Computer Support Forum

PC shutting down when running virus or malware scans

Question: PC shutting down when running virus or malware scans

I noticed yesterday that my computer was running slow and a huge % of the processor was being used when nothing much was happening. When I tried running my audio program (cubase) the computer really struggled and the sound was breaking up. I closed the program and did a few searches to identify the problem. The first response was to do a virus/malware check, so I did, but my computer just started shutting down about 1/3 of the way through the check. It will start up again OK, but if I try another scan it closes down.
 
Firstly, I restored my system to point around 10 days ago when everything was running OK, but the scan problem still prevailed.
 
I then did a disk cleanup, and deleted temp files, temp internet files, program downloads, and the recycle bin. Problem was still there.
 
I then attempted a disk error check, however the computer shut down half way through this process as well.
 
I am really stuck as to what to try next. I have no idea if this is a hardware or software/virus issue. My computer will start up and run for a while, but then the Processor use gets very high again, and it's impossible to run most programs. It will then automatically power down.
 
Any help or advice would be much appreciated.
 
James
 
I have included some specs below:
 
Intel i3 processor
4GB RAM
1TB HDD C: 320GB with OS E: file storage
Windows 7 Ultimate
Avast Free Home antivirus
 
 

Relevance 100%
Preferred Solution: PC shutting down when running virus or malware scans

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Answer: PC shutting down when running virus or malware scans

I then attempted a disk error check, however the computer shut down half way through this process as well.
Use this method, and if it fails
 Run a Disk Check on your C: drive in Windows Vista or Windws 7:
 •Click the Start ORB and select Computer
•Right-click on C:(or your main HDD letter) and select Properties
•Click on the Tools tab
•Under Error-checking click the Check Now... button and click Continue at the User Account Control prompt
•Mark the 2 boxes next to Automatically fix file system errors and Scan for and attempt recovery of bad sectors
•Click on the Start button
•When the message box pops up, click the Schedule disk check button and Restart your computer
•Once your computer restarts it will check the drive, don't press any keys so that it is allowed to do so
This will take (on average) 1 to 2 hours, so please let it finish.
Do not force a reboot while the check is running, as this may damage data -
 
Thank You -

18 more replies
Relevance 90.61%

Hello - I have been trying in vain to fix a situation where the computer begins a virus scan with Norton Internet Security. It goes for a while and abruptly shuts down. This also happened with Ad-Aware and Spybot S&D. I removed and reinstalled Norton and uninstalled Spybot and AdAware. Norton says there is one outstanding threat which requires a full system scan - it begins and then shuts off again. Ideas? Help!! I have not been able to do a complete scan.
 

Answer:PC keeps shutting down running virus scans

Try a free online scan.
 

2 more replies
Relevance 89.79%

Hello - I have been trying in vain to fix a situation where the computer begins a virus scan with Norton Internet Security. It goes for a while and abruptly shuts down. This also happened with Ad-Aware and Spybot S&D. I removed and reinstalled Norton and uninstalled Spybot and AdAware. Norton says there is one outstanding threat which requires a full system scan - it begins and then shuts off again. Ideas? Help!! I have not been able to do a complete scan.
 

Answer:Solved: PC keeps shutting down running virus scans

16 more replies
Relevance 79.95%

Hello ancient gods of computer wizardry, 
 
I your humble and lowly servant come to you with a problem. 
 
I've noticed my computer has been doing some erratic things lately. When in the login screen after starting up, the computer makes the login sound before I actually type anything in. That's my first indicator that something is wrong. 
 
Also, I recently downloaded the start.qon8 PUP and was able to get through step 1 of removing it. however, when I go to step 2 using the Junkware removal tool, I noticed that a few minutes into the scan, my computer freezes up. The whole thing. I can't move the mouse, CTRL ALT DEL doesnt work and I have to do a hard restart to get it working again. 
 
Crazy thing is, it's happening with other programs that scan my computer. Adaware, Malware bytes, AVG, Microsoft security essentials... They all freeze after a few minutes. I've noticed that it freezes when I get to C:\Windows\System32\drivers\ataport.sys
 
I think that having 3 different scanners freeze at this file indicates that this file may be corrupt, but I leave this up to you gentlemen (or ladies) to help me.  
This is beyond my capabilities. Please help. 
 
V/R, 
A Lost LT

Answer:Windows 7 freezes when running any anti spyware/virus/malware scans

Welcome aboard
 
You surely can't be running two AV programs (MSE and AVG) so you must uninstall one of them.
If AVG use AVG Remover: http://www.avg.com/us-en/utilities
 
When done try another scan.

14 more replies
Relevance 75.85%

Hello there,

We are in need of help. I've done so much reading, only to find no answer to the problems we are having with our computer.

Several weeks back our Toshiba Satellite S75-2112 laptop began running VERY slow on startup, and stayed slow throughout use. I looked in the task manger and noticed the winlogon.exe taking quite a bit of use. I know this is a normal file, but I have read about problems with this being duplicated, etc etc. After several attempts, with SEVERAL different programs, my computer continues to shut down during virus scans. It does not matter whether or not the computer has been on 5 minutes, or 5 hours....it always shuts down during scans. My first concern is the slowness of the computer.

As you can tell, I am very much computer illiterate, so any help is greatly appreciated. Thank you so very much in advance.

Here is a log:

Logfile of HijackThis v1.99.1
Scan saved at 4:23:45 PM, on 1/15/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ACS.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Common... Read more

Answer:We need help- Slow running and shutting off during scans

Welcome to TSF.

Download VirtumundoBeGone http://secured2k.home.comcast.net/to...undoBeGone.exe and save it on your desktop. Then boot into Safe Mode and run VirtumundoBeGone. When it's done, boot back to Normal Mode and post the log created here along with a new HijackThis log.

3 more replies
Relevance 71.34%

When I try to run a scan from usind AVG anti-virus, Avira, Windows Defender, or SuperAntiSpyware; when the scan gets to a certain point, Windows shuts computer down with a blue window. It says Kernel_Stack_ Inpage_ Error plus some standard verbage about if you recently installed sortware/hardware,see administrator, etc. At bottom it says: STOP: 0x00000077 (0x00000001, 0x00000000, 0x00000000, 0xF79B1D24). I could sometimes run AVG scan in "select drives/folders" mode but recently it quit allowing that after I upgrade to AVG 9 (free). I uninstalled AVG and went to Avira but with same results. Scanning with Windows defender did the same. I recently installed and ran SuperAntiSpyware and was able to pinpoint problem to " System Volume Information" directory. I am unable to open to see contents as Windows shows no files in it. When I ask Ariva to scan it, Ariva says no files also but if I use AntiSpyware to scan, it shows many files during it's scan but will get to a certain point and computer will shut down. I can almost see file that shuts it down but it happens too fast to catch it. I was able to run "RootRepeal" and log is below. I was not able to run "DDS.scr".

ROOTREPEAL © AD, 2007-2009
==================================================
Scan Start Time: 2009/10/30 13:15
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP3
==================================================

Drivers
-------------------
Name: rootrepe... Read more

Answer:Unknown malware/virus won't let any anti-virus/windows defender/malware removal progran to complete scans

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

23 more replies
Relevance 70.52%

Hi, I recently downloaded a virus from aim that is causing my computer to shut down everytime I try to run a virus scan. I have tried using AIMFix, but that did not solve the problem.. Any help would be greatly appreciated... thanks...

I have attached a copy of my hijack log..

Logfile of HijackThis v1.97.7
Scan saved at 12:09:34 AM, on 6/4/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\BCMSMMSG.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\dla\tfswct... Read more

Answer:Solved: computer keeps shutting down when trying to run virus scans

Hi.. and welcome..
You are running two Anti virus programs...Symantec and McAfee..this will cause a conflict between th two..one should go..
Run a online Virus scan..just to check..
http://housecall.trendmicro.com/
Post a new log and an expert will help you...
 

3 more replies
Relevance 68.47%

I downloaded Hijackthis and am trying to figure out how to send the log to you. I went thru the introduction and did everything it asked, like rootrepeal and the dds thing and all that..I don't know what any of this means though. I hopefully am sending you everything, but my real need was to find out if the hijack file has things that can be removed. I have no idea what is necessary and safe to keep and what can be removed. And since I am sending the other files too, might as well see what you can do with those too. My problems I am having with the computer are it getting slower and the toolbar changes back to winamp, which I have removed and it shows up again. Thanks so much! I appreciate this service very much. Robin

Answer:First Time running these scans for Malware

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. Please include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.Please download OTL from following mirror:This is THE MirrorSave it to your desktop.Double click on the icon on your desktop.Click the "Scan All Users" checkbox.Push the button.Two reports will open, copy and paste them in a reply here:OTL.txt <-- Will be openedExtra.txt <-- Will be minimizedIn the upper right hand corner ... Read more

19 more replies
Relevance 67.65%

Yesterday I was on a site with my son, and my computer sound started acting up, like warbling, and my mouse takes a while to catch up with me. This computer is 2 months old, and have never had a problem.
I have ran edwido and Ad-aware and they came up with nothing. Is there any help with this?
Thanks
Pam
 

Answer:running slow, but scans don't bring anything up, could it be malware

Hi Pam


To fully work out if malware is the cause of the issues on the PC, you will have to run through this guide of ours, looks daunting to start with but taken slowly its not as most of the text is for information only.


Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments.

Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
Make sure you check version numbers and get all updates.
Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:
Downloading, Installing, and Running HijackThis

Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.


When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:
CounterSpy
AVG Antispyware log - ONLY IF NEEDED you were not able to run CounterSpy
Bitdefender - from step 6
Panda Scan - fro... Read more

2 more replies
Relevance 67.24%

I have scanned with AVG with the latest updates. On top of that insidious google redirect I get random pop ups even when I don't already have IE or Firefox running. Also getting sounds in the background like I'm clicking on a link, surfing the net when I'm not. And SYSTEM in task manager is hogging a ton of memory.Logfile of Trend Micro HijackThis v2.0.4Scan saved at 11:52:42 PM, on 8/7/2010Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\AVG\AVG9\avgchsvx.exeC:\Program Files\AVG\AVG9\avgrsx.exeC:\Program Files\AVG\AVG9\avgcsrvx.exeC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\WINDOWS\System32\WLTRYSVC.EXEC:\WINDOWS\System32\bcmwltry.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\AVG\AVG9\avgwdsvc.exeC:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exeC:\... Read more

Answer:persistent malware undetected by virus scans and malware removal tools

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process. Please also continue to work with me until I give you the all clear. Even if your computer appears to act better, you may still be infected.Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.Once we start working together, please reply back within 3 days or this thread may be closed so we can help others who are waiting.We need to create an OTL report,Please download OT... Read more

2 more replies
Relevance 66.83%

Hi,

As above I had foolishly attempted to download an Iphone jail break program after a few wines and my computer has gone haywire. I also did not attempt to do any virus resolutions as my keyboard was broken anyway. Ive fixed my laptop a few months later and have run all the suggested scans which did detect a few things however it appears that there is still something lurking in there and I have no idea how to work it out.

Could someone please let me know the next steps to take, I am concerned about the access to my gmail account and its back showing an additional user within seconds of my changing the password.
 

Answer:Still have some malware after running scans, additional user in gmail

Hello,

They call me TwinHeadedEagle around here, and I'll be working with you.

Before we start please read and note the following:

At the top of your post, please click on the "Watch thread" button and make sure to check Watch this thread...and receive email notifications. This will send an email to you as soon as I reply to your topic, allowing me to solve your problem faster.
Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process. Please do not perform System Restore or any other restore.
Instructions I give to you are very simple and made for complete beginner to follow. That's why you need to read through my instructions carefully and completely before executing them.
Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.

All tools we use here are completely clean and do not contain any malware. If your antivirus detects them as malicious, please disable your antivirus and then continue.
If during the process you run across anything that is not in my instructions, please stop and ask. If any tool is running too much time (few hours), please stop and inform me.
I visit forum several times at day, making sure to respond to everyon... Read more

15 more replies
Relevance 66.83%

Platform: ASUS laptop model K52F-BBR9, Windows 7 SP1 64 bit
Using Windows Firewall & Avira anti-virus
 
I have twice received today a BSOD with error 0X00000109 when running simultaneously the malware scan products listed below under my Admin account. All products have the latest software updates & the latest virus definition updates:
  Malwarebytes
  Gmer
  Windows Software Malicious Tool
  SUPERAntiSpyware
  Windows Defender
  
I had previously run TDSSKiller which found nothing.
The Windows event viewer lists "BugcheckCode 265" at the time of each BSOD. 3 of 4 BugCheck parameters were different for the two BSODs. Both BSODs had "BugcheckParameter4 0x2".
BlueScreenView reports that the BSOD was caused by "ntoskrnl.exe".
I ran the Windows 7 "Memory Diagnostics Tool" just in case - nothing was found.
I did not run a disk check.
 
What is interesting is that I have never received a BSOD when doing my regular day-to-day work (Microsoft Word, Powerpoint, web surfing, etc.), only the two times today when I ran the malware scan.
 
I do not know if the problem is:
(1) Am I infected?
(2) Could the problem be a bug in one of the malware scanners?  (I will try running these one at a time to see what happens.)
(3) Hardware problem?
 
Thank you in advance for your help!!

Answer:BSOD - error 0X00000109 when running malware scans

Have you tried running the programs one at a time...some don't play well with others

3 more replies
Relevance 66.01%

I've attached the scans.

Thank you in advance for any help!!
 

Answer:Dell Computer Running Very Slow-Malware Scans Find Nothing

You need to exit MalwareBytes in your tray area. Right click and select Exit.
Download Malwarebytes Anti-Rootkit to your desktop.

