Over 1 million tech questions and answers.

Internet Security 2014 fake anti-malware; as an added bonus zero.access!

Q: Internet Security 2014 fake anti-malware; as an added bonus zero.access!

IS 2014 showed up with its dire warning of errors and infections.  I ran MBAM-Chameleon (although it never finished the process where it killed suspicious processes); then MBAM quick scan which ID'd 3 infected files. Rebooted and ran MBAM full scan which came up clean.  Ran RogueKiller, which ID'd zero.access and pointed to CDROM.sys as obfuscated and suspicious.  Ran the RogueKiller delete process, and now the CD optical drive doesn't register with Windows XP (SP3).  Where should I go from here?
 
Thanks in advance!

RELEVANCY SCORE 200
Preferred Solution: Internet Security 2014 fake anti-malware; as an added bonus zero.access!

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: Internet Security 2014 fake anti-malware; as an added bonus zero.access!

Please...follow Steps 6-8 of Preparation Guide, Before Using Malware Removal Tools and Requesting Help - http://www.bleepingcomputer.com/forums/topic34773.html .  Post the DDS log which is requested, along with your RogueKiller log...as a new topic in the forum which contains the Prep Guide.
 
Thanks .
 
Louis

Read other 2 answers
RELEVANCY SCORE 95.6

I have a relatives pc im working on. He was browsing a Harley Davidson website and got hit with this malware. Any help appreciated The process running is called AV.exe both dds logs are in that zip

DDS (Ver_09-12-01.01) - NTFSx86
Run by HP_Owner at 19:59:15.18 on Mon 02/08/2010
Internet Explorer: 7.0.5730.11
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.959.590 [GMT -6:00]

AV: Norton 360 *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton 360 *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Documents and Settings\HP_Owner\Local Settings\Application Data\av.exe
C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe ... Read more

A:[SOLVED] Xp internet security fake anti malware app

I think i got it with combo fix

Read other 1 answers
RELEVANCY SCORE 91.6

Hi All,
 
My computer appears to have come down with something nasty. The program started by hijacking Microsoft Security Essentials, claiming that a Trojan was on the computer and that a download of "Windows Defender Online" was necessary for complete removal. A search on google suggested this program was legitimate, but upon doing the download, the "Internet Security 2014" installed itself, and has been claiming false instances of malicious software (ex. "blaster worm"). This program refuses to allow any other .exe files to open, claiming that they are malicious and have been stopped. The program also demands I need to "activate" it in order to "cure my computer."
 
Upon the infection of MSE, I ran Malwarebytes, ESETscan, and TDSSKiller; none detected anything.  The svchost.exe program was repeatedly launching and usually an abnormally large amount of space. as much as 1000000 kb. Seeing as I have been unable to remove this malware on my own, I could use some guidance so that I can return my computer to a working, uninfected state.
 
The OS is XP. I tried the guide for XP for Internet Security 2013. Any attempts to launch in safe mode (both with and without networking) are met with a blue screen error:
 
*** STOP: 0x0000007B (0xF78AA524, 0xC0000034, 0x00000000, 0x00000000)
 
I tried to run RKill.exe from a flash drive, including renaming the file to a .com. The program was stopped by the malware within a couple seconds of launch.
 
Thank y... Read more

A:Internet Security 2014, fake security program prevents .exe files from launching

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.===--RogueKiller--Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit Quit all programs that you may have started.Please disconnect any USB or external drives from the computer before you run this scan!For Vista or Windows 7, right-click and select "Run as Administrator to start"For Windows XP, double-click to start.Wait until Prescan has finished ...Then Click on "Scan" buttonWait until the Status box shows "Scan Finished"click on "delete"Wait until the Status box shows "Deleting Finished"Click on "Report" and copy/paste the content of the Notepad into your next reply.The log should be found in RKreport[1].txt on your DesktopExit/Close RogueKiller+===Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.Please download AdwCleaner by Xplode onto your Desktop.Close all open programs and internet browsers.Double click on AdwCleaner.exe to run the tool.Click on Delete tab follow the prompts.A log file will automatically open after the scan has finished.Please post the content of that log file with your next answer.You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).Please download ComboFix from one of these locations:Link 1Link 2IMPORTANT !!! Save ComboFix.exe to your DesktopDisable your Anti-Vi... Read more

