Over 1 million tech questions and answers.

Infected with Anti-Virus 2011 and XP Anti-Virus

Q: Infected with Anti-Virus 2011 and XP Anti-Virus

Infected with Anti-Virus 2011 and XP Anti-Virus. Can't get to Windows update. Running CA Anti-Virus it finds it but I keep getting reinfected.

Jim

RELEVANCY SCORE 200
Preferred Solution: Infected with Anti-Virus 2011 and XP Anti-Virus

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: Infected with Anti-Virus 2011 and XP Anti-Virus

Hello Jrwilson, Welcome to Bleeping Computer.
My name is fireman4it and I will be helping you with your Malware problem.

Please take note of some guidelines for this fix:
Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
Finally, please reply using the button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.
I will be analyzing your log. I will get back to you with instructions.1.I do not recommend that you have more than one anti virus product installed and running on your computer at a time. The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:1) False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't. 2) System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.Therefore please go to add/remove in the control panel and remove either CA Anti-Virus or Microsoft Security Essentials.2.Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!Be sure to download TDSSKiller.exe (v2.4.0.0) from Kaspersky's website and not TDSSKiller.zip which appears to be an older version 2.3.2.2 of the tool.Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
Vista/Windows 7 users right-click and select Run As Administrator.If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.Click the Start Scan button.Do not use the computer during the scanIf the scan completes with nothing found, click Close to exit.If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).Copy and paste the contents of that file in your next reply.3.Download and Run RKillPlease download RKill by Grinler from one of the 4 links below and save it to your desktop.

Link 1
Link 2
Link 3
Link 4
Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how. Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator) A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed. If nothing happens or if the tool does not run, please let me know in your next reply4.Install Recovery Console and Run ComboFixThis tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.Download Combofix from any of the links below, and save it to your desktop. Link 1Link 2 Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.Close any open windows, including this one.Double click on ComboFix.exe & follow the prompts.As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware. If you did not have it installed, you will see the prompt below. Choose YES.Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help youshould your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Click on Yes, to continue scanning for malware.When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).Leave your computer alone while ComboFix is running.ComboFix will restart your computer if malware is found; allow it to do so.Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.Things to include in your next reply::TdssKiller logCombofix.txtHow is your machine running now?

Read other 25 answers
RELEVANCY SCORE 122.4

I have a nasty if not multiple nasty virus's and have not been successful removing them. It started with the XP Anti-Virus 2011 Removal fake anti-virus popping up with all real anti-virus programs disabled and anytime I try to go to an antivirus website I'm redirected to a random site. This happens in all browsers not just Internet Explorer. I also had many of my files changed to hidden file folders and also the start/all programs button does not show any of my programs. I mananged to get both Malwarebytes and Superantispyware on my computer and was able to get rid of much of the problems by running these programs. Now it seems the XP Anti-Virus 2011 has been removed but I still have the issue with my webpages being redirected depending on which page I try to access. I also have many processes that should not be running in the task manager and when i close them out they just start back up again. This worm seems to be accessing my iexplorer because there are multiple iexplorer.exe open at all times and sometimes the CPU Usage gets very high which is not normal for my computer. The final symptom is that at random times I get a webpage pop up or if not a webpage an error that reads like the following example:

An error has occured in the script on this page.

line: 13
Char: 1
Error: Object doesnt support this property or method
Code: 0
URL: http:/www2a.glam.com/mobile/detect.act?affiliatedld=288743725

Do you want to continue scripts on this page?

I will get at ... Read more

A:XP Anti-Virus 2011 Fake Anti-VIrus and webpages being Redirected Virus

Hello and welcome to the forums!My secret agent name on the forums is SweetTech (you can call me ST for short), it's a pleasure to meet you. I am very sorry for the delay in responding, but as you can see we are at the moment being flooded with logs which, when paired with the never-ending shortage of helpers, resulted in the delayed responding to your thread.I would be glad to take a look at your log and help you with solving any malware problems.If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed. If you have not, please adhere to the guidelines below and then follow instructions as outlined further below:Logs from malware removal programs (OTL is one of them) can take some time to analyze. I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forums.
Please make sure to carefully read any instruction that I give you. Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.
If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask!
In Windows Vista and Windows 7, all tools need to be started by right clicking and selecting Run as Administrator!
Do not d... Read more

Read other 17 answers
RELEVANCY SCORE 118

My Windows XP system is infected with the xp total security 2011 virus. I found an article with removal instructions during my search from your site but now that I have registered with you I cannot find that article again. Can you direct me to the removal tools for this virus please?

Thanks
Denise

A:Infected with XP Anti Virus 2011

Hello and welcome to Bleeping Computer.My name is km2357 and I will be helping you to remove any infection(s) that you may have.I will be giving you a series of instructions that need to be followed in the order in which I give them to you.If for any reason you do not understand an instruction or are just unsure then please do not guess, simply post back with your questions/concerns and we will go through it again.Please do not start another thread or topic, I will assist you at this thread until we solve your problems.Lastly the fix may take several attempts and my replies may take some time but I will stick with it if you do the same.Sorry for the delay in replying, the forum is very busy. If you still need help, please do the following:Step # 1 Download and run DDSDownload DDS and save it to your desktop from here or here or hereDisable any script blocker, and then double click dds.scr to run the tool. When done, DDS will open two (2) logs: DDS.txt Attach.txtSave both reports to your desktop. Post them back to your topic.Step # 2: Download and Run GmerPlease download gmer.zip from Gmer and save it to your desktop.***Please close any open programs ***Double-click gmer.exe. The program will begin to run.**Caution**These types of scans can produce false positives. Do NOT take any action on any "<--- ROOTKIT" entries unless advised by a trained Security AnalystIf possible rootkit activity is found, you will be asked if you would like to perform a full scan. Cli... Read more

Read other 3 answers
RELEVANCY SCORE 118

Hello.

My Acer laptop was infected with the XP Anti-Virus 2011 rogue. I followed instructions to remove it that I found here:
http://www.bleepingcomputer.com/virus-removal/remove-win-7-internet-security-2011

... but it's still infected. Note: When I performed the RKill step, while RKill booted up and seemed to perform its job, it never closed any of the rogue "things" that I think it was supposed to close. Then I followed with the Malwarebytes' Anti-Malware step and it found 4 items, which I deleted per instructions. The rogue is still there.

All help greatly appreciated, as always, thank you. Logs attached and pasted.