Double-click the icon to start the tool.
It will ask you where to extract it, then it will start.
Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
Click in the introduction screen "next" to continue.
Click in the following screen "Update" to obtain the latest malware definitions.
Once the update is complete select "Next" and click "Scan".
When the scan is finished and no malware has been found select "Exit".
If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
Open the MBAR folder and paste the content of the following files in your next reply:
"mbar-log-{date} (xx-xx-xx).txt"
"system-log.txt"


Fix with Farbar Recovery Scan Tool

This fix was created for this user for use on that particular machine.
Running it on another one may cause damage and render the system unstable. ​Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!
Right-click on icon and select Run as Administrator to start the tool.
(XP users click run after receipt of Windows Security Warning - Open File).
Press the Fix button just once and wait.
If for some reason the tool needs a restart, ple... Read more

6 more replies
Relevance 65.6%

Two days ago I was getting really annoying adware that played ad sounds in the back ground. I did a google search and with the help of a friend I got rid of it with this guide posted on malware tips: http://malwaretips.com/blogs/remove-random-audio-ads-virus/
 
I have dual start up and with windows 7 and windows 8 (trial). So I ran malware bytes and it would shut off my computer in windows 7, I then downloaded malware bytes in windows 8 and scanned both hard drives and it would stop responding. I went into safe mode windows 7 and ran all those programs (listed in malwaretips), and none of them found anything. Afterwards I downloaded avast in windows 7 and it would crash. I  went into safe mode and ran avast  went afk, when I came back my computer wasn't in safe mode and the adware was gone. I ran malware bytes quick scan which found some stuff, then I ran malware bytes anti root kit which also found something. Then I ran all the programs again this time not in safe mode to make sure I didn't have any malware, none of them found anything. Just to be safe, I decided to do full scan with malware bytes and my computer crashed. Note, it didn't shut off like before but everything would just stop responding. I was forced to manually shut off my computer, then I tried running a full scan with avast. Avast was finding some things but then my computer crashed again. So I manually shut off my computer and then went into safe mode to run avast and it would freeze up.. Then... Read more

More replies
Relevance 65.19%

I got a virus in my computer that is not allowing me to run certain programs to remove it. I can install malwarebytes and PCtools spyware doctor but when I try to run them after a couple of seconds the programs stop and when I try to run them again it gives me an error indicating that I don't have the permission to run that file. I need help in finding something that will allow me to get rid of this virus.I first noticed it when Internet Explorer would pop open randomly to various websites. I've done scans a few days ago and it removed something but obviously not the issue. Yesterday it shut down my anti-virus all together. Today i went to install a new anti-virus and Malware programs and a quarter way through the scan they shut down suddenly. I tried Microsoft's online scanner and their Malicious Software remover and got the same result. They both shut down. It would not even allow me to create a Highjackthis log. 10 seconds into the scan it too shut down. I have attempted all this is Safe Mode as well to no avail. I am running Windows 7 Ultimate. Thanks in advance for any help. The only thing i can think of at this point it to reformat which obviously i do not want to do. After reading around i see a few people have the same issue. I tried doing this -Welcome to BC We will need internet connection, or the ability to transfer files for this clean...RKill by GrinlerLink #1Link #2Link #3Link #4Before we begin, you should disable your anti-malware softwares you have installed... Read more

Answer:Virus preventing me from running scans.

If you cannot run MBAM or complete a scan in normal mode, then try performing a Quick Scan in "safe mode". Scanning with Malwarebytes Anti-Malware in safe or normal mode will work but removal functions are not as powerful in safe mode. MBAM is designed to be at full power when malware is running so safe mode is not necessary when using it. In fact, MBAM loses some effectiveness for detection & removal when used in safe mode because the program includes a special driver which does not work in safe mode. Further, scanning in safe mode prevents some types of malware from running so it may be missed during the detection process. Additionally, there are various types of malware infections which target the safeboot keyset so booting into safe mode is not always possible. For optimal removal, normal mode is recommended so it does not limit the abilities of MBAM but sometimes there is no alternative but to do a safe mode scan. If that is the case, after completing a safe mode scan, reboot normally and try rescanning again.

1 more replies
Relevance 65.19%

hi, thanks for your help, i did the steps required and I'm still getting a pop up message that says i have an internal error and i should visit fixthereg.net for a full system scan. I just had my computer sent out to be fixed and I get it back and this message won't stop coming up! I'm running adaware and norton antivirus. any suggestions? Thanks!
 

Answer:still having problems after running virus scans

If you have run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support then continue with the below steps. Otherwise complete ALL the sticky thread steps first.
After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis:

Downloading, Installing, and Running HijackThis
.

 

1 more replies
Relevance 65.19%

I built this computer about 4 years ago and used it thoroughly for about 2 years. I always had blue screen issues but they were never this quick ( every 3 hours ). Ended up going into the army and it just sat in my room forever. I brought it to Geeksquad because I was having problems with it recently and they did a total reinstall with a new OS ( Home 7 64bit ). Come to find out one my my cards was failing. Get the comp home and I am now having blue screen issues once again. One called BAD_POOL_CALLER and another called NTFS_FILE_SYSTEM. The ntfs happened first.

Windows 7 is...
-64bit
-Not the original OS
-Full retail
-Hardware = 4 years old +/- few months
-OS is 1 day old

EDIT: I am pretty sure this is happening because of a corrupted hard drive. I believe my 300gb is partitioned with my 250gb primary. I tried starting up my computer without the 300gb connected and couldn't get past the load screen because it was saying " Can not find nvidia driver, Make sure hard drive is connected properly " or something of that sort. Yet my 250 has all the drivers on it. Also, when I look under my 'computer', it only shows my primary 250gb and my 500gb one. The 300 isn't even listed.

Answer:BSOD On web + running virus scans.

I went ahead and took out my corrupted 300gb HD. I loaded from windows 7 disk and re-formatted all my other harddrives ( Its ok, didn't need the info on them ). Hopefully this works. That is if the problem was the hard drive in the first place.

1 more replies
Relevance 64.37%

Hey Everyone

I am looking for a little direction. I am helping out a friend who was complaining that when he used IE 7 he had problems going to the sites after doing a search. I.e he would search on google see the hits and when he would click on the links it would take him to another site.

I ran Vundofix with no results. I have since tried SpyBot, Combofix, SuperAntiSpyWare, and Malwarebytes and none of them will run. Spybot and MalwareBytes install but will not come up. Combofix and Super will not even install.

The only things I can run are CCleaner and Windows Live Oncenter which did remove some trojans.

Any ideas on what to do? I have tried it in safe mode and have turned off the firewall just to make sure.

Thanks this has been very frustrating.

P
 

Answer:Can't run any malware/virus scans on PC

Welcome to Major Geeks!

Please follow the instructions in the READ & RUN ME FIRST link given futher down and attach the requested logs when you finish these instructions.

If you have problems where no tools seem to run, please try following the steps given in the below and then continue on no matter what you find. You only need to try the TDSSserv steps if having problems getting scans in the Read & Run Me First.
TDSSserv Non-Plug & Play Driver Disable

If something does not run, write down the info to explain to us later but keep on going.
Do not assume that because one step does not work that they all will not.
READ & RUN ME FIRST. Malware Removal Guide

After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:
If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware, Malwarebytes and Spybot ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. ... Read more

1 more replies
Relevance 64.37%

There's something fishy going on with my computer-the "shut down" button is gone from the "Start" menu and the task manager has been disabled.  After doing all the steps listed in the Malware Removal Post by evilfantasy, the task manager is now available, but the "shut down" button is still missing from the "Start" menu.  Attached are the logs from SUPER Antispy, Malwarebytes' Anti-Malware, and HJT.  Thanks for everything, please advise if I need to do anything else!!  [attachment deleted by admin]

Answer:Virus/Malware Scans

You have Viewpoint installed.Viewpoint Media Player/Manager/Toolbar is considered as Foistware instead of malware since it is installed without users approval but doesn't spy or do anything "bad".More information: ViewMgr.exe - UselessViewpoint To Track Browsing, Serve AdsViewpoint to Plunge Into AdwareIt is suggested to remove the program now.Go to Start > Settings > Control Panel > Add/Remove Programs and remove the following programs if present. Viewpoint Viewpoint Manager Viewpoint Media Player Viewpoint Toolbar Viewpoint Experience Technology.----------Before you begin the SDFix instructions you should copy these instructions in a Notepad file and save them to your desktop or print them for easy reference. Much of SDFix will be done in Safe mode and you will be unable to access this web page after booting into Safe mode.Download SDFix by AndyManchesta and save it to your desktop.When using this tool, you must use the Administrator's account or an account with Administrative rightsNow, double-click on the SDFix icon that should now be residing on your      desktop. If a Open File - Security Warning box opens, click      on the Run button.A window will now open showing SDFix being extracted into the C:\SDFix folder.      Once the installation program has finished extracting SDFix, it will open      a Notepad with further instructions.DO NOT use it just yet.Reboot your computer in Safe ... Read more

1 more replies
Relevance 64.37%

My pc is severly neglected, it has been running slow for a while, but had just switched to using my laptop. Well over the Thanksgiving holiday I left my laptop at my parents and now am trying to get this old girl back up and running at a workable speed. Tried to run avg, that did not check any files for 10 min so I just stopped it. Then tried to do a trend micro housecall and keep getting an error that I am not connected to the network. So I did a HiJackThis in the hopes that someone could take a look and hopefully give me a clue of how to proceed. Any help will be greatly appreciated, thanks! Misty

Here are the results:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:32:35 PM, on 11/28/2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\spoolsv.exe
C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\AIM95\aim.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:... Read more

Answer:pc running very slow, virus scans not working

Welcome to the board. It will take awhile to go through that log in the meantime have you tried running your AVG scan in Safe Mode?
 

3 more replies
Relevance 64.37%

The last two times I've run MBAM scans, Microsoft Security Essentials has popped up with a virus detected message. The first one was a Trojan Dropper and the second message involved 3 different Java related files. I need help in eradicating whatever has infected my machine. I'm running Vista 64 bit.

Answer:Virus detection popups while running scans

Download Security Check from HERE, and save it to your Desktop. * Double-click SecurityCheck.exe * Follow the onscreen instructions inside of the black box. * A Notepad document should open automatically called checkup.txt; please post the contents of that document.=============================================================================Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.Make sure the following options are checked:
Internet ServicesWindows FirewallSystem RestoreSecurity Center/Action CenterWindows UpdateWindows DefenderPress "Scan".It will create a log (FSS.txt) in the same directory the tool is run.Please copy and paste the log to your reply.====================================================================================Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList Devices (do NOT change any settings here)List Users, Partitions and Memory sizeClick Go and post the result.=============================================================================Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/products/malwarebytes_free to your desktop. * Double-click mbam-setup.exe and follow the prompts to install the program. * At the end, be sure a checkmark is placed next to Update Malwar... Read more

7 more replies
Relevance 64.37%

My laptop became infected with a virus that hid all my programs and causes many redirect problems while using the internet.I have Vipre security and Malwarebytes but while preforming scans my machine freezes.I ran the unhide and rescue procedures suggested by Vipre technicians and restored most of my programs however I still am having redirect problems and other little things that drive me nuts.How can I fix this????

Answer:my laptop locks up when running virus scans

Hello, can you run this and post the log?How to remove Google Redirects A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).Copy and paste the contents of that file in your next reply.Rerun MBAM (MalwareBytes) like this:Open MBAM in normal mode and click Update tab, select Check for Updates,when doneclick Scanner tab,select Quick scan and scan (normal mode).After scan click Remove Selected, Post new scan log and Reboot into normal mode.Please ask any needed questions,post logs and Let us know how the PC is running now.

1 more replies
Relevance 64.37%

There is a virus on my computer. A new icon appeared in my taskbar (looks white with a vivid green dot in the middle). It calls itself 'Antivirus software' but its definitely fishy. it tries to run scans of my pc without asking me. when i click on the icon, it opens something called antivirus software, but on the taskbar it's called 'antivirus software demo'. a windows security alert bubble appears every 5 seconds telling me i.e my wuautlc.exe is infected (amongst many others). It wont let me turn on a scan from my antivirus (PandaCloud) or antimalware scan (Malwarebytes). It opens Internet explorer pages every 10minutes (eventhough i always use Firefox). Theres a small window opening on the bottom right of my screen every 5 minutes telling me my pc is infected, and then asks me to purchase this 'Antivirus software'. and Every 10minutes a main window opens in the middle of my screen telling the same.

I tried opening my pc on SafeMode with Networking. I cant use PandaCloud from there. I can use Malwarebytes but on SafeMode my computer turns off by itself after a few minutes.

I hope you know what I am referring to and you will be able to help! Thanks!
 

More replies
Relevance 63.55%

New to this but anyway, I have successfully removed stuff and junk from the old box but this one has me stumped. I have scanned with Malwarebytes, Spybot, Adware and Avast and nothing is recognizing that I have something going on. Hit a site yesterday that wanted to "scan" my computer. Avast caught it right way but when I hit "Abort Connection" it started to do it's little trick anyway, defeating my Avast and disabling the resident Scanner. Before writing down any info (like a rookie) I panicked and Xed out of Firefox. This morning when I went to take it out of Stand By it was froze. So I reluctantly rebooted and went strait to the Scanners above. All four of them said "No Prob" "0" infected files.

Still can execute in Safe Mode but the system completely freezes up after about 2 min of use in normal mode causing me to reboot. So what the hell do I do now. Hopefully you say, "Back up all your stuff and Buy another computer "

I run my own business and don't have a lot of time to mess with this and if it's going to cost $100+ to send it in, then I may as well just spend the few extra $100 to get a new tower. I know that is a little dramatic but as you can see I'm a little worried.

"Give me, give me. I need, I need" Bill Murray, What about Bob

Thanks

Bob

Answer:virus/malware not showing up on scans

It ended up being my registry. I downloaded "Free Windows Registry Repair" and it did the trick. I also went to Window Safety Check and did a scan

1 more replies
Relevance 63.55%

Hey, I?m really stuck on a problem and I hope someone can help me.

A few days ago, my AVG Free informed me that a virus had been found, so I performed a full system scan. Unfortunately, the scan froze a few minutes after it began, and I had to terminate the program because it wasn?t responding. Then I ran Spybot and AdAware. AdAware ran for about 5 minutes, picking up 2 critical objects, and then also decided to freeze. With Spybot, the scan was ridiculously slow, but was still scanning at least. Then, after 5 hours, it too decided to freeze. I ran these programs again, thinking I could pause or stop the scan after an infection was found and try and remove it there and then, but I couldn?t, because it would just freeze as soon as I hit pause and/or stop. They don?t all freeze at the same point either, in case that matters (though both AVG, McAfee Stinger and McAfee Online froze at "activeskin.ocx").