Read other 3 answers
RELEVANCY SCORE 90.4

Hi All,
 
My computer appears to have come down with something nasty. The program started by hijacking Microsoft Security Essentials, claiming that a Trojan was on the computer and that a download of "Windows Defender Online" was necessary for complete removal. A search on google suggested this program was legitimate, but upon doing the download, the "Internet Security 2014" installed itself, and has been claiming false instances of malicious software (ex. "blaster worm"). This program refuses to allow any other .exe files to open, claiming that they are malicious and have been stopped. The program also demands I need to "activate" it in order to "cure my computer."
 
Upon the infection of MSE, I ran Malwarebytes, ESETscan, and TDSSKiller; none detected anything.  The svchost.exe program was repeatedly launching and usually an abnormally large amount of space. as much as 1000000 kb. Seeing as I have been unable to remove this malware on my own, I could use some guidance so that I can return my computer to a working, uninfected state.
 
Thank you, I appreciate any and all help.

A:Internet Security 2014 Fake Security Program

I don't know your Operating System so go herehttp://www.bleepingcomputer.com/virus-removal/page/3/And try the guide that matches your system and let me know.

Read other 5 answers
RELEVANCY SCORE 80

DDS log file as requested:
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 10.17.2
Run by Deb at 13:13:41 on 2013-05-30
Microsoft Windows XP Home Edition  5.1.2600.3.1252.1.1033.18.2037.1363 [GMT -5:00]
.
AV: AVG update module *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG update module *Enabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\WINDOWS\vVX3000.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\PROGRA~1\RECIPE~2\bar\1.bin\2jbrmon.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\AVG SafeGuard toolbar\vprot.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\AVG\AVG2013\avgwdsvc.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program File... Read more

A:Internet Security 2014 infection, CDROM.sys compromised by zero.access

Hello loadblok I would like to welcome you to the Malware Removal section of the forum.Around here they call me Gringo and I will be glad to help you with your malware problems.Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!Please do not run any tools unless instructed to do so.We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.Please do not attach logs or use code boxes, just copy and paste the text.Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.Please read every post completely before doing anything.Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.Please provide feedback about your experience as we go.A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same"... Read more

Read other 27 answers
RELEVANCY SCORE 79.2

Hi,

My girlfriends computer was infected this morning while she was working at home. Neither of us are really sure how it became infected since she was replying to e-mail via outlook at the time it started coming up on the screen.
We would really appreciate help on trying to remove it.

Her operating system is: Windows XP Pro (2002 Version) Running SP3

Thanks,

-Jason.

A:Rouge fake anti-malware application Live Security Platinum Infection

Hi Jason,

I will be handling your log to help you get cleaned up. Please give me some time to look it over and I will get back to you as soon as possible.

Read other 4 answers
RELEVANCY SCORE 78.4

VIPRE Internet Security 2014 is packed with sophisticated computer internet security features that protect against viruses and other malware threats without slowing down your PC. You won't notice it's running (even during scans and updates).

http://www.vipreantivirus.com/VIPRE-Internet-Security/
http://www.vipreantivirus.com/VIPRE-antivirus/

Features:

NEW Social Watch ?
Scans your Facebook page for bad links that could infect PCs with malware like viruses and Trojans, or expose you and your friends to other online threats.

NEW Search Guard ?
Helps you browse the web safely by identifying links that could infect your PC with viruses, Trojans or other online threats.*

Auto Patch ?
Defends against the most common cause of infections ? vulnerable software ? by automatically updating programs on your PC.