.
DDS (Ver_11-03-05.01) - FAT32x86
Run by Linda at 8:53:59.25 on 04/04/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1214.881 [GMT -4:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\Linda\Local Settings\Application Data\xvt.exe
svchost.exe
C:\Acer\eManager\anbmServ.exe
C:\Program Files\J... Read more

A:Infected with XP Anti-Virus 2011

Hi, Welcome to Bleeping Computer.My name is Shannon and I will be working with you to remove the malware that is on your machine.I apologize for the delay in replying to your post, but this forum is extremely busy.Please Track this topic - On the top right on this tread, click on the Option button, and, in the drop-down list, click on 'Track this topic'. Under Subscription Information, click on 'Immediate Email Notification' and then click on the Proceed button at the bottom.Do Not make any changes on your own to the infected computer.Please set your system to show all files.Click Start, open My Computer, select the Tools menu and click Folder Options.Select the View Tab. Under the Hidden files and folders heading, select Show hidden files and folders.Uncheck: Hide file extensions for known file typesUncheck the Hide protected operating system files (recommended) option.Click Yes to confirm.Now, let's look more thoroughly at the infected computer -We need to see some information about what is happening in your machine. Please perform the following scan:We need to create an OTL Report
Please download OTL from here:Main MirrorSave it to your desktop.Double click on the icon on your desktop.Click the "Scan All Users" checkbox.Change the "Extra Registry" option to "Use SafeList"Push the button.Two reports will open, copy and paste them into your reply:OTL.txt <-- Will be openedExtra.txt <-- Will be minimizedPlease note: ... Read more

Read other 3 answers
RELEVANCY SCORE 118

Hello,

I was infected by this virus on Sat. A anti-virus pop up appeared informing me that I have viruses on my PC yada-yada. I have free version of Avira running but it did not catch this. I booted into safe mode and saw the file XXX.exe in my processes. Deleted that. used MBAM to clean the PC. MBAM first deleted 3 entries in registry - for windows security update etc. I then manually deleted all entries in registry with XXX.exe and cleaned some long named files in my Local Settings folder. After that, ran MBAM again and it deleted the exe file.

But my windows update stopped working. Got a icon at the bottom of the screen stating the windows update is switched off. Tried to go to security center from that icon but could not. Went through control panel and switched it on but no luck... still got the icon.

So I registered wuaueng.dll and in services I activated BITS service.

I ran rkill then I've run MBAM full scan a couple of times. Also ran Eset online scanner, Symantec online and they did not find anything.

I was wondering if I did anything wrong for the update fix.

Also, what settings could I have made on my PC to avoid getting hit with this Trojan? I was just browsing, googling for something and opened some search pages, that's all.

I have logs from DDS.SCR and GMER if required.

Please advise.

====DDS Log =======
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by DellXPS-1 at 17:33:53.54 on Sun 04/17/2011
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_2... Read more

A:Infected with XP Anti-virus 2011

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!Please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.In order for me to see the status of the infection I will need a new set of logs to start with.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.DeFogger: Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
The application window will appear Click the Disable button to disable your CD Emulation drivers Click Yes to continue A 'Finished!' message will ap... Read more

Read other 3 answers
RELEVANCY SCORE 116.4

How to Remove Win 7 Anti-Spyware 2011 (Fake Anti-Virus Infections)





Quote:
If your PC is infected with the Win 7 Anti-Spyware 2011 malware or something similar, you?ve come to the right place, because we?re going to show you how to get rid of it, and free your PC from the awful clutches of this insidious malware (and many others)
Win 7 Anti-Spyware 2011 is just one of many fake antivirus applications like Antivirus Live, Advanced Virus Remover, Internet Security 2010, Security Tool, and others that hold your computer hostage until you pay their ransom money. They tell you that your PC is infected with fake viruses, and prevent you from doing anything to remove them.
This particular virus goes by a lot of names, including XP Antispyware, Win 7 Antispyware, Win 7 Internet Security 2011, Win 7 Guard, Win 7 Security, Vista Internet Security 2011, and many, many others. It?s all the same virus, but renames itself depending on your system and which strain you get infected with.


Source ...

A:How to Remove Win 7 Anti-Spyware 2011 (Fake Anti-Virus Infections)

Thanks for the information. I hope I never have to use it.

Read other 2 answers
RELEVANCY SCORE 114.8

Antivirus vanished! Can't install ANY new one!Can't access microsoft and any anti virus sites (thus i cannot download or scan my computer from there)I tried to install a copy of avast pro but the set- up immediately close after opening, i also noticed a lot of programs behaving like this just like the bandmaster game from e games and Grand Theft Auto Vice City( once i opened it, it immediately closes)Tried to install that in safe mode, but the computer does not start and reboots back into normal mode.This is the content of DDS logDDS (Ver_10-11-26.01) - NTFSx86 Run by neopc10 at 19:47:12.65 on Fri 11/26/2010Internet Explorer: 6.0.2900.2180Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1023.353 [GMT -8:00]============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exeC:\WINDOWS\system32\spoolsv.exesvchost.exeC:\Program Files\Common Files\Acronis\Schedule2\schedul2.exeC:\WINDOWS\System32\svchost.exe -k AkamaiC:\WINDOWS\system32\svchost.exe -k imgsvcC:\WINDOWS\Explorer.EXEC:\Program Files\KGB\Mpk.exeC:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exeC:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exeC:\WINDOWS\PixArt\PAC7302\Monitor.exeC:\Program Files\... Read more

A:anti virus banished.can't install any anti virus programs, can't acces microsoft and anti virus sites!!!...

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the ... Read more

Read other 2 answers
RELEVANCY SCORE 106

I'm using an Eisystems laptop thats about 3 years old, and never really experienced any issues apart from the occasional virus.
Earlier today the vista anti-virus virus popped up on my desktop while browsing. When i attemped to close the process my computer crashed (it is not prone to crashing normally). On turning it back on, i encountered the issue of explorer not booting properly leading to a black screen with a movable cursor. I read up on how to fix this issue and was instructed to close end explorer.exe in task manager (which works) and start it as a new task. The problem is that when i attempt to do that the only thing that appears on my screen is the vista-antispyware window and the rest of explorer doesnt function correctly, even when the random.exe process for the anti-spyware virus is ended. I have tried performing a system restore from safe mode with command prompt, but the system restore process crashes whenever i click the restore button. I don't have the setup disks for the laptop to perform a system restore that way, but I'm pretty convinced that the virus is the causing at least some of my issues. Any advice would be greatly appreciated.
 

Read other answers
RELEVANCY SCORE 105.2

After clicking on what now can be deemed a 'dodgey' link, I have seemed to have picked up this annoying virus. Common annoyances include the incapability to open programs, and the fake window that opens up, attempting to explain that I have many problems with my computer, whilst trying to encourage me to register with them as well. Upon logging on, Windows also tries to tell me that my computer is not protected, and is at risk.

You guys have helped me out a lot in the past, and I would sincerely appreciate further help with this issue. Thank you. It may also be worth stating that I have two main accounts on the computer. The account on which I was logged in on when obtaining the virus is the only one that seems to be affected.