Then I ran Trend Micro Housecall, Ewido, Panda, and a-squared online scanners. All these programs, after scanning through a few files, would freeze and become unresponsive. No error messages or anything. I downloaded the Ewido Anti-Spyware software, which did the same thing. There was definitely some sort of pattern emerging here.

I thought perhaps there were inconsistencies in my hard drive that were causing problems in the scan, so I ran chkdsk, which told me everything was fine.

Now before some of these programs froze, they picked up a few things. Trend Micro pi... Read more

Answer:Have Virus But All Malware Scans Freeze

Hi,with these problems i think your best bet is to submit a Hjt log to the forum and let one of the experts look over it and working together you can sort this out.If you need a link as to what to do.... click this....Preparation Guide if you scroll down this link it will tell you exactly what to do.Please remember..... once you submit a Hjt log...... please do not alter anything or try to change anything on your computer. (as this could well change your log)Good luck.

1 more replies
Relevance 63.55%

Hello,

Thank you in advance for your help. My name is Chris. I am attempting to fix and clean my friends computer, however it is giving me some problems. The hijack, dds, and attach logs are posted below. This is a 64bit system so I didn't do the other scan. And by the way, If all you want to view is the logs just scroll to the part where you see a row of smiley's and thumbs up. The Hijack log starts immediately after. You may see a log before the row of smileys but thats a malwarebytes log that I posted during the explanation of the steps I have taken so far. The first few paragraph's is me rambling on about what I've done so far, and you probably don't even need to know hence is why you ask people to copy the 3-4 logs in their postings, but it makes me feel better that I explained it lol.

I would consider myself to be above average when it comes to removing viruses, malware, etc..When I first got the laptop in my possession it booted right up and the first error message I got, after windows had already started, was something like this:

error: c:/users/jameson/appdata/local/easybits/hjpasmpe.dll missing entry: register change callback

I'm not sure if this has something to do with the virus or if my friend ran a spyware program that deleted a necessary registry file by accident. I first established a network connection which said I was connected to the Internet but could not access the web with any browser installed on the pc. I checked to s... Read more

Answer:FBI Virus / other malware - ALL SCANS POSTED

51 views but no replys must mean this laptop is all jacked up lol. Here is an update.....

I was finally able to download AVG 2013 Free and installed the complete protection trial for 30 days to make sure it would catch everything possible. I ran the scan overnight and this morning I checked it and saw something I've never seen before. This pc has to be bad off ....

The AVG detected 40 something trogjans and multiple corrupted executable files which it says it fixed. However, it couldn't fix an infected rootkit that reads - Rootkit.TDSS.TDL4 (Master Boot Record) and it couldn't fix multiple anti-rootkits that read - IRP hook, \Driver\iaStor IRP_MJ_CLOSE-> 0xFFFFFA800529274C. The other ones like that all start the same but instead of where it says "CLOSE" in the one above the others say "SET_SECURITY" "SHUTDOWN" "SYSTEM_CONTROL" "WRITE"

I'm assuming this pc is infected with multiple viruses and has been for some time now. The guy who owned this pc lives on campus at a large university and he said many people used his computer for the last few years. I would like to post the log but I don't want to do anything right now with the AVG because I don't want to remove all the TROJANS it found for a good reason. (PLEASE READ THIS PART IF YOU ARE THE VOLUNTEER THAT IS GOING TO HELP ME.)

In the 40 something Trojans AVG found some of them seem like ok files associated with ok programs. One of the fil... Read more

2 more replies
Relevance 63.55%

...should you always be in safe mode?
...how about an online scan...possible to do so in safe-mode and go online?
thanks...
 

Answer:when doing scans for virus' and spyware, malware, etc..

answered my own question...safe mode + networking = yes.

 

1 more replies
Relevance 63.55%

What are the best scans I can preform to make sure my computer is virus/malaware free?Edit: Moved topic from Virus, Trojan, Spyware, and Malware Removal Logs to the more appropriate forum.~ Animal

Answer:Best free virus/malware scans?

Just like with anti-virus programs...there is no universal "one size fits all" solution that works for everyone and there is no single best anti-malware solution to supplement your existing security protection. You may need to experiment and find the most suitable combination for your needs.
Please see: Supplementing your Anti-Virus Program with Anti-Malware Tools
 
List of Free Scan & Disinfection Tools which can be used to supplement your anti-virus and anti-spyware or get a second opinion:
Malwarebytes Anti-Malware
SUPERAntiSypware Free
Kaspersky Virus Removal Tool
Sophos Virus Removal Tool
ESET Rogue Applications (ERA) Remover - How do I use the ESET Rogue Application Remover (ERAR)
Panda Cloud Cleaner - How to disinfect computer with Panda Cloud Cleaner
Dr.Web CureIt
Hitman Pro
HitmanPro.Kickstart
SecureAPlus Freemium <- comes with a one-year free user license
MicroWorld eScan AntiVirus Toolkit (MWAV)
Microsoft Safety Scanner
Norman Malware Cleaner
Windows Defender Offline
McAfee Labs Stinger Tool
Trend Micro Fake Antivirus (FakeAV) Removal Tool
Trend Micro System Cleaner
VIPRE Rescue
Note: Many of these tools are stand-alone applications contained within zipped files...meaning they require no installation so after extraction, they can be copied to and run from usb drives.
You can always supplement your anti-virus or get a second opinion by performing an Online Virus Scan. ESET is one of the more effective online scanners.Not so Free malware scanning/removal ... Read more

1 more replies
Relevance 63.55%

Hi everyone...bleepingcomputer newbie here, so please let me know if more info is needed. Here's the problem. About a month or so ago, my daily Norton Anti-Virus scan started "hanging". It usually happened around c:\windows\ie7\reg00561 (although the numbers following "reg" varied). I tried running an AdAware2007 scan...it hung too. As did SpySweeper, CA Anti-Virus and any other virus/ad/spyware scanner I tried. Since they all had issues, I thought that the problem might lay within Internet Explorer 7, so I tried to uninstall. I got as far as the point where it "Updates Registry"...it hung there just like with the scans. When it hangs, I have to turn the computer off at the on/off button with no "shutdown". So, I am at a loss as to what to do. My computer SEEMS to run OK, but I haven't been able to run any type of "security scan" in almost 6 weeks, so something is obviously wrong. Any help/ideas would be appreciated. Please let me know what else I should do or other info to provide for assistance. Thanks in advance. Tracy

Answer:Computer "hangs" When Running Virus/ad/spyware Scans

Have your tried running your scans in "Safe Mode"?

1 more replies
Relevance 63.14%

Recently, my computer ran its automatic scan and froze about 30% through the McAfee scan. I've tried Malwarebytes and others as well, all of which freeze on the same file. It is a long string file in the sandbox folder and is allegedly a windows file (looked up online seems to verify this).

My computer has generally run fine despite the antivirus freeze, but I'm concerned that my computer may be infected. Java has ceased automatic updates and also, the CPU usage has been through the roof. Does anyone have any ideas?

Thanks,
SDRTR

Answer:Virus/Malware Scans freezing on same file

Hello,I will be helping you with your problemsSome points for you to keep in mind while I am helping you to make things go easier and faster for both of us Please do NOT run any tools unless instructed to do so.
We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability. Please do not attach logs or use code boxes, just copy and paste the text.
Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post. Please read every post completely before doing anything.
Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process. Please provide feedback about your experience as we go.
A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send ... Read more

1 more replies
Relevance 63.14%

Hi, I've been having some problems with my computer ever since I got some alerts from Norton internet security that intrusion attempts had been made.
 
For example when I go to the hotmail log in page in IE8 there is just a blank white screen, and youtube videos just show as a black box. Other web sites have similar problems. My broadband speed has also become very slow, at only 0.19 mbps when it should be at least 2 mbps (although this might not be related, could be a separate fault on the phone line). I have also noticed that software I've installed recently is not listed in the add/remove programs list in the control panel, so I can't uninstall it.
 
I have Norton internet security running with live update, I have Spywareblaster installed, and I have run scans with AdAware, Malwarebytes Anti-Malware, Super Antispyware, Windows Defender, and online virus scanners from Panda, trend micro housecall, ESET, Kaspersky and probably some others I've forgotten now!
 
None of the scans have found anything except some tracking cookies, so what can I do now? Should I do a Hijack this log or some other advanced stuff? Could someone guide me through what to do?
 
The computer is an old desktop with Intel pentium 4 3.06Ghz CPU, 512mb RAM and Windows XP with SP3. 
 
Thanks for your help 

Answer:Think I'm infected, but virus/malware scans not finding anything

Did you tried TDSSKiller?
 
 Running TDSSKiller to obtain log
 
Note: Don't cure or delete a threat, but choose skip for all instead.
Please download TDSSKiller from here and save it to your Desktop
Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

In the Additional options: Check Detect TDLFS file system
Click Start Scan and allow the scan process to run

Choose for all threats to Skip for all of them.
Click Continue
Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)
===================================================

7 more replies
Relevance 63.14%

I recently had an update notice from Microsoft. Once uodated I had IE8 . Before updateing I had run an MBAM scan due to a false anti-virus I think it was Anti-Virus PRO. I have the scan log if need to verify what was detected. I have tried to run MBAM & SAS in both normal & safe mode, recevied the error on the subject line for MBAM. SAS just says will report error & asks for my email. I can not stay on IE without encountering a problem and shutting down. Not even wmp stays on always encounters error & shuts down. Was able to run BitDefender Antivirus 2008 nothing detected.PC details:HP 873nXP Media Center Edition Ver. 2002 Service Pack 3Pentium 4 2.53GHz1.50GB RAMTask Manager shows 40 processes running have noticed multipule duplicate processesName User Countsvchost.exe System 4svchost.exe Network Service 2svchost.exe Local Service 2Here is the HJT logAny help is greatly appreciated.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 6:09:54 PM, on 6/6/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\... Read more

Answer:Unknown virus can not run any Anti-Malware scans

Hello, plox3.My name is aommaster and I will be helping you with your log.If you have since resolved the original problem you were having would appreciate you letting us know If not please perform the following below so I can have a look at the current condition of your machine.ThanksAlso, you may want to consider tracking this topic by either adding it to your favourites or clicking the Options button at the top of this thread.Please note that I am in the process of my training so it may take a while for me to get back to you, as each of my fixes need to be checked by a coach first.Download random's system information tool (RSIT) by random/random and save it to your desktop.Double click on RSIT.exe.Click Continue at the disclaimer screen.Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)In your next reply, please include the following:RSIT Log

29 more replies
Relevance 63.14%

Hey there,

My computer is older than dirt, so I don't expect great performance from it. However, it is running much, much slower than it should. I am also now getting popups that read similar to "System alert! Stop! Windows REQUIRES IMMEDIATE ATTENTION. CRITICAL ERRORS. Go to www.fix64.com" I get these pop ups when I do not have IE open. (No, I am not using Mozilla because my computer doesn't seem to like it.) Because my computer is old and a new on is one the way, I do not intend to put any more money into this one for the high dollar spyware protection that you can buy at the store. I have to make do with the quick fixes that I can. I have run Asquared malware removal, and the most it found was some tracking cookies. AVG anti virus comes up with nothing. I ran a registry cleaner and got rid of some stuff, but none of it looked threatening.
Is it possible that a virus or malware is hiding somewhere that the scans can't see? I am afraid to shop online or do online banking for fear some other eyes are watching.
I am running WinXP on IE6 with a DSL connection.

Here is the log:

Logfile of HijackThis v1.99.1
Scan saved at 11:18:48 PM, on 9/8/2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System3... Read more

Answer:Virus/Malware hiding from scans? Log included...HELP

16 more replies
Relevance 63.14%

May be a lost cause fellas... my main symptom is I'm getting Google redirects

DL'd Malwarebytes, wont run even after renaming
AVG wont scan
Mcaffe Stinger wont run
I think I'm hosed here nothing works in safe mode either.


The last time AVG ran succesfuly it found a few things and deleted them.. thats the last issue I had. I'm at work right now if someone can throw out some suggestions I'll try when I get home. Thanks in advance
 

Answer:Google redirects and cannot run virus/malware scans!

Guys, close this thread out.. I ended up having to do a fresh install of Windows as computer stopped booting up

Sorry to bug you looks pretty busy here LOL
 

2 more replies
Relevance 63.14%

i ran all of the steps in the "Read me first..............." i am having problems trying to delete files, it says the program is in use or access denied, etc, i have looked in the task manager and se nothing out of place, i do see more svchost.exe there than i used to, also computer is running extremely slow and sometimes have to restart 3 or 4 times to get it to work halfway decent, please help! thanks
 

Answer:Still having problems after running all online scans and virus removal programs

Download HijackThis 1.99.1

Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

Run HijackThis and save your log file.

Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

Need help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting
 

21 more replies
Relevance 63.14%

When I tried running a variety of scans, ad-aware and vundofix, my computer has shut down. I ran Trojan Remover which found a file calledinfo.exe and did something to it to deactivate it or thats what it says. I have no idea what to do, please help me.Deckard's System Scanner v20071014.68Run by Mei-Hua HuangChen on 2008-07-03 03:48:08Computer is in Normal Mode.---------------------------------------------------------------------------------- System Restore --------------------------------------------------------------Successfully created a Deckard's System Scanner Restore Point.-- Last 5 Restore Point(s) --67: 2008-07-03 10:48:16 UTC - RP612 - Deckard's System Scanner Restore Point66: 2008-07-03 09:37:40 UTC - RP611 - Installed Ad-Aware65: 2008-07-03 09:34:04 UTC - RP610 - Removed Ad-Aware SE Personal64: 2008-07-03 09:21:45 UTC - RP609 - Restore Operation63: 2008-07-03 09:15:12 UTC - RP608 - Restore Operation-- First Restore Point -- 1: 2008-04-07 17:03:28 UTC - RP546 - Removed Microsoft Office Publisher 2007Backed up registry hives.Performed disk cleanup.System Drive C: has 7.05 GiB (less than 15%) free.-- HijackThis (run as Mei-Hua HuangChen.exe) -----------------------------------Logfile of Trend Micro HijackThis v2.0.2Scan saved at 3:50:17, on 2008/07/03Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:�... Read more

Answer:Computer Shuts Down When Running A Variety Of Virus /adaware Scans

Hello bom1990Welcome to BleepingComputer ========================First please uninstall Mcafee.Then please post a new Hijackthis log.

