker panel with the initial state of the ?Hide fully trusted applications? checkbox.
Fixed an issue with the conversion of an existing scheduled scan from version 9 during update to version 10.
Fixed an issue where a scheduled scan started unexpectedly after a software update.
Source
 

Answer:Emsisoft Anti-Malware & Emsisoft Internet Security 10.0.0.5409 – with BETA updates

 

2 more replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 10.0.0.5686 ? with BETA updates enabled:

This update will require a computer restart.

Improved: Ransomware detection in behavior blocker.
Improved: Behavior blocker panel processing of filenames with special characters.
Improved: Malware detection in scheduled scans.
Improved: Main window loading speed.
Fixed: Occasional crash when the installer is run with regular windows user account.
Fixed: Occasional ?Terminated by user? entry in the update log.
Fixed: Installation wizard doesn?t start after installation on Windows XP.
Fixed: Incorrect ?Unexpected internal processing error? notification during update and Anti-Malware Network lookups.
Fixed: Incorrect ?Waiting for component to start? notification.
Fixed: Scheduled scan (set as: after computer startup) did not start on Window 8.
Beta updates ? 2015-09-01
 

Answer:Emsisoft Anti-Malware & Emsisoft Internet Security 10.0.0.5686 – with BETA updates

Finally, main window loading speed improved
 

1 more replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 10.0.0.5514 ? with BETA updates enabled:

This update will require a reboot when you have Emsisoft Internet Security installed.
Improved: Logic for ?Update rule? alerts.
Improved: File Guard has been enabled for network shares.
Improved: Consistency between Offline mode state and the corresponding text on the tray icon menu item.
Improved: Skipped Anti Malware Network lookup for trusted processes/files on File properties dialog.
Improved: Behavior Blocker panel?s grid filling procedure to avoid occasional hangs on GUI close.
Improved: Behavior Blocker panel?s process reputation.
Improved: Stability of the scheduler (scan/update).
Improved: Scheduled scans with setting ?After online update? will only be executed after updates were received.
Improved: Synchronization when a scan task is waiting for another task to complete.
Improved: Behavior of scheduled scan task ?Run now? button.
Improved: Scheduled scan When/What tabs: logical combinations of settings.
Improved: Stability of GUI termination while a scheduled scan is running.
Improved: Updater stability.
Improved: Auto-update will now start after 5 mins despite CPU load > 20%.
Improved: Automatic updates following a failed automatic update were executed too soon.
Improved: ?Connection error? notifications will be shown for manual updates only.
Improved: License remap logic adjusted to correctly handle the modified Hardware ID caused by the Wind... Read more

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4546 ? with BETA updates enabled:

Fixed a crash bug on systems with the latest ATI video drivers installed.
http://changeblog.emsisoft.com/2014/10/08/beta-updates-2014-10-14/
 

More replies
Relevance 51.25%

Emsisoft Anti-Malware & Emsisoft Internet Security10.0.0.5526 ? with BETA updates enabled:

This update will require a reboot when you have Emsisoft Internet Security installed.
Improved: Surf Protection alert caption information.
Fixed: Occasional network drops and blocked browsing in Emsisoft Internet Security.
Fixed: Refresh/update of the scan tray icon hint during a scan.
Fixed: An issue after a fresh installation where the last update was reported as 16618 days ago.
Source
 

More replies