System info from TSG SysInfo

Tech Support Guy System Info Utility version 1.0.0.1
OS Version: Microsoft Windows XP Professional, Service Pack 3, 32 bit
Processor: Intel Pentium III Xeon processor, x86 Family 6 Model 23 Stepping 6
Processor Count: 2
RAM: 2047 Mb
Graphics Card: ATI Radeon HD 2350, 256 Mb
Hard Drives: C: Total - 238464 MB, Free - 199233 MB;
Motherboard: ASUSTeK Computer INC., P5KPL-AM, x.xx, MS1C92B00A00924
Antivirus: McAfee Anti-Virus and Anti-Spyware, Updated: Yes, On-Demand Scanner: Enabled

HijackThis

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:41:15, on 03/05/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\Syst... Read more

A:XP Anti-Virus 2011 virus problem, hijack log attached

Read other 7 answers
RELEVANCY SCORE 104.4

Hi,

I've come to you guys with issues before and have always had success with you! I clicked on a banner on a website and got infected with some spyware or virus. I keep getting pop-ups as well as fake scans from a rouge "Vista Anti-Virus 2011" security center. It also requests that i purchase their product.

I have run the DDS and GMER but do not want to post it to the site since it is a laptop with sensitive information. If possible, can i send a personal message to show my scan results.

Thanks,

A:Vista Anti-Virus 2011 Virus or Spyware

Hello,


Quote:




I have run the DDS and GMER but do not want to post it to the site since it is a laptop with sensitive information. If possible, can i send a personal message to show my scan results.




Unfortunately Assistance via PM is against the Forum Rules.

You didn't seem to have an issues with it when you asked for help several times in the past. If you're uncomfortable with the display of the logs, you would be advised to seek professional help.

If you still wish to receive help, please create a new thread and post your logs, as this one shall be closed.

Read other 1 answers
RELEVANCY SCORE 104.4

I normally manage to remove most viruses on my PC however this one is proving to be a real nightmare to remove.

The virus reared its ugly head by displaying fake messages referring to Vista Anti Virus 2011 so I have been attempting to search for solutions based on this.

Just to give a little bit of background info:

My PC is a desktop dell dimension 9200 running Vista Ultimate. I have McAffee installed and up to date.

My first step to fix the virus was to run Malwarebytes Anti-Malware (the free version) - this did find some infected items and I chose to remove these. Unfortunately after rebooting the problem was still there.

I then read about RKill.com and attempted to run this. This virus seems very clever as even when I rename RKill.com using different extensions too (pif, bat) the virus deletes the file. I did manage to run Rkill.exe once last night by renaming it to an executable that already existed on my PC. RKill opened a MSD0S window and did its stuff. I then ran Malwarebytes Anti Malware and it detected 3 infected items. When I chose to remove them I got a blue screen of death that mentioned (mbamswissarmy.sys)

I have run out of ideas now. I would prefer not to reformat due to the PC containing a large amount of data (350 GB and the lack of desire to have to back this up - though I do have most of it backed up via Carbonite and 2 external USB 500 GB drives)

My next plan is to burn the RKill.com onto a CDROM as there is no way the virus can delete it from a CDRO... Read more

A:Help removing Vista Anti Virus 2011 Virus

Please follow the instructions in ==>This Guide<==. If you cannot complete a step, skip it and continue.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues and what you have done to resolve them.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

Read other 1 answers
RELEVANCY SCORE 104.4

Hi,

Thanks for the quick response. Please find the logs attached. If possible, once this is closed out, can i request these files be removed? Just wondering.

Thanks again for the help! It is much appreciated.

Thanks,

_________________________
Hi,

I've come to you guys with issues before and have always had success with you! I clicked on a banner on a website and got infected with some spyware or virus. I keep getting pop-ups as well as fake scans from a rouge "Vista Anti-Virus 2011" security center. It also requests that i purchase their product.

I have run the DDS and GMER but do not want to post it to the site since it is a laptop with sensitive information. If possible, can i send a personal message to show my scan results.

Thanks,

Read other answers
RELEVANCY SCORE 104

Hi I am getting a pop up on my Vista machine that says "you have been infected with a virus
click here to install Vista Anti Viruss 2011". I also had a hard time getting onto the internet
as that message would pop up when trying to access internet.

I was able to open Super Anti Virus software and click on get updates and am running
that right now.

Update: After updating and running SAVirus, it found several files, I rebooted and now I can't open
IE, Firefox, or any of the Microsoft Office products. I get a box that says "This file does not have a program
associated with it for performing this action, create an association in the set association control panel".

Any help would be appreciated.

Thanks, Dano
 

Read other answers
RELEVANCY SCORE 103.6

Hello everyone.

I have tried my best to remove this virus on my laptop, but no success yet.

Here are all of the things the virus does:

-Prevents access to websites like spybot, instead of letting me see the site, it simply says "Internet Explorer cannot display the webpage", and there is a button to click that says "Diagnose Connection Problem" (no connection problem of course)

-When I click links from a google search, they most of the time take me to the wrong webpage and I am forced to copy/paste the original link into the web bar.

-Programs like Combofix, Spybot, and HJT do not work and a box comes up after starting them saying "Combofix has stopped working".

-I tried running the programs in Safe Mode, but no luck there.

If anyone knows a fix please reply.

Thanks,

Sean

A:Virus prevents access to Anti-Virus sites/anti-virus programs (combofix, etc.)

I renamed my Combofix to something else and I followed the instructions from a different post and here is the log I ended up with:

ComboFix 09-07-29.04 - Sean 07/31/2009 0:30.1.2 - NTFSx86
Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.1.1033.18.3070.2059 [GMT -7:00]
Running from: c:\users\Sean\Desktop\Music.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\videosoft
c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\videosoft\Uninstall.lnk
c:\program files\videosoft
c:\program files\videosoft\Uninstall.exe
C:\resycled
c:\resycled\boot.com
c:\windows\10057vir9sza2.cpl
c:\windows\1059zpamb5t5bd.exe
c:\windows\1069thi5fz912.bin
c:\windows\1075859zj467.exe
c:\windows\11297vzr5s51c.cpl
c:\windows\1132z5ru977d.cpl
c:\windows\11388troz4559.cpl
c:\windows\1179zs5y695.dll
c:\windows\11991szambo95d9.cpl
c:\windows\120355zoj6819.bin
c:\windows\12324tr9j7b5z.bin
c:\windows\1279zroj295.ocx
c:\windows\12a7d5wnloader999z.bin
c:\windows\132985pz2a0.cpl
c:\windows\133505i9us7z8.exe
c:\windows\13552hackt9ol37z.ocx
c:\windows\1355zw59m5d8.exe
c:\windows\13562vizus1059.cpl
c:\windows\135759orm5c5z.ocx
c:\windows\13599virus6cz5.dll
c:\windows\13614spamzo5990.cpl
c:\windows\13956trojz59.cpl
c:\windows\1502zspy169.ocx
c:\windows\15107zpa9bot54.cpl
c:\windo... Read more

Read other 1 answers
RELEVANCY SCORE 102.4

** DDS.txt **
.
DDS (Ver_11-05-19.01) - NTFSx86
Internet Explorer: 8.0.6001.19048
Run by Ram Balakumar at 10:30:37 on 2011-05-21
Microsoft? Windows Vista? Home Basic 6.0.6002.2.1252.1.1033.18.2045.760 [GMT -5:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\LEXBCES.EXE
C:\Windows\System32\LEXPPS.EXE
C:\Windows\System32\s... Read more

A:Virus/Pop ups - Vista Anti-Virus 2011

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

Please note that these fixes are not instantaneous. Most infections require more than one round to properly eradicate.