2 more replies
Relevance 62.32%

Hi, as the title state, i would like to request help as i feel i might have some kind of malware or virus recently because i noticed 2 changes :
* My PC is of course slower than usual (i didn't install any new programs and i still have sufficient space so those shouldn't be the problem)
* During gaming, my ping has weird spikes and is usually stable at a much higher value than the usual so i tried to check which device might be taking up bandwidth , even after blocking every single MAC address besides this PC i still had those ping spikes so i thought its most likely this PC itself which is running internet consuming programs.
Here are the logs and thanks in advance.
 

Answer:Not Sure If My Computer Has Some Virus Or Malware ( Did Scans And Logs Are Attached )

According to your RKlog, you have a keylogger on your system. Did you put it on?
 

11 more replies
Relevance 62.32%

i recently obtained a virus from idk where so i run avg many times but it cloeses half way through and the same with many other anti virus programs, i feel that its the malware defense virus, i ran a Hijack this log so i was hoping someone will interpurt it for me and tell me what to do...my computer is an HP pavilions desktop a1253w
 

More replies
Relevance 62.32%

Ran all suggested scans:
Adaware
Spybot
CCcleaner
WindowsAntiSpyware
Trendonline scan
All in safe mode with system restore disabled and connection unplugged.
Found and fixed many problems and viruses.
Still getting popups!!!!!!!!!
Heres my hijack this log:
Any help appreciated!


Edit by bjgarrick: Unrequested, Inline HJT log removed!

 

Answer:ran all suggested malware, spyware, virus scans - Still getting popups!!

Please download Spy Sweeper
Click the link above to download the program.
Install it. Once the program is installed, it will open.
It will prompt you to update to the latest definitions, click Yes.
Once the definitions are installed, click Options on the left side.
Click the Sweep Options tab.
Under What to Sweep please put a check next to the following:

Sweep Memory
Sweep Registry
Sweep Cookies
Sweep All User Accounts
Enable Direct Disk Sweeping
Sweep Contents of Compressed Files
Sweep for Rootkits
Please UNCHECK Do not Sweep System Restore Folder.

Click Sweep Now on the left side.
Click the Start button.
When it's done scanning, click the Next button.
Make sure everything has a check next to it, then click the Next button.
It will remove all of the items found.
Click Session Log in the upper right corner, copy everything in that window.
Click the Summary tab and click Finish.
Paste the contents of the session log you copied into notepad and save it as spysweeper.txt and attach it to your next post along with a fresh HJT log.

 

11 more replies
Relevance 62.32%

Ok my Windows Server 2008 x64 the browser has been compromised every time i time to search for a page or if i directly type in a URL I get the following attachment named IE1.jpg
I have ran malwarebytes, NOD32 and Windows Defender to no avail. Please help below is also attached the HiJack this log.

Thank you in advance,

Brandon

Answer:Please Help, Browser Hijacked, Cannot pickup by virus malware scans

So I have ran just about every scan i could. I installed Firefox to see if it was just IE based but it is not Firefox is displaying the same thing. I cannot get to any online scanner because it redirects me.Hello brandonb138,We ask that once you have posted your log and are waiting, please DO NOT "bump" your thread or make further replies until it has been responded to by a member of the HJT Team. The reason we ask this or do not respond to your requests is because that would remove you from the active queue that Techs and Staff have access to. The malware staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response, there will be 1 reply. A team member, looking for a new log to work may assume another HJT Team member is already assisting you and not open the thread to respond.That is why I have made an edit to your last post, instead of a reply. Please do not multiple post here, as that only pushes you further down the queue and causes confusion to the staff.Please be patient. It may take a while to get a response but your log will be reviewed and answered as soon as possible.Thank you for understanding.Regards,The weatherman (Moderator)

3 more replies
Relevance 62.32%

Good morning, I have run multiple virus scans and malware scans both in regular and safe mode and they run clean each time now after they found a couple of trojan viruses two days ago. The issue is that I am noticing a huge amount of web traffic even when I am not running anything on my end. When I run TCPView it shows many "hits" of ip's from Russia and other countries as well. What can I do to delete or change whatever is causing this and is not found by the antivirus/malware programs?Any help would be greatly appreciated!Thanks in advance, TimeBanditgfile of Trend Micro HijackThis v2.0.2Scan saved at 8:31:56 AM, on 8/29/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16827)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Common Files\Apple\Mobile Device S... Read more

Answer:Hijack this file below: Virus scans and malware find nothing

Hello! My name is Sam and I will be helping you. In order to see what's going on with your computer I will ask for you to post various logs from the tools that we will use to resolve your issue. Please also share with me any information about how your computer is reacting and behaving each step of the way as we work through this process.We need to create an OTL ReportPlease download OTL from hereSave it to your desktop.Double click on the icon on your desktop.Click the "Scan All Users" checkbox.Push the "Run Scan" button.The scan should take just a few minutes.Copy the log that opens up and paste it back here in your next reply.=============The next log will show us any hidden files that are present.Download RootRepeal from the following location and save it to your desktop.Direct Download (Recommended)Primary MirrorSecondary MirrorSecondary MirrorSecondary MirrorZip Mirrors (Recommended if you have a slower connection or if the Direct Download mirror is down)
Primary MirrorSecondary MirrorSecondary MirrorRar Mirrors - Only if you know what a RAR is and can extract it.
Primary MirrorSecondary MirrorSecondary MirrorExtract RootRepeal.exe from the archive (If you did not use the "Direct Download" mirror).Open on your desktop.Click the tab.Click the button.Check all seven boxes: Push OkCheck the box for your main system drive (Usually C:), and press Ok.Allow RootRepeal to run a scan of your system. This may take some time.Once the sc... Read more

3 more replies
Relevance 62.32%

I have been having problems with my computer for over a week. Everything works fine for about ten minutes, after that I will be bombarded with multiple google chrome windows opening constantly. When I try to type something in the search bar everything will start to flicker like I am constantly pressing the space bar and enter. This happens with my entire computer, If I click the windows start button random programs will start opening like skype. It renders my computer completely useless and I will be forced to restart, after the computer has restarted everything works fine again for a short period of time.
 
I have ran a multitude of malware scans with such programs as: Microsoft Security Essentials, Malwarebytes, Adware Cleaner, JRT. Everything will always show up clean.
 
I do not know what to do at this point. I NEED HELP!!! 

Answer:Cannot get rid of virus. Malware software scans show up clean.

Hello fadunka, my name is Jo and I will help you with your computer problems.Please follow these guidelines:Logs can take a while to research, so please be patient.Read and follow the instructions in the sequence they are posted.print or copy & save instructions.back up all your private data / important files on another (external) drive before using our tools.Do not install / uninstall any applications, unless otherwise instructed.Use only that tools you have been instructed to use.Copy and Paste the log files inside your post, unless otherwise instructed.Ask for clarification, if you have any questions. Stay with this topic til you get the all clean post.My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.***1. Download Security Check by screen317 from here or here.Save it to your Desktop.Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.Vista / Windows 7/8 users right-click and select Run As Administrator.A Notepad document should open automatically called checkup.txt; please post the contents of that document.***2. Please download Farbar Recovery Scan Tool and save it to your Desktop.Note: You need to run the version compatible with your system. If you are not sure which version applies to your system, download both of them and try to run them. Only one of them will run on your system, that will be the right version.Right-click FRST / FSRT64... Read more

2 more replies
Relevance 62.32%

I obviously have a deep infection. After numerous attempts at scans and fixes by numerous programs, still no luck. I have a thread going in one of the other forums here, and I was advised by one of the techs to move it to this forum for more in depth assistance. To save typing, I will post the link to that thread, so you can see my symptoms and everything that has been tried as well as log files. http://www.bleepingcomputer.com/forums/topic364026.html

I have also attached a copy of the DDS log here in this current post.
 DDS.txt   9.79KB
  0 downloads

I hope I've given you all the info you need to help. If not, I will do my best to get you what you need. Thank you for your help.

**NOTE** while typing this post, using the infected PC, I received the blue screen of death 5 times. Wasnt doing anything but typing this. And then each time I obviously had to reboot, as soon as it got to my desktop, the blue screen shut me down again. Each blue screen mentioned the ldqgakb.sys file. You will see the full technical info in my thread posting. I had to finally boot into safe mode just to be able to type this.

Answer:Malware or virus infection preventing scans or fixes

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the resu... Read more

3 more replies
Relevance 62.32%

Several days ago I was performing an email merge for work that went awry. Attempts to stop Eudora from creating emails from blank records on the spreadsheet failed and I couldn't end the processes in Task Manager - so I just pulled the power on my laptop. On restart, Vista loaded and the mouse worked, but nothing would open. Attempts to run AVG, Prevx and Malwarebytes have all failed - they start, but then freeze up. I initially just thought I'd messed something up following the merge fiasco - but now think there must something else creating havoc - something downloaded from an email or the web.

Not sure what else you may need to know, but my HJT log is below. Computer did not come with a recovery disk. I did run Chkdsk/r at one point a couple of days ago and may have done more damage than good.

Any help would be gratefully appreciated as I am at my wit's end. Thanks in advance, Dena

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:26:26 PM, on 2/7/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Safe mode with network support
Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
R1 - HKLM\Software\M... Read more

Answer:Barely running in safe mode - no control & virus scans freeze up

So. . . . .a lot of views but no replies yet to original post. My computer is one month out of warranty and Toshiba is no help at all. With no restore points and only able to work in Safe Mode, I copied as many files as I could to an external drive, took a deep breath and activated the Toshiba Recovery partition on the hard drive to re-install 64 bit Vista. Everything seemed to be working - taking a long time, but working - then I got the blue screen.

The following technical info is what appears at the bottom of the screen:

*** STOP: 0x0000007E (0FFFFFFFFC0000005, 0xFFFFFA60001B9FC30, 0xFFFFFA60021CB918, 0xFFFFFA60021CB2FO)

*** volsnap.sys - ADDRESS FFFFFA6001B9FC30 base at FFFFFA6001B99000, Date Stamp 79198db

Everything I do now leads to this. Anyone have a notion about what it means? Thanks, Debra
 

2 more replies
Relevance 62.32%

My computer has been running very slow for the last week or so and I had some time this morning so I thought I would run the virus scans recommended on this site. I have attached them below

I was not able to run the malwarebytes. I downloaded the program, but as I tried to install and run it I kept getting the following error:

internal error: expression error "runtime error (at 79:177):
external exception E06D7363


And the program would not open and run. (I did rename it, as instructed, when I downloaded) it.

I have attached the rest of the logs. Is there any sign of some viruses that might be slowing my computer down? Oh, I am running a Dell Vostro 3700 laptop, with a 32 bit windows 7 operating system.
 

Answer:Computer running slow....Ran recommended virus scans and have attached logs

Before we continue I would like for you to use MSConfig to put this machine back into normal start up mode if not already.


Settings Manager <<< Please uninstall this.



Download and run OTM.

Download OTM by Old Timer and save it to your Desktop.


Right-click OTM.exe And select " Run as administrator " to run it.
Paste the following code under the area. Do not include the word Code.

Code:

:Files
C:\Users\brent\AppData\Local\Linkey
C:\Users\brent\Downloads\SoftonicDownloader_for_sketchup-make-2014.exe
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JJA9STWJ\WSSetup[2].exe
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JJA9STWJ\WSSetup[3].exe
C:\$Recycle.Bin\S-1-5-21-1815196250-2127635106-2665615271-1000\$RJY35HH.exe
C:\Program Files\SearchProtect
C:\Users\brent\AppData\Roaming\SearchProtect
C:\Program Files\Conduit
C:\Program Files\MyPC Backup
C:\Program Files\Settings Manager
C:\Program Files\Tbccint
C:\ProgramData\APN
C:\ProgramData\Babylon
C:\ProgramData\Conduit
C:\ProgramData\systemk
C:\Users\brent\AppData\Local\Babylon
C:\Users\brent\AppData\Local\Conduit
C:\Users\brent\AppData\Local\NativeMessaging
C:\Users\brent\AppData\LocalLow\Conduit
C:\Users\brent\AppData\LocalLow\Conduit
C:\Users\brent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
C:\Users\brent\AppData\... Read more

20 more replies
Relevance 62.32%

Running Win 7 Home Premium....laptop seemed to be shutting down randomly, so I thought there might be an overheating problem, but confirmed fan running. Shutdown frequency escalated and now startup completes through populating desktop and status bar, but nothing is clickable. Figured out that shutdown occurred when attempting manual virus scan. No matter what tool I used, system shutdown.

Booting up in Safe Mode works. Followed your procedures in Safe Mode. MGTools shut down the system, twice. Log attached is from 2nd run. Also, ran Malwarebytes in "Chameleon" and this was first of several times it ran without shutting system down.

Thank you in advance for your help!
 

Answer:Laptop Shuts Down When Running Anti-virus scans and won't complete boot up

You can rerun Hitman and have it fix all it found, but other than that, I am not finding any malware in your logs. I suggest you post in the software forum for further assistance.

Since you are not having any malware problems, it is time to do our final steps:

We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware. You can uninstall RogueKiller and HitManPro.
Go back to step 4 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
If running Vista or Win 7, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
Go to add/remove programs and uninstall HijackThis.
Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
related to MGtools and some other items from our cleaning procedures.
After doing the above, you should work thru the below link

How to Protect yourself from malware!

Malware removal from a National Chain = $149
Malware removal from MajorGeeks = $0

 

1 more replies
Relevance 62.32%

Well my mothers computer is infected and it has multiple priblems. Ill list the problems from minor annoyances to big issues.

Well i ran the Read and run first; however I cannot scan my computer for viruses because when i scans and finds a certain virus the computer goes to a blue screen. I ran combofix.exe, buy it could not create a log for the scan; however i did copy down a few files it got rid of.