VIPRE Easy Install ?
Ensures a smooth, trouble-free installation process by eliminating possible computer internet security software conflicts.

Two-way firewall
Protects against incoming and outgoing Internet traffic quickly
and easily with customizable settings for advanced users.

Spam filter
Filters unwanted email from your inbox and safeguards against spam, phishing scams and malicious URLs.

Bad website blocker
Blocks access to malicious websites containing computer internet security threats to prevent you from inadvertently browsing to them and compromising your PC.

High-performance anti-malware engine
Combine... Read more

A:Vipre Internet Security 2014 and Antivirus 2014 Final

vipre has improved there antivirus engine. There web protection works great.

Also they provide lifetime license which can be used on a PC for 20 years.
 

Read other 8 answers
RELEVANCY SCORE 78

Hello, i have an expiring license for Bitdefender Internet Security 2014 and i am quite happy with it. It's light on resources and it has a good protection. I have tried Norton for 30 days and it's also light on resources, lighter than Bitdefender. So which suite has better protection. It appears that the independent testing firms show Bitdefender as better and lighter, but i want the opinion of the members in bleeping computer.

A:Bitdefender Internet security 2014 vs Norton Internet security 2014?

I would continue to use Bit Defender.

Read other 8 answers
RELEVANCY SCORE 74

Prevents internet access and therefore updates for Malwarebytes, Avast!, and Spybot.

Started yesterday when we got fake XP Internet Security 2012 warnings. Immediately identified them as not real and did not heed their advice. Since then, we have not been able to access the internet using Internet Explorer or Google Chrome. Attempts to update the 3 programs listed above produce instant error messages.

Have run scans with each of those programs with their out-of date definitions. Resulted in a few things, which we had the programs remove, but the internet problem remains unchanged.

I have tried following the directions on this site for "Automated Removal Instructions for XP Internet Security 2012 using Malwarebytes' Anti-Malware." I got to step 6 and Malwarebytes still could not update. The directions indicate to request help here. I followed the preparation guide. I was unable to make sure the firewall. I got an error message, "Windows Firewall settings cannot be displayed because the associated service is not running. Do you want to start the Windows Firewall/Internet Connection Sharing (ICS) service? Yes/No." Selecting yes didn't make it work. Other than that, I did everything in the prep guide.

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 8.0.6001.18702

Run by HP_Administrator at 13:32:08 on 2011-12-19

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.958.387 [GMT -5:00]

.

AV: avast! Antivirus... Read more

A:Fake XP Internet Security 2012 Malware?

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything. We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. To help Bleeping Computer better assist you please perform the following steps:*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/433423 <<< CLICK THIS LINK If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.*************************************************** If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lo... Read more

Read other 20 answers
RELEVANCY SCORE 73.6

I can't believe I have to bother you guys again.  I thought I had to browse porn and illegally download music to get infected this much.  Does MSE even work?  Best that I become an expert virus remover so you don't have to deal with me any more!
Here goes - the ransomware business has managed to find its way on to my laptop.  I got my laptop working again by booting in safe mode and picking a restore point a couple days before the infection.  I ran a Malwarebytes scan afterwards and it advised it found Trojan.Ransom.LS  I removed it and everything seems to be hunky dory - but thought I'd check with you fellas to make sure it's truly been removed from my system.
 
Here are the files you need:
 
*EDIT - SEE BELOW THE DDS FILE - The trojan reared its ugly head again - once again I managed to trick my way into getting the laptop running again and ran Malwarebytes.  Two items were found - I posted the log after the DDS log.
 
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16490  BrowserJavaVersion: 10.21.2
Run by Dingbat at 15:42:40 on 2013-07-05
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.6050.4047 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
.
... Read more

A:This time it's Ransomware - With The Added Bonus of Webcam Control!