Please stay with me until given the 'all clear' even if symptoms seemingly abate.

Kindly follow my instructions and please do no fixing on your own or running of scanners unless requested by a helper.

------------------------------------------------------

Due to the restrictions on Vista, all tools should be started by right-click > Run as Administrator

------------------------------------------------------

It appears that you have two antivirus programs installed and running, McAfee and MS Security Essentials. While this may seem like better protection, they can actually conflict with one another and cause system instability or even system hangs. Please choose one to keep and uninstall the other via Programs and Features in your Control Panel.

------------------------------------------------------

Please download ComboFix and Save it to your Desktop.

**Note: It is import... Read more

Read other 13 answers
RELEVANCY SCORE 102

My computer was infected with xp anti-virus 2011, I began to follow a removal procedure online only to realize that it was specific to one person's machine. here is what i did ran WiNlOgOn.exeran combofix internet was disabled, combofix didn't install recovery console allowed combofix to run all the way throughran combofix again. my computer is now usable again but it sounds like the removal is most likely not complete your help is greatly appreciatedPlease follow the instructions in ==>This Guide<==. If you cannot complete a step, skip it and continue.Then post your DDS and GMER logs as a reply to this topic. Once you have done that I will remove my reply and consolidate the posts so that you retain your correct place in the queue.If you can produce at least some of the logs, then please explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the reply and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Thank you!DDS (Ver_11-03-05.01) - NTFSx86 Run by ADMIN at 20:54:53.15 on Mon 04/18/2011Internet Explorer: 8.0.6001.18702Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1015.518 [GMT -4:00]..============== Running Processes ===============.C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvcho... Read more

A:xp anti-virus 2011

Hello , And to the Bleeping Computer Malware Removal Forum. My name is Elise and I'll be glad to help you with your computer problems.I will be working on your malware issues, this may or may not solve other issues you may have with your machine.Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.The cleaning process is not instant. Logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen. Please reply using the Add/Reply button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, send me or a moderator a personal message with the address of the thread or feel free to create a new one.You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.-----------------------------------------------------------If you have since resolved the original problem you were having, we would appreciate you... Read more

Read other 2 answers
RELEVANCY SCORE 102

I've tried running Malwarebytes and it removed some stuff, but the security shield is still on my bottom taskbar and keeps opening to try to get me to buy xp security center.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Fred at 6:56:31.45 on Sun 05/01/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_21
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1526.957 [GMT -7:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lxdqcoms.exe
C:\Program Files\Common Files\Mcaf... Read more

A:XP Anti-Virus 2011

Hello and welcome to Bleeping Computer We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far. Upon completing the steps below another staff member will review your topic an do their best to resolve your issues. If you have already posted a DDS log, please do so again, as your situation may have changed. Use the 'Add Reply' and add the new log to this thread. Thanks and again sorry for the delay. We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scr DDS.pifDouble click on the DDS icon, allow it to run. A small box will open, with an explaination about the tool. No input is needed, the scan is running. Notepad will open with the results. Follow the instructions that... Read more

Read other 3 answers
RELEVANCY SCORE 102

I have a nasty little virus on my pc thats causing my browsers to be hijacked, popups,error messages and its causing my computer to run sluggishly, any help would be greatly appreciated!
Logfile of HijackThis v1.99.1
Scan saved at 2:47:04 AM, on 5/25/2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Common Files\Real\Update_OB\realevent.exe
C:\Program Files\Common Files\Real\Update_OB\realevent.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files\Pure Networks\Network Magic\nmapp.exe
C:\Program Files\Micro Innovations\Optical Scroll\mouse32a.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre... Read more

A:XP anti-virus 2011..need help

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Please take note:If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available.If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply'... Read more

Read other 3 answers
RELEVANCY SCORE 102

I have this Virus called XP Anti-Virus 2011, i restarted my computer and tryed safe mode, but the start menu wont load in any mode, i cant open Firefox to download any anti virus or anything it blocked it, all my icons/start menu is gone it just shows background. Ive tryed looking on google but haven't found any way to get rid of this. safemode doesn't work, i cant run any programs cause the virus keeps running instead of them

A:XP Anti-Virus 2011

bump :[

Read other 13 answers
RELEVANCY SCORE 102

I have successfully removed the virus before but now it has come back. I forgot on how I did it so I am coming here for help. It is currently happening on my other computer which has Windows Xp. I need help :S

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by HP_Owner at 20:45:19.18 on 09/05/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_17
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.503.191 [GMT -4:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\VentSrv\ventrilo_svc.exe
C:\Program Files\VentSrv\ventrilo_srv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\WIND... Read more

A:xp Anti Virus 2011

Let's use another set of tools.

Step 1.
OTL-scan:
Download OTL to your desktop.
Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
When the window appears, underneath Output at the top change it to Standard Output.
Underneath the option Extra Registry change it to Use SafeList.
Underneath the option File Scans check the boxes beside Use Company Name WhiteList, Skip Microsoft Files, Use No-Company Name WhiteList, LOP Check, Purity Check.
Under the Custom Scan box paste this in
netsvcs
msconfig
drivers32
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%USERSPROFILE%\Application Data\*.
%USERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\drivers\*.sys /90
Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them in your next reply.



Step 2.
aswMBR-scan:


Download aswMBR.exe ( 511KB ) to your desktop. ... Read more

Read other 7 answers
RELEVANCY SCORE 102

hi - I am running Windows 7 on my laptop and am now getting this fake alert - Win 7 Anti Virus 2011. It is preventing me from being able to access the Web so I can't even download spydoctor or some program to get rid of it. Any suggestions? Thanks!!
 

Read other answers
RELEVANCY SCORE 102

Man, this is giving me brain ache! Hope you can help!