Rootkit files combofix got rid of -
C:\WINDOWS\system32\Drivers\senekalfrqtmdb.sys
C:\WINDOWS\system32\senekagixdltkk.dll
C:\WINDOWS\system32\senekavmyvkrhd.dat
C:\WINDOWS\system32\senekahldanmxm.dll
C:\WINDOWS\system32\senekaqrisyxui.dll
C:\WINDOWS\system32\senekayuonspal.dat

In addition, Mozilla firefox will close as soon as i type in a url and press enter.
IE7 does the same thing.

The only logs i could get were from mgtools. Any time i run a virus scan my computer would crash and goto a blue screen.

I am using Windows XP Home Edition

Well i attached the MGtools logs as that is the only thing i could get.

Help would be appreciated if you need anymore information please do tell i will attempt to be as helpful as you always are.
 

Answer:Computer Infected, Crashes to blue screen when running virus scans

Please follow the below instructions to help you attempt to properly run the READ & RUN ME. We need all of the scans to run and we need the logs from them. A log from MGtools alone will not be adequate as it is not a removal tool. It is primarily an information collector. Note the instructions for using SUPERAntiSpyware give you suggestions on what to do if a crash occurs.



Please follow the instructions in the READ & RUN ME FIRST link given futher down and attach the requested logs when you finish these instructions.

If you have problems where no tools seem to run, please try following the steps given in the below and then continue on no matter what you find. You only need to try the TDSSserv steps if having problems getting scans in the Read & Run Me First.
TDSSserv Non-Plug & Play Driver Disable

If something does not run, write down the info to explain to us later but keep on going.
Do not assume that because one step does not work that they all will not.
READ & RUN ME FIRST. Malware Removal Guide

After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:

If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in... Read more

3 more replies
Relevance 61.5%

HiJack this log is below. My computer has slowed way down in the last few weeks and I can't figure out why.I'm not sure if all the detail on history will help but here's what I can recall. I'm running XP professional (32 bit encryption I believe). OS version 5_1_2600, SP 2.0 (installed over a year ago so not the culprit), Product 256_1.Scanned with cleanmgr, Ad-Aware, Spybot, Trend-Micro Housecall, McAfee Stinger, Kaspersky, Norton Antivirus, running ZoneAlarm, Windows updates are current.Back in Mid-January, McAfee required me to update their "internet security" program in order to get new virus definitions (McAfee shipped with the computer so I was using it until it expired). That is when a lot of problems began. Simultaneously, I decided to update to IE 7. I also was running ZoneAlarm.I needed to do backup - and I have used Ghost as I like the complete image of the hard drive. I first tried Ghost booting from a CD; since it was very slow, on Jan 22, 2007 I decided to try downloading a free copy of Ghost 10.0 to see if that would speed things up. It didn't, and twice, it crashed halfway through the 2nd DVD, a very bad crash (blue screen) and something about a Kernel_Page_Error or something. I was able to recover but XP warned me it had recovered from a serious error. I'm not sure what caused this error - later I realized I should have selected "partition to image" instead of "disk to image" and don't know if that was the problem. See... Read more

Answer:Xp Pro Suddenly Running Very Slowly - Help - Nothing Turns Up With Standard Worm/virus/trojan Scans

Since no one's replied yet and since I had to get anti-virus protection (trend micro for now), I'm posting a new hijack this log. I also ran some PC pitstop diagnostics (as shown in the new log) and also ran F-secure's blacklight (beta) which turned up nothing. (This isn't an attempt to bump ... merely to have a correct log here). I also installed Java 6.0 from the Sun website (currently turned off).(If it's of any relevance, I noticed in the msconfig "startup" tab, one of my entries (checked) is blank under "start up item" and "command" and location is HKLM\software\microsoft\windows\currentVersion\Run. Is this OK? Or is it some suspicious something starting at bootup?)Also: if nothing else, can hijack this experts please tell me how to deal with the "file missing" entries in the log. Logfile of HijackThis v1.99.1Scan saved at 9:42:37 PM, on 2/8/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.5730.0011)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\Program Files\Intel\Wirel... Read more

7 more replies
Relevance 61.5%

Hello! Thanks in advance for taking the time to listen to my proble.This all started when I received an email from my ISP giving a 1st Abuse warning that one of our devices was "...sending out spam attached emails.." so I began ensuring all PCs were up-to-date with windows updates and virus scans. When I attempted a Windows Update on this PC I received the error "Cannot display the page" after hitting either the "Express" or "Custom" button on the update site.AVG and Spybot S&D did not find anything during scans. I then downloaded and attempted to run Malwarebytes Anti-Malware which was going fine untill the system self rebooted half way throught. I now get a "Run-time error '0'" when I attempt to run Malware Bytes. I have followed the instructions on your site and unfortunately not been able to get RootRepeal to run. When it starts a screen saying "Initializing please wait.." comes up and stays up (I have tried overnight and for an hour). Task Manger reveals RootRepeal is using a constant 50% of CPU.Thanks for your help I look forward to hearing from you -larry __________________________________________________________________DDS (Ver_09-07-30.01) - NTFSx86 Run by Owner at 0:24:01.39 on Sun 20/09/2009Internet Explorer: 6.0.2900.2180Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.2046.1149 [GMT 10:00]AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D... Read more

Answer:Infected with unknown virus/malware blocking scans and updates

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

20 more replies
Relevance 61.5%

Hi guys and gals. I'm getting redirected on google and other search engines, to google then (or) to other websites. I tried malwarebytes, superanti-virus, and hijackthis but it will either not run at all, or it will only run for short time then it stops. I renamed those before downloading and it still wont run for long. After it stops and I click the icon it will then get something like "file not found, path way to ..." I even tried it in safe-mode, but it doesn't work.

Not sure if this helps, but rootrepeal ran:

ROOTREPEAL ? AD, 2007-2009
==================================================
Scan Start Time: 2009/08/25 21:14
Program Version: Version 1.3.5.0
Windows Version: Windows XP Media Center Edition SP3
==================================================

Drivers
-------------------
Name: 1394BUS.SYS
Image Path: C:\WINDOWS\system32\DRIVERS\1394BUS.SYS
Address: 0xF7560000 Size: 57344 File Visible: - Signed: -
Status: -

Name: Aavmker4.SYS
Image Path: C:\WINDOWS\System32\Drivers\Aavmker4.SYS
Address: 0xF7910000 Size: 19072 File Visible: No Signed: -
Status: -

Name: ABP480N5.SYS
Image Path: ABP480N5.SYS
Address: 0xF7808000 Size: 23552 File Visible: - Signed: -
Status: -

Name: ACPI.sys
Image Path: ACPI.sys
Address: 0xF7411000 Size: 187776 File Visible: - Signed: -
Status: -

Name: ACPI_HAL
Image Path: \Driver\ACPI_HAL
Address: 0x804D7000 Size: 2066048 File Visible: - Signed: -
Status: -

Name: ACPIEC.sy... Read more

Answer:Google Redirect - virus scans and malware removals wont run

Try running the RootRepeal Files scan.

7 more replies
Relevance 61.09%

Hi,I have been having problems with my web browser (firefox) crashing randomly and displaying some sites as a 1x1 pixellled jpeg. I'm not sure if it is related or not, but commonly this results in my laptop freezing and having to re-start.I was using Kaspersky as my antivirus but this showed nothing when performing full scans. I have since uninstalled this and am now using Trend Micro. Spybot found 2 trojans and removed them (I can't remember what they were called) but the problem still persists.My system restore points have mysteriously dissapeared too.I have tried using ESET online scanner but this crashes after getting around 3/4 of the way through and causes my system to restart.Following your sites advice before posting I downloaded and attempted to run the DDS tool, which after 5 mins or so told me the batch files could not be found.I had previously posted this in "am i infected, what should I do" and thanks to a prompt response from Garmanma I have now downloaded and run RSIT by random/random. I have pasted the log at the end of this message.I think I have covered all the problems that I have been having.Please contact me should you need further information.Eagerly awaiting your response.Mark Here is my RSIT log file;Logfile of random's system information tool 1.06 (written by random/random)Run by Mark at 2009-04-07 13:50:28Microsoft? Windows Vista? Home Premium Service Pack 1System drive C: has 13 GB (23%) free of 57 GBTotal RAM: 2037 MB (55% free)Logfile o... Read more

Answer:Vista crashes when performing virus scans/online virus scans

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explanation about the tool. No input is needed, the scan is running.Notepad will open with the results, click no to the Optional_Sca... Read more

7 more replies
Relevance 61.09%

Logfile of HijackThis v1.99.1Scan saved at 12:47:25 AM, on 12/16/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Ahead\InCD\InCDsrv.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\Program Files\Common Files\Symantec Shared\SNDSrvc.exeC:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exeC:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exeC:\Program Files\Common Files\Command Software\dvpapi.exeC:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exeC:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtr... Read more

Answer:Maintain Updates, Spy/virus/malware Scans, Defrag, Errors Still Keep Popping Up

You have Norton and Command Software AV's - only one active AV should be running - remove one

Explain in better details the problem you have

Have you checked spysweeper for updates and run?

16 more replies
Relevance 60.27%

my laptop is giving me strange problems recently... most annoying: every time i run a virus scan (bit defender or spybot search and destroy) it just shuts itself off after short time, no announcement of any sort before or after, just going depressively black... any idea what has happened to it? my guess is that it has something to do with a virus as it only happens when i run the scans?!thanx a lot for any help!

Answer:shutting down when running virus scan

Although it's not guaranteed, it very well could be a virus.  Update your virus definitions (also, get AVG Anti-Spyware if you don't already have it), reboot in Safe Mode, and then try your scans.  Does this make a difference?

3 more replies
Relevance 59.45%

I have a bad virus on my pc after downloading something that I thought was safe (I know, im stupid). I opened the task manager and the file "demerit" was listed multiple times. I tried to get rid of them by ending the task but it didn't help. I also tried deleting the files in safe mode but I got "you don't have permission" or "can't delete bc file is open in another program"
A few hours later a screen saying "configuring updates don't shut down computer" popped up and after that I got a message saying exactly this:
"Microsoft Windows has detected some suspicious activities on this computer. Due to having a Network Security Breach your Microsoft Windows got de-activated, to activate enter the product key".
Then it gives this Error Code:
0x00AEM001489
Then a support phone number to call- 1-855-532-0777
I shut down and restarted the computer a few times. Within a few minutes of being logged in the message about configuring updates would take over and log me out. Very frustrating bc I don't have time to even try and fix anything know.
Please help!! Thank you :)

Answer:Virus/Malware shutting down pc

If you can download and install "Malwarebytes (free)"
Run it and see if it can uninstall the scam virus.
More info:https://malwaretips.com/blogs/remove...m001489-virus/

more replies
Relevance 59.04%

Hi folks, apologies for probably talking in computer nonsense and thanks in advance for your time:

I have put the belarc report on my computer below. Hope this is in a readable format.

I thought for a long time that this was a virus but I'm not so sure now. I have two hard drives. The problem occurred when I was wiping the C: drive with ace utilities, something I do regularly. I stopped on 70 percent by mistake. After which the computer began to play up. Any scans apparently keep running after they hit a certain point but they no longer scan. The programmes then freeze while they still sound like they are running. My hard drive claims its full but I moved loads of files and programmes to the E: drive without making any dent in the disk space.

Can anyone spot where I blundered?

Thanks again



Operating System System Model
Windows XP Home Edition Service Pack 3 (build 2600) No details available
Processor a Main Circuit Board b
1.80 gigahertz AMD Sempron
128 kilobyte primary memory cache
128 kilobyte secondary memory cache Board: K8Upgrade-NF3 1.00
Bus Clock: 200 megahertz
BIOS: American Megatrends Inc. P1.60 11/30/2005
Drives Memory Modules c,d
483.98 Gigabytes Usable Hard Drive Capacity
319.98 Gigabytes Hard Drive Free Space

HL-DT-ST DVDRAM GSA-4167B [CD-ROM drive]
3.5" format removeable media [Floppy drive]

Maxtor 6L160P0 [Hard drive] (163.93 GB) -- drive 0, s/n L317VPYG, rev BAJ41G20, SMART Status: Healthy
SAMSUNG... Read more

Answer:[SOLVED] all scans, spybot search and destroy, ace utlities, virus scans, fail

Hello Tarzanlordofthe, Welcome to TSF!


Quote:




The problem occurred when I was wiping the C: drive with ace utilities, something I do regularly. I stopped on 70 percent by mistake.




This is the root of your problem....The fact that you stopped the wiping process before it had time to finish means that the C: Drive is more than likely corrupt now, due to the incompletion of the task.

The only way to rectify this situation now is to restart the wiping process again, and allow it to finish in its own time.

To help you with this process, please follow the guidelines in this checklist...

The Windows? XP Installation Check List.
1. The Windows? XP SP2-CD (naturally)

2. Darik's Boot N Nuke?..A Disc wiping Utility; or alternatively... Killdisk?. (Click the coloured Links).

3. Please read this guide...A Step-by-Step Installation Guide with explanations for each step of the installation.

4. The Motherboard CD that contains all the necessary Drivers etc.

A few tips:
a. Darik's Boot N Nuke will take about 4? hours to completely wipe the Drive; however, this will vary depending on how big the Drive is. (That estimate is for a 80Gb HDD). Wiping the HDD this way will give you the best chance of a 'clean' uninterrupted installation.

b. When you get to Figure 7 in 'The Guide', you can create more than one... Read more

18 more replies
Relevance 58.63%

Sorry but I'm not sure if this is even pasted in a sensible way. Hope its readable
The general consensus is that my computer is failing because of a registry problem. This is just a last ditch effort to see if you agree.

I couldn't do all of the steps because my computer would not uninstall any programmes. The list could not be recovered

Steps one and two worked

I couldn't download the restricted sites because I use Mozilla

I couldn't disinfect using Panad becasue the option wasn't available
Thanks in advance for your time








;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-10-14 20:03:39
PROTECTIONS: 4
MALWARE: 8
SUSPECTS: 21
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Avira AntiVir PersonalEdition Classic 0.0.0.0 Yes Yes
Avira AntiVir PersonalEdition Classic 6.38.1.29
Yes Yes
Avira AntiVir PersonalEdition Cla... Read more

Answer:from all scans, spybot search and destroy, ace utlities, virus scans, fail

Hello and welcome to TSF.