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===If not already executed please run the MBAM and remove all malware that if found.Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.Please download AdwCleaner by Xplode onto your Desktop.Close all open programs and internet browsers.Double click on AdwCleaner.exe to run the tool.Click on Delete tab follow the prompts.A log file will automatically open after the scan has finished.Please post the content of that log file with your next answer.You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).=== Please downloadJunkware Removal Tool to your Desktop.Please close your security software to avoid potential conflicts.Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.The tool will open and start scanning your system.Please be patient as this can take a while to complete, depending on your system's specifications.On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.Please post the contents of JRT.txt into your reply.===Please download ComboFix from any of the links below, and save it to your desktop. For information regarding this download, please visit this web page: TurorialLink 1Link 2IMPORTANT !!! ... Read more

Read other 19 answers
RELEVANCY SCORE 72.4

I was infected with the XP Internet Security trojan. After removing it using the instructions I found here (using FixExe.reg and MalwareBytes anti-malware), it seems that both Firefox and IE have been hijacked. Clicking the results of Google or Yahoo! searches will take me to a page that often is downloand malware and reinfecting my machine. I also believe that YouTube pages are hijacked and instead of the video playing, I get a new infection. Sometimes my McAfee antivirus will catch the malware being downloaded. Other times I had to repeat the procedure using Malwarebytes to get control of my maching again. I have also done scans with Spybot-S&D. I did run HijackThis as well but did not see anything obvious.

What should I do next?

A:Browser hijack after remove Fake Internet Security Malware

Hello, please post the MBAM scan log.The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.Next run ATF and SAS: If you cannot access Safe Mode,run in normal ,but let me know.Note: On Vista, "Windows Temp" is disabled. To empty "Windows Temp" ATF-Cleaner must be "Run as an Administrator".From your regular user account..Download Attribune's ATF Cleaner and then SUPERAntiSpyware , Free Home Version. Save both to desktop ..DO NOT run yet.Open SUPER from icon and install and Update itUnder Scanner Options make sure the following are checked (leave all others unchecked):Close browsers before scanning.Scan for tracking cookies.Terminate memory threats before quarantining.Click the "Close" button to leave the control center screen and exit the program. DO NOT run yet.Now reboot into Safe Mode: How to enter safe mode(XP)Using the F8 MethodRestart your computer. When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu. Select the option for Safe Mode using the arrow keys. Then press enter on your keyboard to boot... Read more

Read other 8 answers
RELEVANCY SCORE 72.4

Please help me,
I cannot access any internet (wifi & ethernet) after malware removal using GridinSoft Anti Malware. I already updated network drivers, but it's still not working.
 

Read other answers
RELEVANCY SCORE 70.4

This update will require an application restart.
Fixed: Occasional issue where behavior blocker alerted on a trusted program behavior.
Fixed: Occasional crashes related to: TUpdatesGUIHandler.LoadLocale?, ?TUpdatesGUIHandler.LoadLocale?, ?TRegistryProxy.CheckoutJournal?.
Fixed: Occasional issue where the license dialog was blocked by a firewall alert in Emsisoft Internet Security.
SOURCE: Beta updates ? 2015-12-29 - Changelogs
 

Read other answers
RELEVANCY SCORE 70.4

Emsisoft Anti-Malware & Emsisoft Internet Security 11.6.0.6267 released
Emsisoft Anti-Malware & Emsisoft Internet Security 11.6.0.6267 released. This is a maintenance release for improved compatibility, usability, speed, detection and stability.

This update will require an application restart.

Improved: Emsisoft Security Center startup speed.
Improved: Restore process of false positives after a Quarantine Re-scan.
Improved: Stability of import hosts file in Surf Protection.
Improved: A2CMD now processes ?/?? and ?/help? even if no valid key installed.
Improved: A2CMD now processes ?/k? and ?/u? combination in one commandline.
Improved: A2CMD /? wording.
Improved: Malware removal on reboot.
Fixed: Surfprotection now doesn?t show alert in Game mode.
Fixed: A silent scheduled scan now doesn?t open Emsisoft Security Center.
Fixed: Occasional crash ?TEmsiEdit.SetBounds?.
Fixed: Update percentage indicator in the tray icon hint.