I was having problems a few days ago with one of these Malware things. I can't remember the name of the specific one but I used your guide to get rid of it and it worked. The usual rKill and Malwarebyets job. Sorted.

Damn thing happens again today or at least I thought so. Seemed the same but with a new name as shown in the topic title. I had a look at the removal guide and it seemed pretty straight forward; usual rKill then Malwarebytes job. So I downloaded rKill.com as usual from my uncle's laptop (what I'm using at the moment as the Maleware won't let me get on the internet using my PC), put it on my dongle and treied running it on my computer. It seemed to work. Brought up the log file after it ran as usual. Problem is that as soon as I tried Malwarebytes, the internet or anything else the maleware came back. So, I tried downloading one of the other named rKill files. All the rKill files ending in '.exe' didn't run at all. All the other ones ran as '.com' did but failed to do it's job.

So, I'm stuck. I'm currently having to use my uncle's laptop to accsess the internet and have to transfer any programs. I have included the log files requested barring the gmer one. It wouldn't allow me to run it so I assume it's either the malware or my computer isn't 32-bit. I haven't been able to check as it won 't let me look at the system configuratio... Read more

A:XP Anti-Virus 2011

So, I tried downloading one of the other named rKill files. All the rKill files ending in '.exe' didn't run at allSo, I'm stuck. I'm currently having to use my uncle's laptop to accsess the internet and have to transfer any programs.In that case we'll do it like this.To protect your clean computer, please use Flash DisinfectorDownload Flash_Disinfector.exe by sUBs from >here< and save it to your desktop. Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear. The utility may ask you to insert your flash drive and/or other removable drives including your mobile phone. Please do so and allow the utility to clean up those drives as well. Wait until it has finished scanning and then exit the program. Reboot your computer when done.Note: Flash_Disinfector will create a hidden folder named autorun.inf in each partition and every USB drive plugged in when you ran it. Don't delete this folder...it will help protect your drives from future infection.Note: If using Firefox right-click on any download links and choose Save AsPlease download OTH to your flashdrivePlease download OTL to your flashdriveMove the flashdrive to your infected computer.Double click the OTH file to run it and click Kill All Processes, your desktop will go blank.Then select Start OTL. OTL will now runClick the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
When the scan completes, it will op... Read more

Read other 4 answers
RELEVANCY SCORE 102

It seems that I have this virus. I ran the Microsoft Malicious Software Removal Tool and it removed 7 malware items. My computer now opens up a list of programs when I try to execute any .exe program

What do I do now:

A:XP Anti Virus 2011

I suggest that you read this sticky: NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help
Follow the directions and post a new topic here:
Virus/Trojan/Spyware Help - Tech Support Forum

Read other 3 answers
RELEVANCY SCORE 102

http://www.bleepingcomputer.com/virus-removal/remove-win-7-internet-security-2011after doing this in safe modewscntfy.exe is in my tray it tells me automatic updates are turned off, I go to ctrl panel to automatic updates, turn it on to download and install updates automatically, click apply, then ok.the wscntfy.exe is still in my tray, is my wscntfy.exe infected?here is my thread on annoyances.org:http://www.annoyances.org/exec/forum/winxp/1303542753EDIT: Member advised to post here at BC ~ Hamluis.should i go through this?http://support.microsoft.com/kb/315353http://pcbutts1.com/downloads/tools/tools.htmMicrosoftFixit50202.exe - tried installing this, had error saying Windows Installer is broken?????-r

A:xp anti-virus 2011

Let's try to kill this file wscntfy.exeAs you have run MBAM..let's use MBAM's FileAssassin feature.Open MBAM again.Click the More Tools tab and then the Run Tool buttonNow browse to the file(s) we want to remove using the drop down box next to Look in: at the top.Locate the file(s), click Open.You will be prompted with a message warning: This file will be permanently deleted. Are you sure you want to continue?. Click Yes.If removal did not require a reboot, you will receive a message indicating the file was deleted successfully, however, I recommend you reboot anyway.Caution: Be careful what you delete. FileAssassin is a powerful program, designed to move highly persistent files. Using it incorrectly could lead to disastrous problems with your operating system.

Read other 3 answers
RELEVANCY SCORE 102

...But the my computer hasn't been the same and now the windows security alert won't go away, can someone give me some help?

Thanks in advance

A:XP Anti-Virus 2011

Hello,Please follow the instructions in ==>This Guide<==. If you cannot complete a step, skip it and continue.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues and what you have done to resolve them.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Orange Blossom

Read other 2 answers
RELEVANCY SCORE 102

I did get the virus of late and did all the stuff people said to do. so now I can get on the internet but at the very top of the window, where the little blue e is (top left), in the title bar it says XP anti-virus 2011. Also, near my clock, there is a little shield that is red with a white x through it. When I hoover over it, it states windows security alerts. At the bottom, it states Microsoft cares about privacy,click here to read our privacy statement so I clicked on it to see if I would go to the MS page but then I get a xp anti-virus window that looks alot like the one that kept popping up before.

I can not run malwarebytes. I downloaded it to my desktop and when I double click it, I get the do you want to run this file, I say run but nothing happens.

I think I'm still infected. What can I do?

thanks

A:XP anti-virus 2011

This thing drove me crazy. I tried to use the advise from Kaspersky but the thing stymied every attempt to go online or open security programs in XP. Everything I read on the internet said to run safe mode with networking. No dice. I finally ran safe mode (only) and used system restore to roll back to a week ago. So far everything seems (SEEMS) to be running ok.

Read other 1 answers
RELEVANCY SCORE 102

Avg Anti-virus 2011 is no good 2 use even though it's 1 of your choices onyour pc from windows. I have windows vista by the way.Edit: Moved topic from Vista to the more appropriate forum. ~ Animal

A:avg anti-virus 2011

If you're asking for my personal opinion, I don't recommend it.

Looking for something else, free?
- Avast! free antivirus: http://www.avast.com/eng/download-avast-home.html
- Avira free antivirus: http://www.free-av.com/en/download/1/avira_antivir_personal__free_antivirus.html

Read other 3 answers
RELEVANCY SCORE 102

what is the best anti-virus now? an anti-virus that has great security and also optimal performance, which doesn't slow down your computer in other words. i'm using kaspersky right now, i think its security is perfect but it slows down my computer.

A:What is the Best anti-virus for 2011?

Have you read this?

What's the Best Anti-virus?

As many people have said, what's best right now (this very minute) will depend on whose research data you want to believe. FWIW, I've been using Microsoft Security Essential with Windows 7 firewall and on demand scans with Malwarebytes (free) and HitmanPro (also free). Haven't had any malware.

Read other 9 answers
RELEVANCY SCORE 102

I ran the combofix. here is the log of the activity. will someone be responding? Thanks.