Apologies for the long delay in response. We have a large number of HijackThis logs to handle and it?s taking us longer to catch up. If you haven?t received help elsewhere already and still require assistance please perform the following:Download RSIT by random/random and save it to your desktop.
Double click RSIT.exe to start the tool and click Continue at the disclaimer.
When the scan completes it will open a log named log.txt maximized, and a log named info.txt minimized.
Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of both here.

Please note that the forum is very busy and if I don?t hear from you in three days this thread will be closed.

19 more replies
Relevance 58.63%

Hello all. It feels really weird that my first post is to ask for help. But I am stumped. I'm experiencing depressing problems with my PC right now. It shuts down when I use too many programs. And it shows this error when it does:There was problem starting
C:\Users\Pearl\AppData\Local\ulixobed.dll
The specified module could not be found.
I'm not sure what think here. But, I've already tried all options like running an AV and Anti-Malware scan. I used Avira and MBAM, in case you needed to know. I Googled the better part of my day and came across this seemingly wonderful tool called HiJackThis. I followed the instructions and saved my log. Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:34:46 AM, on 8/03/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\... Read more

Answer:Windows 7 -- malware/virus shutting down my pc

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about the Windows version you are using: What we in particular need to know is version, edition and if it is a 32bit or a 64bit system. [/b]If you are unsure about any of these caracteristics, just let us know and we'll help you figuring it out. Please also tell us if you have your Windows CD/DVD handy.Please include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Even if you have already provided information about y... Read more

2 more replies
Relevance 58.22%

I few weeks ago I got hit hard by some kind of virus when trying to watch a "Top Gear" episode/video on a car site that required downloading a minerva torrent. The other members of the car site were I got the link were not infected when doing this except one person had something that tried to install but was blocked. One of the main ones that came up was Trojan SHeur2AMPY and Generic 13BLTA. I was unable to stay in safemode to try to run scanners. It would go into the menu after hitting F8 but when I would select what type of safemode I wanted(networking, etc) it would say it had a problem and could not do it. I ran a bunch of scans with AVG, Spybot, Yahoo antispy, Malwarebytes, Windows malicious tool in regular mode, and downloaded Avira. It seemed to clear most of it up but every so often Spybot and Spywareblaster would show 2-4 sites without protection when I would check them and I still can not scan in safe mode but aside from being a little slower then normal the computer has run fine for a couple weeks after doing all the scans.

Today the computer has a bunch of things on it, when I run Avira it shuts the computer down as soon as it starts scanning, with AVG it reports a bunch of different infections of Trojan BackDoor Generic 112ND but AVG will not let me remove any of them, it says "cannot be removed by standard user rights, Do you want to remove threat as power user?" and after selecting yes it still won't let me, it is completely usele... Read more

Answer:virus shutting down computer when running Avira and will not let me boot in safemode

Now when I download Dr. Web Cure It and try to run it I get some Microsoft error that it encountered a problem and it asks me if it wants to send the information to Microsoft which I decided not to. Not sure if what it is but this virus has rendered AVG useless (or maybe AVG is just useless because it did not stop the virus and won't let me get rid of it)because it will not remove the 106 Trojan Horse Backdoor Generic1123NE it found for some reason(it says it cannot be removed by standard user rights and if I want to remove as a power user and it still won't do it when I choose that). When I try to run Avira it shuts down my computer as soon as it starts scanning. Malwarebytes only finds Trojan.TDSS now in which it keeps coming back. Spybot only found Win32.Agent.P2. SuperAntiSpyware found a few things in the first scan but now does not find anything.

Any advice?

3 more replies
Relevance 58.22%

I'm thinking I've got some sort of virus or malware on my computer as my Windows firewall keeps getting turned off without any action taken by me. Along with that I randomly get an error message saying:
C:\WINDOWS\Sysvxd.exe
The NTVDM CPU has encountered an illegal instruction.
Sc:0562 IP:06d0 OP:63 6f 6c 6f 72 Choose ?Close? to terminate the application.

I have no idea what it would be as my virus protection will not pick it up. It's not really a serious problem as the firewall gets shut down maybe only once or twice a day, and I am always able to immediately turn it back on, but it is definitely annoying, the random error message causes programs to crash, I don't know what it might be doing that I am unaware of, and I just generally want it off my computer.
Any help would be greatly appreciated.
Sean

DDS (Ver_09-05-14.01) - NTFSx86
Run by Sean at 16:22:29.00 on Fri 06/12/2009
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_14
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3071.2221 [GMT -4:00]

AV: Sophos Anti-Virus *On-access scanning enabled* (Updated) {3F13C776-3CBE-4DE9-8BF6-09E5183CA2BD}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe... Read more

Answer:Unknown possible Virus/malware shutting down my Firewall

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

13 more replies
Relevance 58.22%

I have a workstation running XPP with SQL express and other production software that has been infected with something that shuts down the NIC and reboots the machine.Machine now running in safe-mode with networking for credit card authorizer to function.Spent many hours scrubbing the machine and thought I had got it cleaned - 24 hours later it is in the same condition.Have run AVG (in Safe-mode consle and GUI), malwarebytes, and SuperSpyWare - the safe-mode AVG cleared enought to boot normal. Ran the AVG root-kit and full scan - they were clear.This bad-ware creates multiple folders in the root that look like SQL installs that failed - they contain a EULA.TXT that is locked and can't be deleted in OS operation. Used UBCD4W to remove them a day ago - now they are being generated again.Trying to avoid a format and re-install as the production software requires a great deal of configuration when installed.Has anyone seen this activity and does anyone have a solution?

Answer:Unknown Virus/Malware/Spyware shutting down NIC

Hello , And to the Bleeping Computer Malware Removal Forum. My name is Elise and I'll be glad to help you with your computer problems.I will be working on your malware issues, this may or may not solve other issues you may have with your machine.Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.The cleaning process is not instant. Logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen. Please reply using the Add/Reply button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, send me or a moderator a personal message with the address of the thread or feel free to create a new one.You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.-----------------------------------------------------------If you have since resolved the original problem you were having, we would appreciate you let... Read more

2 more replies
Relevance 57.4%

Hi All,

Been having this problem since yesterday. Whenever I start up windows, it freezes after a couple of minutes. Tried going into safe mode to run virus scan (Avira and Malwarebytes) but both freeze halfway through scanning and I have to do a hard reset. No idea at all what is wrong with it.

Also find that when I try to open Adobe PDF Reader, it shows this message when I am in normal mode. 'The windows installer service could not be accessed. This can occur if you are running in safe mode, or if the windows installer is not correctly installed.' Right after that, it freezes. Not sure if that's relevant.
Please help me! Thanks a lot in advance!

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:22:47 AM, on 2/4/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Pro... Read more

Answer:Computer freezes in normal mode after a few minutes and then in safe mode when running virus scans

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about the Windows version you are using: What we in particular need to know is version, edition and if it is a 32bit or a 64bit system. [/b]If you are unsure about any of these caracteristics, just let us know and we'll help you figuring it out. Please also tell us if you have your Windows CD/DVD handy.Please include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Even if you have already provided information about y... Read more

3 more replies
Relevance 56.99%

On advice from machiavelli, I am starting this thread here, after first posting it in the virus section. 
 
System: Win 7 pro 64 bit. 
 
The problem is that with scans from various security programs: microsoft's MSE antivirus scanner, Superantispyware, etc, windows was shutting down in mid scan. 
 
Nothing so far has fixed the problem.
 
MSE full scans run completely in safe mode however, although it is taking over 2 hours when previously a full scan took 1-1/2 hour.
My last quick scan with MSE in normal mode completed successfully.  

Answer:Windows Shutting Down During Scans

Desktop or laptop?  If laptop, maybe proc and/or HD getting too hot.  If that turns out to be the case:  get an external cooling assembly.

29 more replies
Relevance 56.99%

HELP! My computer keeps shutting down for no reason! Usually when I try to run my Nortin Antivirus the fan kicks into high and shortly after the computer completely powers off without warning. Sometimes it just powers off at random times. I have also received warnings that my virtual memory is running low. I have not done anything to my computer so I really dont understand what it could be. HELP!!! Thanks
 

Answer:HELP!!! Computer Keeps Shutting Down!!! Cannot run Scans!!!

try to go to "my computer" its properties and disable automatic reboot. This will allow you to see a BSOD that will give you a name for the error (0x00000000) and possibly give you a driver for the error
 

2 more replies
Relevance 56.17%

My problem started with occasional redirects a few days ago. Mbam and Avira scans were coming up clean, though. Now I'm getting random popups, and all anti-virus scans automatically shut down when I start them - even in Safe Mode.

I followed the "first steps," but the GMER scan shut down as well. Here are the others:

.
DDS (Ver_2011-08-26.01) - NTFSx86 NETWORK
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_20
Run by Bryan at 21:08:39 on 2011-09-23
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3326.2820 [GMT -5:00]
.
AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\3818166784:4284836636.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://red.clientapps.yahoo.com/customize/ie/defaults/sp/sbcydsl/* Yahoo!
uWindow Title = Windows Internet Explorer provided by Yahoo!
uDefault_Page_URL = hxxp://www.yahoo.com
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=yie7c
uStart Page = hxxp://www.google.com/
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/* Yahoo! S... Read more

Answer:Browser redirects, a/v scans shutting down

Hello and welcome to TSF


We will do our best to assist you. However, in order to do so, please follow all instructions provided in the sequence given. Do not install/re-install any programs or run any fixes or scanners that you have not been instructed to use. This may cause conflicts with the tools being used in the cleanup process.

If you have questions regarding any of the instructions or problems running any tools, please let us know.

You may wish to subscribe to this thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant Notification, then click Subscribe.

-------------------------------------

Delete your current copy of Gmer. Download GMER Rootkit Scanner from here to your desktop. Double click the exe file.
If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO, then use the following settings for a more complete scan.



Click the image to enlarge it


In the right panel, you will see several boxes that have been checked. Uncheck the following ... Sections
IAT/EAT
Drives/Partition other than Systemdrive (typically C:\)
Show All (don't miss this one)

Then click the Scan button & wait for it to finish.
Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file which cannot be uploaded to your post.
Sa... Read more

19 more replies
Relevance 56.17%

I have no idea what kind of virus I have but this laptop is about to get thrown out a window. It started out with one of those fake internet defender-type things (I'm not even sure exactly what the program was), it prevented me from doing anything on the computer until I bought it's fake license crap, but I recognized what it was and was able to stop it from running by simply restarting and getting task manager open to disable it before it could start up. Then I went to msconfig and figured out which process it was. It said Copyright IKLEM software, and the manufacturer was listed as Heaventools software. I believe the process was defender.exe or something. There was a program called defender.exe in my AppData\Roaming folder so I got rid of that and decided it was time to make sure I had decent antivirus software on here (because I didn't before). So I installed the newest version of Avast and set it up to do the most hardcore scan of my computer possible. I knew it was gonna take a long time, so I went to bed. Although before that, I noticed that iTunes was having some issues, the Bonjour service wasn't running and it was saying the ipod service wasn't installed correctly, but I was tired and I didn't really think much of it. So when I woke up this morning, I noticed that avast was stuck scanning in the exact same spot it had been last night and now said none of its services were running. I checked under services.msc and the actual avast services... Read more

Answer:Nasty Vista virus shutting down malware programs and generally being EVIL

Welcome aboard Download Security Check from HERE, and save it to your Desktop. * Double-click SecurityCheck.exe * Follow the onscreen instructions inside of the black box. * A Notepad document should open automatically called checkup.txt; please post the contents of that document.=============================================================================Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList last 10 Event Viewer logList Installed ProgramsList Users, Partitions and Memory sizeClick Go and post the result.=============================================================================Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/products/malwarebytes_free to your desktop. * Double-click mbam-setup.exe and follow the prompts to install the program. * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. * If an update is found, it will download and install the latest version. * Once the program has loaded, select Perform quick scan, then click Scan. * When the scan is complete, click OK, then Show Results to view the results. * Be sure that everything is checked, and click Remove Selected. * When completed, a log will open in Notepad. * Post the log back here.Be sure to restart the computer.The l... Read more

3 more replies
Relevance 56.17%

I recently started using the various bootable anti-virus/malware scanners, like the Kaspersky's Rescue Disk.

However i am really interested in how do these bootable scans compare to the "normal" Windows run scans.

For example, would a maximum scan from Kaspersky Rescue Disk find as many malware/viruses as a max scan from Kaspersky Total Security?

Assuming both anti-virus/malware scanners are up to date (latest versions and databases), which is expected to reliably find and clean more viruses/malware?

Thank you for helping out
 

Answer:Are bootable anti-virus/malware scans as good as the "normal" ones?

These should be using the same databases and the same engines (especially if the bootable scan does an online update to get the latest), so the results should be similar. A bootable scan should also catch some viruses that may be detectable, but can hook into the system and prevent detection. A runtime scan may catch viruses that can only be detected while running (not sure if those exist).
 

1 more replies
Relevance 55.76%

Hello - I am a first time poster that is looking for some possible help before I unplug this computer and take it to the shop. I have a Dell 2350 (approx 3 yrs old) running Windows XP SP2. For the past couple of weeks, the computer has been running very slow and shuts down during any scans or programs running (ex. Ipod updates, virus scans,spyware scans, etc.), which means I have been unable to try to figure out what the problem is. I have been able to run Hijack this and have posted the results below: Logfile of Trend Micro HijackThis v2.0.2Scan saved at 1:06:33 PM, on 11/24/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16544)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\savedump.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exeC:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exeC:\WINDOWS\Explorer.EXEC:\PROGRA~1\Iomega\S... Read more

Answer:Computer Running Slow - Shuts Down During Scans Or Program Running..please Help!

I apologize for the very long delay. We have a huge backlog of HijackThis Logs to handle and it has been taking us greater time than normal to get caught up. If you are still having a problem, and want us to analyze your information, please post a brand new hijackthis log. If we do not hear back from you within a couple of days we will need to close your topic.When posting your logs please post them directly into the reply. Do not attach them.Also make sure you have already followed the steps outlined below:Preparation Guide For Use Before Posting A Hijackthis LogThank you for your patience.