 

Read other answers
RELEVANCY SCORE 70.4

which is the Best Anti-Malware scanner along with KIS 2015?
 

A:Best Anti- Malware along with Kaspersy Internet Security 2015

Ajay123 said:





which is the Best Anti-Malware scanner along with KIS 2015?Click to expand...

Malwarebytes free as a on demand scanner would be a good choice..
https://www.malwarebytes.org/
 

Read other 17 answers
RELEVANCY SCORE 70

I downloaded .zip and .exe file. I ran .exe file and then the internet stop working. Webpage said not connected to internet. Both firefox and internet explorer. A toolbar appeared on my desktop. I was able to uninstall toolbar. I believe it was named search module. Malwarebytes doesn't start says missing DNSAPI.dll to run. Ran Rkill to try to use Malwarbytes, says file is corrupted and runs halfway. Mentioned Windv.exe and Deskbar in rkill file. Any help would be much appreciated! Thanks so much!
 
 
 
 
 
Here is the Farbar Scan Report:
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015
Ran by April (administrator) on APRIL-PC (11-11-2015 13:34:57)
Running from E:\
Loaded Profiles: April (Available Profiles: April)Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015
Ran by April (administrator) on APRIL-PC (11-11-2015 13:34:57)
Running from E:\
Loaded Profiles: April (Available Profiles: April)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Cli... Read more

A:Can't access internet or run Malwarebytes Anti-Malware

Hi & to Bleeping Computer Forums!My name is Jürgen and I will be assisting you with your Malware related problems. Before we move on, please read the following points carefully: My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.Perform everything in the correct order. Sometimes one step requires the previous one.If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now!Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.If I don't reply within 24 hours please PM me!Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.You've posted the contents of FRST.txt twice but the Addition.txt is missing. Can you please also pos... Read more

Read other 26 answers
RELEVANCY SCORE 69.6

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4799 released. This is maintenance release for improved usability, speed, detection and stability.

Improved GUI loading speed for other than en-us languages.
Improved license renewal behavior.
Improved functionality for all grid columns (auto-width, sorting).
Improved Behavior Blocker logging for application rules.
Improved behavior for Alert windows: no focused default button to avoid accidental confirmations.
Improved functionality for the Quarantine submission form (added ?Back? button?).
Improved column header sort indicators for all grids.
Improved functionality for detections from scan results: manual addition to the white list as ?file?.
Improved ?Add file? button on quarantine page now allows to add multiple files.
Improved stability and GUI enhancements.
Fixed a possible memory corruption.
Fixed an issue causing an ?SQLLite 5? error.
Fixed an issue with multiple confirmations in the factory defaults feature.
Emsisoft Internet Security:
additionally :

Improved Installer checks on required Microsoft patches and existence of Virtual Box.
Improved Firewall logging for application rules.
Improved Firewall application rule?s additions. (automatic).
Improved Firewall performance and stability.
Fixed a network blocking issue during raised Firewall Alert.
Fixed an issue where addition of a CIDR network rule caused a lockup.
Fixed a network shares being blocked issue.
Source

Emsisoft Internet ... Read more

A:Emsisoft Anti-Malware & Internet Security 9.0.0.4799 released

Seems very good and interesting.
 

Read other 11 answers
RELEVANCY SCORE 69.6

Hi I was wondering if Heimdal PRO is compatible with Emsisoft Anti-Malware? because I thought the behavior blockers might conflict with each other.

Thanks, Andrew
 

A:Internet Security Heimdal PRO compatible with Emsisoft Anti-Malware?

Heimdal PRO is not a standalone anti-malware program. It's thought as an additional layer of protection, so it shouldn't give any conflicts between these two programs.
 

Read other 3 answers
RELEVANCY SCORE 69.6

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4985 released. This is a maintenance release for improved usability, speed, detection and stability.

? Update to 9.0.0.4985 requires a computer reboot.