ComboFix 11-04-07.08 - Alison 04/08/2011 13:11:37.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1271.777 [GMT -4:00]
Running from: c:\documents and settings\Alison\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Alison\Local Settings\Application Data\dth.exe
c:\documents and settings\Alison\Recent\Thumbs.db
c:\documents and settings\Alison\WINDOWS
c:\documents and settings\Emi.NOTEBOOK.058\GoToAssistDownloadHelper.exe
c:\documents and settings\Emi\WINDOWS
c:\documents and settings\Leif Street\Local Settings\Temporary Internet Files\temp.cab
c:\documents and settings\Leif Street\WINDOWS
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_BOONTY_GAMES
-------\Service_Boonty Games
.
.
((((((((((((((((((((((((( Files Created from 2011-03-08 to 2011-04-08 )))))))))))))))))))))))))))))))
.
.
2011-04-08 17:29 . 2011-04-08 17:29 9310 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Iden... Read more

A:xp anti-virus 2011

Hello and welcome to Bleeping Computer We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Follow the instructions that pop up for postin... Read more

Read other 2 answers
RELEVANCY SCORE 102

I have tried downloading Rkill but it won't run either as well as any other file on my pc.

I have tricked it to get the internet & to open files in a roundabout way.

Problem is everyone online & a couple guys who run repair shops says just run Rkill in one of its 3/4 names and it will kill the processes
however this does not seem to work with this nasty bit of virus mal ware
I can't even tell you what I want to do................

A:XP Anti Virus 2011

It finally ran under the Screen saver extension. But it too 3/4 minutes, the Rkill is preparing screen has been up for 5 mins not doing anything ????

Read other 2 answers
RELEVANCY SCORE 102

Successfully defeated this bugger on a "Public" work computer......

Somewhat of a rascal......
 

A:XP anti-virus 2011

Read other 9 answers
RELEVANCY SCORE 102

Hi there, all! Thanks in advance for helping me. I most assuredly need it!
My other computer was infected with XP Anti-Virus 2011, when my husband was attempting to download an iPod fix of some sort. It's sort of an extra computer, used only for itunes and pictures. So I'm not even sure what the latest anti-virus software on there is. I see I have Malwarebytes and Spybot. I thought I had AVG but I can't see it....

Anyhoo, did I mention I'm not too technologically inclined?

The worst part is that the virus is redirecting me online no matter what browser I use, or where I try to go. That's where I start feeling violent towards it.

The computer in question has XP Home edition. It is networked to this laptop, which is Vista.

So I guess my questions are:
1. Is there some way I can download spyware on this computer and run it on that computer? OR that I can use what I have on this one (AVG) to clean that one? Or, if there's another anti-virus program you recommend (preferably free?)

2. Is there some way I can start it in safe mode and manually remove the virus? It's true that I'm not much of a techie, but I'm pretty damn kick-ass at following directions. It's true!
THANK YOU most kindly! I'm signing off for tonight so I don't destroy either computer. I appreciate any help anyone can give.

Katie

A:XP Anti-virus 2011

Follow this guide: How do I remove XP Anti-virus 2011?

Read other 3 answers
RELEVANCY SCORE 102

but windows security alert won't go away because automatic updates won't go on and i can't access windows update website.Here our some logs that orange blossom requested i make...DDS log.DDS (Ver_11-05-19.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_21Run by Beto at 15:44:06 on 2011-05-27Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1982.1183 [GMT -7:00].AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}FW: McAfee Firewall *Enabled* .============== Running Processes ===============.C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exesvchost.exeC:\WINDOWS\system32\spoolsv.exesvchost.exeC:\WINDOWS\System32\svchost.exe -k AkamaiC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\WINDOWS\arservice.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\WINDOWS\eHome\ehRecvr.exeC:\WINDOWS\eHome\ehSched.exeC:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\Program Files\Common Files\LightScribe\LSSrvc.exeC:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exeC:\WINDOWS\system32\mfevtps.exeC:\P... Read more

A:XP Anti-Virus 2011

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Please take note:If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available.If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply'... Read more

Read other 16 answers
RELEVANCY SCORE 102

I have spent the last 5 hours trying to rid myself of this XP Anti-Virus 2011 on my Windows XP SP 2. I've done it before, only thing is, this one won't let me get on the internet at all; it prevents me from starting any .exe . No warning window comes up or anything, the hourglass by my mouse appears, disappears, and another instance of "mft.exe" starts running.

I've tried as many of the cures I've been able to find on this site and others: I've run rkill and Malwarebytes from Safe Mode as Administrator when it worked--now I can't even run .exe's in that without the fake anti-virus windows popping up and stopping my programs. I've got logs from both rkill and Malwarebytes, they both found registry errors and said they fixed them, but when I restart, it's inevitably back. I've tried FixExe and RogueKiller as well.

Every now and then, when I would try to End Process mft.exe in the Task Manager, a window would come up which said, "Unable to terminate Process. The operation could not be completed. The operation is not valid for this process."

As I've said, this virus is really annoying; any help would be greatly appreciated, thanks!

Edit: almost forgot, I have a working laptop that I've been downloading files (rkill, etc) onto a USB drive from and transferring them to my desktop, the infected one

Edit 2: Wouldn't you know, the last thing I decided to try before I went to bed worked: Downloaded ExeHel... Read more

A:XP Anti-Virus 2011

Hello.

Glad to hear you resolved your issue. Is everything still working normally?

~Blade

Read other 1 answers
RELEVANCY SCORE 101.2

Okay. Xp anti-virus 2011 attacked my computer and did everything it can to make me not go online. This is my one and only main computer. Internet explorer worked and that was the only thing working. Malwarebytes anti-malware didn't work. So I tried uninstalling it and re-installing it. It worked, updated it, scanned, found like 8 problems and removed them.

After that, the next day I checked my computer and there was another thing wrong with it. It said that firewall was not on and I checked it was off so I turned it on. Soon after that another pop up at the taskbar says automatic updates is turned off or something like that. I went to turn it back on but it wont work. So, I got a little help from someone who told me to go to run then type regsvr32 wuapi.dll and so on. If you guys know what I mean. It did work.

Later, that xp anti-virus came back. Internet Explorer did not work this time. Like a repeat of everything I've written up there and I did the same. But xp anti-virus stayed and a friend of mine told me to do this.

Click Start, Run. Type command and press Enter. Type notepad and press Enter.
Notepad opens. Copy all the text below into Notepad.