1 more replies
Relevance 55.76%

Hello eveyone. I've been pulling my hair out trying to figure out why my pc shuts down during adaware and spyware scans. As soon as I run a scan with various programs the pc shuts right down. Hopefully someone can help me through this file! Thank for any help!!!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:32:40 PM, on 9/27/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\D-Link\Air USB Utility\AirCFG.exe
C:\Program Files\Norton Password Manager\AcctMgr.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Symantec\Norton AntiBot\agent\bin\NortonAntiBot.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\ALU... Read more

Answer:Having a problem with my computer shutting down during adaware scans

does it shut down when you do a full norton scan
 

3 more replies
Relevance 55.76%

Since the 23rd my antivirus has been acting strange. It says there's been changes to the registry and to run the scan in safe mode. This didn't seem to do much it detected a trojan though. Since then the comp has had problems trying to shut down. That was the first problem i noticed. After that a couple of times new tabs opened up displaying that java teacup, but nothing came up it usually crashed firefox. After a couple of restarts and trying to use malware removers, I have found that it seems to open up new tabs to web addresses that don't actually work, a tab will open and it will say unable to connect.

If you need any more information please let me know. I'll appreciate any help you can get. Below is the DDS log. I've attached the other things I was advised to.

DDS (Ver_10-03-17.01) - NTFSx86
Run at 10:05:56.42 on 25/07/2010
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_21
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1022.490 [GMT 1:00]

AV: McAfee VirusScan Enterprise *On-access scanning disabled* (Updated) {918A2B0B-2C60-4016-A4AB-E868DEABF7F0}
FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Pro... Read more

Answer:Malware/virus/worm? Trouble shutting down, opening of tabs, bypassed antivirus

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

Please note that these fixes are not instantaneous. Most infections require more than one round to properly eradicate.

Please stay with me until given the 'all clear' even if symptoms seemingly abate.

Kindly follow my instructions and please do no fixing on your own or running of scanners unless requested by a helper.

------------------------------------------------------

While Spybot's TeaTimer is an excellent tool for the prevention of spyware, it can sometimes prevent tools from fixing certain things.
Please disable TeaTimer for now until you are clean. TeaTimer can be re-activated once your logs are clean.Open Spybot Search & Destroy.
In the Mode menu click Advanced mode if not already selected.
Choose Yes at the Warning prompt.
Expand the Tools menu.
Click Resident.
Uncheck the Resident "TeaTimer" (Protection of overall system settings) active. box.
If TeaTimer gives you a warning that changes were made, click the Allow Change box when prompted.
In the File menu click Exit to exit Spybot ... Read more

13 more replies
Relevance 55.35%

Listing requested logs for this issue. Thanks in advance for your assistance.
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015
Ran by Philip at 2015-06-01 11:10:33
Running from C:\Users\Philip\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================

Administrator (S-1-5-21-733529448-3193121913-2867107617-500 - Administrator - Disabled) => C:\Users\Administrator
Guest (S-1-5-21-733529448-3193121913-2867107617-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-733529448-3193121913-2867107617-1003 - Limited - Enabled)
Philip (S-1-5-21-733529448-3193121913-2867107617-1001 - Administrator - Enabled) => C:\Users\Philip

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Panda Free Antivirus (Enabled - Up to date) {5FD6C936-849B-5CE2-14BA-709E1D6FD1DA}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Panda Free Antivirus (Enabled - Up to date) {E4B728D2-A2A1-536C-2E0A-4BEC66E89B67}
FW: Panda Firewall (Disabled) {67ED4813-CEF4-5DBA-3FE5-D9ABE3BC96A1}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled man... Read more

Answer:Side bar "crazy score" and browser re-directs immediately after mbam-malware scans removing virus

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015
Ran by Philip at 2015-06-01 11:10:33
Running from C:\Users\Philip\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================

Administrator (S-1-5-21-733529448-3193121913-2867107617-500 - Administrator - Disabled) => C:\Users\Administrator
Guest (S-1-5-21-733529448-3193121913-2867107617-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-733529448-3193121913-2867107617-1003 - Limited - Enabled)
Philip (S-1-5-21-733529448-3193121913-2867107617-1001 - Administrator - Enabled) => C:\Users\Philip

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Panda Free Antivirus (Enabled - Up to date) {5FD6C936-849B-5CE2-14BA-709E1D6FD1DA}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Panda Free Antivirus (Enabled - Up to date) {E4B728D2-A2A1-536C-2E0A-4BEC66E89B67}
FW: Panda Firewall (Disabled) {67ED4813-CEF4-5DBA-3FE5-D9ABE3BC96A1}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version:... Read more

5 more replies
Relevance 55.35%

Here is my original topic in the "Am I Infected, What Do I Do?" Forum, describing all my original symptoms:
http://www.bleepingcomputer.com/forums/topic417241.html

Since the last post, the virus has completely disabled Firefox, even upon uninstalling, manually deleting all Mozilla-related files, restarting, and reinstalling, it still won't work. It gives me the same "Windows cannot access the specified device, path, or file. You may not have the appropriate permissions to access the item". Even when I had uninstalled Firefox I noticed there was a firefox.exe without the firefox logo still in the Programs\Mozilla Firefox folder. Deleted that, tried removing everything again and reinstalling, still can't get firefox open. Now this thing is starting to piss me off. I have MOST of my bookmarks backed up but not all (I know, I know...) It tried doing it with iTunes as well, but when I removed all iTunes and its services from my computer and reinstalled it now runs fine and even saved my library and play counts and everything. It seems the virus has not currently hijacked my Apple Mobile Device, Bonjour, or, iTunes, iTunesHelper services at the moment, so I'm going to re-do a scan of MiniToolBox to see if we get some different results since it showed an error in those processes, and I'll post all the required log files that I can, but anything that requires anything besides just a diagnostic scan my computer seems to kill permanently at thi... Read more

Answer:Vista virus of some kind shutting down ALL malware removal programs and altering system processes

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.Do not run any other tool untill instructed to do so!Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.Run Combofix:You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<Combofix may need to reboot your computer more than once to do its job this is normal.You can download Combofix from one of these links.Link 1Link 2Link 3 1. Close any open browsers or any other programs that are open.2. Close/disable all anti virus and anti malware programs so they do not interfere with the r... Read more

33 more replies
Relevance 54.53%

This is my first post ever, so I am new to this. I will make this as plain as I know how.

My pc obviously took on a virus. All desktop icons disappeared, wallpaper gone, lots of popups, and when you search for something on the net, it sends you to nothing but virus removal pages wanting you to buy it, etc etc etc.

Here's what I have done so far:

I removed the hard drive, took it to another PC, and loaded as a secondary drive. I ran a McAfee virus scan, superantispyware scan, and spybot scan to try to weaken it.

I put the hard drive back in the original PC and now I have icons back, wallpaper, and things run somewhat smooth. However, it will NOT allow me to run my Microsoft essentials virus scan, superantispyware, or even combofix. It starts running, then disappears off the screen like it never existed. Wont even let me update my virus protection. It updates for a long way, then freezes, and have to restart.

I installed Hijackthis and Malwarebytes. They begin to run then they disappear too. Lots of times, but not every time I try to run one of these, I get the blue screen of death. The technical information it gives me on that screen is:
STOP: 0x000000D1 (0xF7AF7000, 0x00000002, 0x00000000, 0xab0dc747)
ldqgakb.sys - address AB0DC747 base at AB0D8000, datestamp 4cf44c8f

I have also typed MSCONFIG in my run command, went to startup, and didnt find anything suspicious. I did disable anything I know I did not need.

Something is running somewhere that... Read more

Answer:Virus blocking me from running any virus or malware removal EXE

Oh, and also, I will say, I did see signs of "antivirus 2010". I removed in in add/remove programs, not knowing that's apparently a virus. I know that its not really removed, so could this be my issue?

26 more replies
Relevance 54.53%

Is it okay to run malwarebytes anti malware trial version, real time protection alongside an existing anti virus ?

Would they conflict?
I have MBAM free version but there is an option to use the trial pro version which is real time protection. I am just wondernig if real time protection would oonflict with my microsoft security essentials anti virus ?

thanks

Answer:Will running malwarebytes anti malware trial version ( real time protection ) conflict if running alongside an existing anti virus

They will work good together. What you do not want is more than one anti-virus program running.

3 more replies
Relevance 53.71%

My Windows 8 computer has been infected with malware/adware. When I browse the internet there are ads displayed by edeals. I've followed many guides to removing it, but none have worked. I've scanned my pc with malwarebytes, adwcleaner, and junkware remover.
Here is the result of the scan with Adwcleaner: 
# Updated 21/05/2015 by Xplode
# Database : 2015-05-21.2 [Local]
# Operating system : Windows 8.1  (x64)
# Username : Jed - JEDPC
# Running from : C:\Users\Jed\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>;*origin.com;*ea.com;*akamaihd.net
Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxp=127.0.0.1:12289
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [DefaultConnectionSettings]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [SavedLegacySettings]

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v


-\\ Google Chrome v


*************************

AdwCleaner[R0].txt - [2109 bytes] - [24/05/2015 11:15:26]
AdwCleaner[R1].txt - ... Read more

More replies
Relevance 52.48%

Hi

My husbands computer is running windows 7 and has picked up a virus/malware. Had problems running malwarebytes, so ran Rkill (eventually!!) and then malwarebytes which found 5 infections which we removed. Restarted computer and still got the pop up box. The pop up warns that you have a virus and there is a pop up box that appears when you try to run any programme and blocks the programme from running. The original problem also meant couldn't access internet even in safe mode. Loaded Rkill and MBAM from a memory stick and copy pasted to desktop.Pop up box text shown below.

security alert
virus alert
application cannot be started
the file sxpwutil.exe is damaged
do you want to activate your antivirus software now?

on the task bar it pops up with antivirus software alert warning of a virus 'win32/nuqel.E'
and a window with antivirus programme which looks like it is running an antivirus programme. The programme box has a green shield icon on the left.

Hope this is clear. Look forward to some help
Thanks in advance for your time

Answer:virus, malware even after running malwarebytes

Help!!!Please can someone point me in the right direction for this. My husband is driving me nuts being computerless for almost a week. Can't open anything without the virus popping up and no internet. Thanks

1 more replies
Relevance 52.48%

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i3 CPU 550 @ 3.20GHz, Intel64 Family 6 Model 37 Stepping 5
Processor Count: 4
RAM: 7991 Mb
Graphics Card: Intel(R) HD Graphics, -324 Mb
Hard Drives: C: Total - 290967 MB, Free - 167482 MB;
Motherboard: Dell Inc., 0C2KJT
Antivirus: PC Cleaner Pro, Updated: Yes, On-Demand Scanner: Disabled

Avast always come up saying it has found threats, however whenever I click on show results it won't open.

Thanks
 

Answer:PC Running Slow/ Possible Virus/Malware

10 more replies
Relevance 52.48%

Hi..
My processor seems to be running at 100%.
When i look on Task manager it usually drops down.
Have I got a virus or malware that avg & spybot search and destroy won't detect?
I would be gateful if anyone could help me with this..
below is the hijack this log..
Thx.
wiganT.

Logfile of HijackThis v1.99.1
Scan saved at 19:46:53, on 16/02/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18372)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Creative\Shared Files\... Read more

Answer:Processor running at 100%..not sure if I have a virus or malware

Hi Welcome to TSG!!
If you still need help please post a new hijackthis log with word wrap turned off and don't do anything special to the text.
 

3 more replies
Relevance 52.07%

My computer is running extremely slowly, both on the internet and with regular programs.  I have Avast and ZoneAlarm, both report no issues.  I did a boot time scan with Avast and nothing was found.  I also ran Malwarebytes, and it did not find anything.  Any help with be greatly appreciated, thank you!

Answer:Computer running very slowly, possible Malware or Virus?

have Avast and ZoneAlarm

 
Here at Bleeping Computer, we do not recommend the use of more than one anti-virus, as this can cause unforeseen consequences. Further more, I recommend you uninstall one of them.
 
Hello there    
 
Welcome to Bleeping Computer, I'm LighthouseParty. Let's run a couple of scans to see what could be causing this.
   Please download MiniToolBox to your desktop
Double click MiniToolBox.
Select the following and then press go.
Post the log in your next reply.
Flush DNS
Reset IE Proxy Settings
Reset FF Proxy Settings
List Installed Programs
List Restore Points
  Please download Malwarebytes Anti-Malware to your desktop
Double click mbam-setup-x.x.x.xxxx and follow the on-screen instructions.
On the dashboard, click update now.
After that, click scan now - the scan will now begin.
When the scan's completed, select apply actions - make sure the action is quarantine.
Restart your computer.
How to get the log.
On the dashboard, select the history tab and click application logs.
Select the log which has the time and date of when you did the scan.
Click copy to clipboard and paste it into your reply.
Please download Security Check to your desktop
Double click SecurityCheck and follow the on-screen instructions.
A log should open, called checkup.txt.
Please post the contents of it in your next reply.
Non-malware removal steps
 
Run System File Checker - http://support.microsoft.com/KB/92983... Read more

10 more replies
Relevance 52.07%

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:04:40 PM, on 6/13/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\WINDOWS\system32\AESTFltr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\PC Tools Security\BDT\FGuard.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\idt\wdm\STacSV.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Alw... Read more

Answer:Possible virus or malware... computer running slow

Hello and welcome to Tech Support Guy.

My name is km2357 and I will be helping you to remove any infection(s) that you may have.

I will be giving you a series of instructions that need to be followed in the order in which I give them to you.

If for any reason you do not understand an instruction or are just unsure then please do not guess, simply post back with your questions/concerns and we will go through it again.

Please do not start another thread or topic, I will assist you at this thread until we solve your problems.

Lastly the fix may take several attempts and my replies may take some time but I will stick with it if you do the same.