New Emsisoft Protection Platform implementation.
New notification with scan statistics after boot, if PC was shutdown by ?Shutdown computer on scan completion?.
New scheduled scans button on scan dialog.
New context menu for application rules dialog.
Improved Behavior Blocker digital signature check on computer startup.
Improved update process.
Improved Automatic Update scheduler.
Improved logging details for Behavior Blocker/File Guard/Surf Protection.
Improved automatic refreshing of logs.
Improved ?Restore? and ?Save copy? from Quarantine now shows a dialog asking if you want to add the file to white-list.
Improved Restore from Quarantine now shows a dialog asking if you want to overwrite an existing file.
Improved Whitelist grid keyboard navigation.
Improved Installation Wizard now requires a reboot at the last step instead of after scan (when malware has been found)
Improved Installation Wizard now shows an error message when the service cannot be installed.
Improved support for TLS for Email notifications.
Improved loading of hosts file in Protection/Surf Protection.
Improved stability and GUI enhancements.
Fixed a possible install wizard hang after entering an incorrect license key.
Fixed an occasional issue where ?Application changed alert?... Read more

A:Emsisoft Anti-Malware & Internet Security 9.0.0.4985 released

What do they mean with this?:

New Emsisoft Protection Platform implementation.

 

Read other 19 answers
RELEVANCY SCORE 69.6

I have a laptop with 2GB RAM and almost everyday I should use internet for my work or just for have fun like download software or ebook on some forum/website.
But I am a paranoid with virus because I had bad experience with malware (I don't know what type threat)
My question is will make crash my system if I turn on realtime and cloud sanbox ransomware Zemana anti malware with Avast Internet security?
Have you ever experience with this "combine"?
 

A:Zemana Anti Malware and Avast Internet Security on Low Spec PC

johnmathiaz said:


My question is will make crash my system if I turn on realtime and cloud sanbox ransomware Zemana anti malware with Avast Internet security?
Have you ever experience with this "combine"?Click to expand...

AIS+zemana Anti-Malware Free is a great combo but not sure about both ON realtime protection.
 

Read other 3 answers
RELEVANCY SCORE 69.6

Emsisoft Anti-Malware & Emsisoft Internet Security 2017.5.0.7538 released. This release includes fixes, enhancements and stability improvements.

This update will require an application restart.
New: Anti-Ransomware component on Protection tile on overview screen.
New: Scan setting: ?Scan in email data files?.
Improved: Reduction of false positives.
Improved: Upload of attachments when contacting customer support.
Improved: Main program windows position when the program opens outside of the visible desktop.
Improved: Quarantine screen refresh when Emsisoft Commandline Scanner or Emsisoft Enterprise Console restores files from, moves files to, or deletes files from quarantine.
Improved: Additional warning before deleting or moving scanner detections, found inside of archives, to quarantine.
Improved: More clear default folder names for export- and scan settings.
Improved: USB insertion detection which did not start the scheduled scan on some computer systems.
Improved: Processing of the installer command line parameters related to customer care settings (URL verification).
Fixed: Occasional crash with Microsoft Word.
Fixed: Crash when importing a very large hosts list in Surf Protection.
Fixed: Address column values in the Firewall screen in Emsisoft Internet Security.
Fixed: Occasional issue wherein the Behavior Blocker monitor showed processes with an unknown reputation.

 

Read other answers
RELEVANCY SCORE 69.6

http://translate.google.de/translate?hl=de&sl=de&tl=en&u=http%3A%2F%2Fwww.avira.com%2Fde%2Fpress-details%2Fnid%2F691%2Fnews%2Fkingsoft-integrates-avira
 

A:Kingsoft Internet Security anti-malware technology from Avira

I have a bad experince with it,when i uninstall it ,it can't remove properly kaspersky shows kingsoft exit finally i formet my pc
 

Read other 1 answers
RELEVANCY SCORE 69.6

This update will require an application restart.
Fixed: Occasional issue where behavior blocker alerted on a trusted program behavior.
Fixed: Occasional crashes related to: TUpdatesGUIHandler.LoadLocale?, ?TUpdatesGUIHandler.LoadLocale?, ?TRegistryProxy.CheckoutJournal?.
Fixed: Occasional issue where the license dialog was blocked by a firewall alert in Emsisoft Internet Security.
SOURCE: Beta updates ? 2015-12-29 - Changelogs
 

Read other answers
RELEVANCY SCORE 69.6

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4668 released. This is maintenance release for improved usability, speed, detection and stability.