[Version]
Signature="$Chicago$"
Provider=www.myantispyware.com

[DefaultInstall]
DelReg=regsec
AddReg=regsec1

[regsec]
HKCU, Software\Classes\.exe
HKCU, Software\Classes\pezfile
HKCR, .exe\shell\open\command

[regsec1]
HKCR, exefile\shell\open\co... Read more

A:xp anti-virus 2011 problem

Please follow this guide by boopme and report your findingsHello,lets first see if there is a malware here.Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!Be sure to download TDSSKiller.exe (v2.5.0.0) from Kaspersky's website and not TDSSKiller.zip which appears to be an older version 2.3.2.2 of the tool.Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
Vista/Windows 7 users right-click and select Run As Administrator.If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.Click the Start Scan button.Do not use the computer during the scanIf the scan completes with nothing found, click Close to exit.If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).Copy and paste the contents of that file in your next reply.If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give i... Read more

Read other 2 answers
RELEVANCY SCORE 101.2

Hello, i saw one of the threads much like this one. Followed the basic steps to do the dds scan and gmer scan. the dds scan when i put it on my computer (infected one) from the laptop it kept trying to read it as a CAD script. So i couldn't do that, but i got the gmer scan to work.

The virus has popups trying to get me to do a scan or buy a full version of the software. The internet is redirecting, theres an icon on my taskbar.

A:xp anti-malware 2011 virus

Hello, Welcome to TSF.
I'm nasdaq and will be helping you.

You may wish to Subscribe to this thread (Thread Tools > Subscribe to this thread) so that you are notified when you receive a reply.

Please read these instructions carefully and then print out or copy this page to Notepad in order to assist you when carrying out the fix.

Note that the fix may take several posts. Please continue to respond to my instructions until I confirm that your logs are clean. Remember that although your symptoms may vanish, this does NOT mean that your system is clean.

If there is anything you don't understand, please ask BEFORE proceeding with the fixes.

Please ensure that you follow the instructions in the order I have them listed.

Please do not install or uninstall any programs, or run any other scanners or software, unless I specifically ask you to do so. Also please copy and paste logs into the thread, rather than add them as attachments.
===

Please follow the removal instructions listed on this page from BleepingComputer.
Remove Vista Antimalware 2011 and Win 7 Antispyware 2011 name changing rogue (Uninstall Guide)

When completed Submit the MBAM and the DDS logs.

If the DDS tool will not run please let me know the Operating system you now have on this infected computer.
I need this before suggesting any other remedial tools.

Read other 2 answers
RELEVANCY SCORE 101.2

Hey, I was hoping someone could offer some advice for what to do about my computer and an issue it is having. Recently, I got a fake anti-virus program called XP Anti virus 2011, and I tried system restoring and it stopped popping up, but it made my computer worse. Everytime I tried to open a file, it would pop open the box which asks what program you want to use to open the file with, and I couldnt open help and support or any of the other icons in the task bar. I couldnt open microsoft word directly but if i opened a document for it, it would work, same with itune.
So my friend helped me fix those problems by downloading software to my computer, and it was pretty much back to normal but the fake inti-virus started popping up again, and I tried removing it by following these instructions ( http://www.bleepingcomputer.com/virus-removal/remove-win-7-internet-security-2011), and it doesnt pop up anymore, but now when I turn on my computer, I always get an error for generic host process for win32 services, my taskbar flashes from regular color, to white/grey like in windows 98, its really laggy, sometimes theres no sound no matter how much i try to adjust the volume, and I started getting a lot of popups that would open in a new tab. I have to restart it to get sound back and to make the taskbar back to its original color.

A:Started with XP Anti-Virus 2011

Hello and welcome to TSF.

We want all our members to perform the steps outlined in the link given below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

Please follow our pre-posting process outlined below. Use a USB flash drive to download and transfer the tools to the affected machine, if necessary. You might like to run the Flash_Disinfector.exe on the clean machine and the flash drive first to protect against any possible transfer of infection via USB.


NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help - Tech Support Forum

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Please note that the Virus/Trojan/Spyware Help forum is extremely busy, and it may take a while to receive a reply.

Read other 1 answers
RELEVANCY SCORE 101.2

Since TrendMicro turned out not to play well in 64 bit (at least on MY new system) I'm looking for a more capable replacement than MSE. Kaspersky is rated pretty highly.
what's SevenForums opinion on Kaspersky?

A:Kaspersky Anti-Virus 2011

Been using Avira Antivirus Free edition for years now and have yet to be infected with anything since I started using it. There certainly have been attempts, but nothing has been successful. It has a very good heuristic engine.

Read other 9 answers
RELEVANCY SCORE 101.2

I somehow picked up this virus yesterday.

The biggest problem I am having right now is that I can't open any programs or install the Malwarebytes program that many people are recommending.

When I attempt to install it (or open any program) a window pops up asking me to choose a program to open it with.

I see a post from Martial33 describing a similar problem but was able to rid of this nasty virus by running the Malwarebytes program. My problem is that I can't even load it!!!

Any help with this would greatly appreciated.
 

A:XP Anti-virus 2011 problems

elete any existing version of ComboFix you have sitting on your desktop
Please read and follow all these instructions very carefully​ Do not edit or remove any information or user names etc, otherwise we cannot fix the problem. If you insist on editing out anything then I will close the topic & refuse to offer any help.

Download ComboFix from Here or Hereto your Desktop.
As you download it rename it to username123.exe
**Note: It is important that it is saved directly to your desktop and run from the desktop and not any other folder on your computer**
--------------------------------------------------------------------
1. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
Very Important! Temporarily disable your anti-virus and anti-malware real-time protection and any script blocking components of them or your firewall before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results" or stop combofix running at all
Click on THIS LINK to see instructions on how to temporarily disable many security programs while running combofix. The list does not cover every program. If yours is not listed and you don't know how to disable it, please ask.
Remember to re enable the protection again after combofix has finished
--------------------------------------------------------------------
2. Close any open browsers and any other ... Read more

Read other 1 answers
RELEVANCY SCORE 101.2

Hello! Thank you in advanced for any help I receive. I was recently infected with the XP anti-virus thing (I'm really not to computer savvy, sorry!) and I ran superantispyware as well as mbam. The first time I did either, it seemed like nothing changed. Then I ran superantispyware again and now all those annoying messages are gone (ie. Security Threat, or even the fake scan and there is no icon for it anymore) but now I'm left with unopenable .exe files (as far as I've seen, that's the only type) and when I do try to open them, I get that "Open with.." because it can't find the program. Oh yeah and I couldn't get the GMER to work; I think I have a 64-bit system so I assumed that was why, but then again, I stupidly don't know. Thanks again!
 Attach.txt   16.99KB
  0 downloads

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Gillian at 20:06:47.67 on Sat 04/02/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_20
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.502.249 [GMT -4:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files&#... Read more

A:XP anti-virus 2011 & exe files

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about the Windows version you are using: What we in particular need to know is version, edition and if it is a 32bit or a 64bit system. If you are unsure about any of these caracteristics, just let us know and we'll help you figuring it out. Please also tell us if you have your Windows CD/DVD handy.Please include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Even if you have already provided information about your ... Read more

Read other 16 answers
RELEVANCY SCORE 101.2

Hi,
I had the trojan Vista antivirus 2011 on my computer this morning. I wasn't able to open any program or do anything except having this pop up window asking me to register to the antivirus software.