Sorry for the delay in replying, the forum is very busy. If you still need help, please do the following:
Step # 1 Download and run DDS

Download DDS and save it to your desktop from here or here or here
Disable any script blocker, and then double click dds.scr to run the tool.
When done, DDS will open two (2) logs:
DDS.txt
Attach.txt

Save both reports to your desktop. Post them back to your topic.
Step # 2: Download and Run Gmer

Please download gmer.zip from Gmer and save it to your desktop.

***Please close any open programs ***

Double-click gmer.exe. The program will begin to run.

**Caution**
These types of scans can produce false positives. Do NOT take any action on any "<--- ROOTKIT" entries unless advised by a trained Security Analyst

If possible rootkit activity is found, you will be asked if you would... Read more

1 more replies
Relevance 52.07%

Hi,

I'm looking for some help or advice with this issue.
I think I have something nasty on my pc and am unable to get rid of it. I get all sorts of popups on firefox and IE (on IE, the popups are so bad that I am unable to do anything else on the pc but manually shut it off). Whenever I try to run any sort of virus or spyware scan, the computer shuts off within a few minutes into the scan. I've tried AVG, Spybot, AdAware, Symantec AV, SuperAnitSpyware - all with the same shutdown result. The shutdown is not a blue screen or restart and does not have any sort of message with it, just an immediate power down - I have to restart the pc manually.

Since I can't run any scans or anti-virus or -spyware, I can't figure out how to fix this problem.

Any ideas? Please let me know what sort of information I should post if necessary.

Thanks!

Oops - forgot the DDS/GMER attachments.


DDS (Ver_09-01-07.01) - NTFSx86
Run by 1234 123456 at 15:32:27.15 on Mon 01/26/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1302 [GMT -8:00]

AV: AVG Anti-Virus *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\App... Read more

Answer:virus? Malware? running any scan shuts down pc

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

Please visit this webpage for download links, and instructions for running ComboFix:

http://www.bleepingcomputer.com/comb...o-use-combofix

* Ensure you have disabled all antivirus and antimalware programs so they do not interfere with the running of ComboFix.

Please post the C:\ComboFix.txt in your next reply for further review.

------------------------------------------------------

16 more replies
Relevance 52.07%

Hi, My laptop had been running extremely slow lately and I get all kinds of pop ups! I am running Windows 10 Home and have an HP laptop. I believe I have a virus or malware. I ran malwarebytes and it found nothing. I also have a hijack this log if it would help also.

Thank you
Deanna

Answer:Windows 10 Running very Slow!! Think I have a Virus or Malware Help!!

Start by D/L ing & running RKill. This will attempt to terminate any malware processes. Once you run RKill, DO NOT REBOOT.






RKill is a program that was developed at BleepingComputer.com that attempts to terminate known malware processes so that your normal security software can then run and clean your computer of infections. When RKill runs it will kill malware processes and then removes incorrect executable associations and fixes policies that stop us from using certain tools. When finished it will display a log file that shows the processes that were terminated while the program was running.

As RKill only terminates a program's running process, and does not delete any files, after running it you should not reboot your computer as any malware processes that are configured to start automatically will just be started again. Instead, after running RKill you should immediately scan your computer using some sort of anti-malware or anti-virus program so that the infections can be properly removed.



Next, update your Malwarebytes database if needed & run Malwarebytes again to see if it finds anything.

Also suggest you run AdwCleaner.






AdwCleaner is a program that searches for and deletes Adware, Toolbars, Potentially Unwanted Programs (PUP), and browser Hijackers from your computer. By using AdwCleaner you can easily remove many of these types of programs for a better user experience on your com... Read more

1 more replies
Relevance 52.07%

Hi! I'm sure this has been posted before, but I can't find it on the forum. I run MSE and Malwarebytes Pro in real time on my PC. I believe that that just a anti-Virus is not enough in these days and you need another layer of protection. I purchased Malwarebytes Anti-Malware several years ago and I have the life time license (24.95).
Now you have to pay every year.
My question for all you malware experts, is ad-adware free any good to run in real time with your Anti-Virus?
I live in a retirement center, where I help seniors with their printers and computers. Seniors are on a limited income and so I'm looking for the best way to protect their PC's and the cheapest.
I know that Malwarebytes Anti-Malware is probably the best to run with your Anti-Virus, but would like to hear your thoughts about Ad-Adware. It seems to be improved. I ran it with my Anti-Virus years ago before I started using Malwarebytes Anti-Malware and it did a good job. Would like to hear your thoughts! Not sure how to start a poll. Maybe staff could help!
Combining our legendary anti-spyware with a powerful antivirus, Ad-Aware Free Antivirus+ enhances them with real-time protection, download protection and continuously updated filters against malicious URLs, providing top-of-the-line anti-malware protection for the casual computer user.
http://www.lavasoft.com/products/ad_aware_free.php
 

Answer:Running malware software along Anti-Virus!

Hi donetao

Let's just say there are a lot 'better' anti-virus software than Ad-Adware i.e., avast! free or, if you do have the money Eset, Kaspersky etc.,

Tony
 

25 more replies
Relevance 52.07%

I currently am running Norton 360 premier for virus protection. I am also running stopzilla for spyware protection and recently had a worm sending out emails from my contacts. I also now am running Malbytes for maleware protection and am thinking of buying their anti-malware pro.In your guidelines section you state "You should only have one antivirus and one firewall active at any time. If you have two of either installed then only ONE should be running. Either uninstall one now before continuing or adjust the settings to where the real-time protection is not running. Having two running at the same time will just cause problems."Are virus/spyware and malware programs different? and should I use all three or just one?I have hp s3720f pc with windows vista. I will probably upgrade to windows 7 in a few months.

Answer:virus/malware/spyware programs running together

QuoteAre virus/spyware and malware programs different? and should I use all three or just one?Anti-Virus programs are designed to protect against viruses only. Some have anti-malware built into the programs. You need other programs to protect against malware, spyware, rogues etc. You can have more than one of these running at any time. Sort of a layered approach to safety.MalWareBytes-Anti-malware is very good and they now have a free trial period of full-time protection.

2 more replies
Relevance 52.07%

Hi, My laptop had been running extremely slow lately and I get all kinds of pop ups! I am running Windows 10 Home and have an HP laptop. I believe I have a virus or malware. I ran malwarebytes and it found nothing. I also have a hijack this log if it would help also.

Thank you
Deanna

More replies
Relevance 52.07%

Hello,

I noticed my computer started running slow and a few things started acting funny and stuff was popping up stating that I had a virus on my computer.

So I did a scan to see if I had a virus and the scan result stated that I had several hundred threats and malware on my computer.

Please help me if you can, I really need this computer to work and it's the only the computer I have.

Below is the HJt log you requested.
--------------------------------------------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:56:17 PM, on 2/5/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\Intel\AMT\LMS.exe
C:\WINDOWS\system32\nvsvc32.exe
C:... Read more

More replies
Relevance 52.07%

hey guys, i'm new to the forum. i've been having problems w/ my laptop recently. it seems like it's running slower than usual, and i've been getting random popups that have me running in circles closing one window only to have a new open up. i've found that Alt+F4 can contain the infinite popups by shutting down firefox. but i'm also having some trouble playing DVD's, and the overall speed of the computer is making me suspect of malware. so i downloaded HJT after reading some other forums w/ similar posts to mine, and i was hoping someone might help me figure out what's going on. thanks in advance for any help offered!

comp. info: gateway solo 1450, 1.2 Ghz, 40gb, 512 mb ram, XP.
i've been using sygate personal firewall and ad-aware SE, (recently changed to ad-aware 2007).

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:03:58 PM, on 3/1/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\GWMDMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh .exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\SNDVOL3... Read more

Answer:malware/virus? laptop running slow. HJT log

1. Download & save this file to DESKTOP - http://download.bleepingcomputer.com...+/ComboFix.exe

2. Double click to run it

3. When finished, it shall produce a log for you. Post that log & a fresh HJT log in your next reply

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall

12 more replies
Relevance 52.07%

A couple of days my laptop running Vista with SP1 installed, started to perform slowly. This is particularly noticable if I try to watch any form of streaming video Youtube, BBC News site etc etc... When I look at the cpu it is running at 100% when attempting to do this. If I sit and watch the processor, at idle it seems to move between 18% and 48% for no reason! Until the other day it sat at around 8%.I run NIS2009 which is up to date, and I have downloaded and run Malwarebyte's Anti-Malware, which didn't find anything... but still the problem persists. I've now downloaded HijackThis and copied the log below, is there something in there that I need to remove that's causing the problem.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 08:34:39, on 20/04/2009Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18226)Boot mode: NormalRunning processes:C:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exeC:\Program Files\NetLimiter 2 Monitor\NLClient.exeC:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Windows\RtHDVCpl.exeC:\Program Files\Launch Manager\LManager.exeC:\Program Files\Google\Google Desktop Search\GoogleDesktop.exeC:\Program Files\Acer\... Read more

Answer:Laptop not running correctly, is it a virus/malware

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the resul... Read more

2 more replies
Relevance 51.66%

The virus or malware that is affecting my laptop is preventing me from running the DDS and gmer programs discussed in the First Steps thread. the Gmer program did scan for about 30 minutes but it didn't get to the point where I could save the report.

I believe I have the Antivirus Pro 2010 malware program on my computer because it keeps popping up urging me to register for the software. I Googled it and found that it was malware or rogueware. Each time I have tried to run any other program such Ad-Aware or Malwarebytes Anti-malware it only goes for a few seconds before it disappears. Is there any solution short of reformatting my hard drive and starting all over?

Thanks,

Barbbv

Answer:Problem running programs in First Steps due to virus and malware

Hello barbbv Welcome to the TSF Virus/Trojan/Spyware Help forum. I will be assisting you in cleaning up your system.


I ask that you refrain from running tools other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

We'll try to save you a reformat if possible. Delete the version of GMER you now have on your Desktop and try one from the link below:


Download GMER Rootkit Scanner from here to your desktop. Double click the exe file.
If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO, then use the following settings for a more complete scan.



Click the image to enlarge it


In the right panel, you will see several boxes that have been checked. Uncheck the following ... Sections
IAT/EAT
Drives/Partition other than Systemdrive (typically C:\)
Show All (don't miss this one)

Then click the Scan button & wait for it to finish.
Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file which cannot be uploaded to your post.
Save it where you can easily find it, such as your desktop, and post it in reply.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries



After 3 days if a topic is not repli... Read more

3 more replies
Relevance 51.66%

Hello,

PROBLEM: I have a Dell Desktop, with Windows XP Professional installed. Having problems loading IE, and slow to load any pages even though I have Cox High Speed internet. Computer states I am running 7 programs in background, and do not know exactly what Virus/Malware was previously installed, or if they are even active. Isn't there an issue running certain virus/malware programs with certain operating systems? Is it best to not use IE? better to use Google Chrome? If not, what version of IE should I be using, and what Virus software? Lastly, I have a wireless router, but a desktop computer now, vs. the laptop I had before. - Question-what should I do in order to not have a cord running all the way through my house to hook up to the modem? what is the cheapest-fastest resolution?

I've been without a computer for about 5 months. Desperate to get back to work & online, my sister gave me her old Dell desktop computer with XP Professional installed on it. I wondered why she was not using it anymore and now I know. It's because it runs so slow that even though I have Cox highspeed internet, it loads pages as if I am logging on with dial-up. I went into her programs and seen that there was a bunch of poker games, and music crap, etc. on the computer. I deleted a few of them, but there is all these other things on here that I don't know if they are needed or not. My sister had seperate loggins for her, my niece, and my mother. I don't have the p... Read more

Answer:Windows XP Pro - Virus/Malware - Unresponsive, to many programs running

16 more replies
Relevance 51.66%

Hi

Nice to meet you all.

My pc is running slower at the start up, some application show error (cannot run), internet explorer opening on its own, and there might be others. hahaha
and so I try googling and find this forum.

Please find the log attachment that I got from following malware instruction guide and help me fix the problems.

Thanks in advance for the help.

Note for the hitmanpro logs, I need to zip it because it's too large.


View attachment TDSSKiller.3.0.0.19_11.01.2014_11.19.55_log.txt



View attachment mbam-log-2014-01-11 (11-07-28).txt



View attachment MGlogs.zip



View attachment RKreport[0]_S_01112014_105905.txt



View attachment HitmanPro_20140111_1156.zip
 

Answer:PC Desktop running slow possibly malware and virus

Welcome to Major Geeks!

One main reason your PC is slow is you are out of free diskspace on drive C:
Code:
Size 99.90 GB (107,268,272,128 bytes)
Free Space 1,015.40 MB (1,064,726,528 bytes)
And drive D is not much better:



Size 365.76 GB (392,732,602,368 bytes)
Free Space 2.82 GB (3,024,535,552 bytes)Click to expand...

Same with drive L



Size 465.76 GB (500,105,248,768 bytes)
Free Space 1.22 GB (1,314,336,768 bytes)Click to expand...

Another reason for slowness is multilple antivirus program which the READ & RUN ME warned you about:



C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exeClick to expand...


However a bigger problem is due to downloading cracks and patches you have infected almost every executable file on Drive C and Drive D with Win32.Virtob and or Virut. There is no reliable fix for this other than a full clean reinstall and if you keep any of these files ( backups etc ) and reuse them you will start the reinfection all over again. These infections could be stealing personal information. ( see: http://en.wikipedia.org/wiki/Virut )

You could try running the below but I'm not sure it will be able to fix this and it could result in an unbootable PC.

http://www.drwebhk.com/en/virus_removal/48646/Win32.Virtob.Gen.12.html

Also the below could be attempted:

http://free.avg.com/us-en/remove-win32-virut

http://support.kaspersky.com/us/viruses/dis... Read more

9 more replies
Relevance 51.66%

Hi. Have a friends PC to try and clean it up. Have tried running both Panda Online and Malware Bytes in Safe Mode and they both cause the machine to reboot. They have a lot of junk tool bars on here, but not sure if there is something malicious. Please let me know.

HJT log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:46:18 PM, on 4/9/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal

Running processes:
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Search Guard PlusU\sgpupdaters.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
C:\Program Files\USBKVM Switcher\USBKVM.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.e... Read more

Answer:Running Panda and Malware Bytes causes PC to reboot. Virus?

bump please
 

1 more replies