From another administrator account, I ran a full scan with Malwarebytes antimalware and I have deleted 3 infected files.

Now, in my main account, when I try to run any program, I have the windows pop-up that is asking me with what program I want to open this file.
Can someone help me get back having my computer working normally and clean?

Below are the DDS logs and the gmer log.

DDS Log:

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Admin at 18:56:12,63 on 2011-04-09
Internet Explorer: 8.0.6001.19019 BrowserJavaVersion: 1.6.0_23
Microsoft? Windows Vista? Home Basic 6.0.6002.2.1252.2.1033.18.2038.823 [GMT -4:00]
.
AV: avast! Antivirus *Enabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Enabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\... Read more

A:Vista Anti-virus 2011

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Please take note:If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available.If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply'... Read more

Read other 3 answers
RELEVANCY SCORE 101.2

Hey, I was hoping someone could offer some advice for what to do about my computer and an issue it is having. Recently, I got a fake anti-virus program called XP Anti virus 2011, and I tried system restoring and it stopped popping up, but it made my computer worse. Everytime I tried to open a file, it would pop open the box which asks what program you want to use to open the file with, and I couldnt open help and support or any of the other icons in the task bar. I couldnt open microsoft word directly but if i opened a document for it, it would work, same with itune.
So my friend helped me fix those problems by downloading software to my computer, and it was pretty much back to normal but the fake inti-virus started popping up again, and I tried removing it by following these instructions ( http://www.bleepingcomputer.com/virus-removal/remove-win-7-internet-security-2011), and it doesnt pop up anymore, but now when I turn on my computer, I always get an error for generic host process for win32 services, my taskbar flashes from regular color, to white/grey like in windows 98, its really laggy, sometimes theres no sound no matter how much i try to adjust the volume, and I started getting a lot of popups that would open in a new tab. I have to restart it to get sound back and to make the taskbar back to its original color.

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by User1 at 22:10:11.08 on Tue 05/17/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVers... Read more

A:Started with XP Anti-Virus 2011

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

Please note that these fixes are not instantaneous. Most infections require more than one round to properly eradicate.

Please stay with me until given the 'all clear' even if symptoms seemingly abate.

Kindly follow my instructions and please do no fixing on your own or running of scanners unless requested by a helper.

------------------------------------------------------

Go to Start > Run and copy/paste the following into the Run box and click OK:

cmd /c rd /s /q "c:\program files\AVG"

A DOS window will open and close again, this is normal.

------------------------------------------------------

Please download ComboFix and Save it to your Desktop.

**Note: It is important that it is saved directly to your desktop**

First, we need to install the Windows Recovery Console.

The Windows Recovery Console will allow you to boot up into a special recovery(repair) mode, if needed. This allows us to help you in the case that your computer has a problem after an attempted removal of m... Read more

Read other 19 answers
RELEVANCY SCORE 101.2

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:02:15 PM, on 5/30/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\StkASv2K.exe
C:\WINDOWS\System32\svchost.exe
C:\program files\real\realplayer\update\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\James Mark Drost\Local Settings\Application Data\aqy.exe
C:\Documents and Settings\James Mark Drost\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\James Mark Drost\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\James Mark Drost\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\James Mark Drost\Local Settings\Application Data\... Read more

A:XP Anti-Virus 2011 is my nightmare

Hello and welcome to the forums!My secret agent name on the forums is SweetTech (you can call me ST for short), it's a pleasure to meet you. I am very sorry for the delay in responding, but as you can see we are at the moment being flooded with logs which, when paired with the never-ending shortage of helpers, resulted in the delayed responding to your thread.I would be glad to take a look at your log and help you with solving any malware problems.If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed. If you have not, please adhere to the guidelines below and then follow instructions as outlined further below:Logs from malware removal programs (OTL is one of them) can take some time to analyze. I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forums.
Please make sure to carefully read any instruction that I give you. Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.
If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask!
In Windows Vista and Windows 7, all tools need to be started by right clicking and selecting Run as Administrator&#... Read more

Read other 3 answers
RELEVANCY SCORE 101.2

Well my close friend purchased Norton anti virus 2011 with one year subscription for 3 users.He offered to give me 1 license.I have read lots of negative comments and reviews about Norton 2011 suite.My question is should i go for it or not??

Btw currently i have MSE and avast installed on my laptop.

Thanks in advance

A:Norton Anti virus 2011

I personally always use Norton, Others will say, no, comes down you, if you use or not.

Read other 9 answers
RELEVANCY SCORE 101.2

Hello BC!I've been given the task to help an old friend with her virus-infected laptop. It's an Acer Aspire 6930 running a 64-bit version of Windows Vista Home Premium. I booted it up and Vista Anti-Virus 2011 pops up and says that I have a bajillion viruses and need to register to get rid of them. Additionally, several error messages relating to ccd.exe appeared on-screen.I booted into Safe Mode and ran MBAM, which found 2 infected objects and deleted them. Upon restarting into normal mode, Vista Anti-Virus 2011 does not boot, nor do the hordes of error messages regarding ccd.exe. However, McAfee SecurityCenter states that my computer is not protected, and I cannot get it to load. Also, when I load the first instance of Internet Explorer 7 after booting, the initial tab title briefly says "Vista Anti-Virus ALERT" before loading the homepage (msn.com). I am not having any troubles with Google or URL redirects, and this does not affect Internet performance.I just want to verify that Vista Anti-Virus 2011/ccd.exe is completely removed from this computer before handing it back to my friend. LogsHere is the DDS log. Attach.txt is attached..DDS (Ver_11-03-05.01) - NTFS_AMD64 Run by Brower Family at 17:22:58.26 on Sun 05/08/2011Internet Explorer: 7.0.6001.18000Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.1.1033.18.4024.2289 [GMT -6:00].AV: McAfee VirusScan *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}SP: Windows Defender *Disabled/Upda... Read more

A:Vista Anti-Virus 2011 / ccd.exe

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Please take note:If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available.If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply'... Read more

Read other 3 answers
RELEVANCY SCORE 101.2

Quote:
AVG Anti-Virus Free 2011 is better at removing malware than most free solutions, but not at malware blocking. With the current release it has the full power of AVG's paid solutions, and the independent labs give it top marks. Add some unusual bonus features and you've got a solid choice for free antivirus protection


Review

A:AVG Anti-Virus Free 2011

Thanks for the info Mark.

Read other 2 answers