Fixed an occasional Eurekalog crash.
Fixed a memory corruption issue.
Fixed ?cannot connect to service? issue.
Fixed a disappeared icon in the notification area.
Fixed some issues with scheduled scans.
Fixed a permissions/password related issue.
Fixed an occasional issue where actions were being denied by the behavior blocker although they were explicitly allowed.
Fixed a memory corruption issue in a2cmd.
Fixed an issue in Windows Safe mode.
Improved signatures download speed during installation.
Improved surfprotection notifications and handling.
Improved Updating mechanism.
Improved Surfprotection for windows XP.
Improved icon ?last update? information.
Improved WSC integration on vista.
Improved a2cmd /L parameter parsing and related folder creation.
Improved a2cmd /wl and /q parameter parsing.
Stability improvements.
GUI enhancements.
Source
 

Read other answers
RELEVANCY SCORE 69.6

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.5066 released. This is a maintenance release for improved usability, speed, detection and stability.

Note: Update to 9.0.0.5066 requires a computer reboot.

Improved: Occasional crash or guards not loading.
Improved: Occasional delays during system boot.
Fixed: Settings button on malware alert notification.
Fixed: Out of resources error.
Source
 

A:Emsisoft Anti-Malware & Internet Security 9.0.0.5066 released

yea they are really improve it!
ram usage on my system : 85-137mg(from 200mg)
boot time increaced from 2 min to 1:24 !


 

Read other 12 answers
RELEVANCY SCORE 69.6

Hello everyone!
I decided to give Emsisoft a try.

I am just a bit confused.
Should I go for the internet security or should I go for the antimalware + online armor?

I would like to have a good hips, that I can compare to comodo.
 

A:Emsisoft internet security or Anti-Malware + Online Armor

Emsisoft internet Security have no hips module, its not needed because the topnotch bb. When u want hips u can use antimalware with online armor. But online armor have not the same firewall as intenet security. it becomes outdated.
 

Read other 8 answers
RELEVANCY SCORE 68.8

Hello,I seem to have contracted a virus or malware of some description that generates fake, "Your Computer may be infected" - type alerts in my Windows taskbar and attempts to install a fake antivirus onto my pc called XPShieldSetup.exe. It also causes advertising popup, though this is fairly rare (once or twice an hour, max).I am running Windows XP, Service Pack 3, and I have Trend Micro PC-cillin Internet Security 14 for antivirus software. I have also turned on Windows firewall, as per the instructions on this site.My antivirus program detects an infected file called C:\WINDOWS\SysNotifier.exe, and classifies it as something called "Mal_FakeAV-9". It Quarantines this file repeatedly, but it always comes back, even if I manually drag it to the Recycle Bin.I have run HijackThis and attached a copy of the log file it created.Thanks in advance for your help. Here is my hijackthis log:Logfile of Trend Micro HijackThis v2.0.2Scan saved at 11:27:32 PM, on 4/28/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16827)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:&#... Read more

A:Malware of some sort causing ad popups, fake virus alerts, trying to install fake anti-virus, etc -- HijackThis log attached.

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the resul... Read more

Read other 4 answers
RELEVANCY SCORE 68.8

can some one plaese help me with this. im running windows 7., i guess if i have to i will reinstall windows but i hate to do that.
 

Read other answers
RELEVANCY SCORE 68.4

Hi all,My dad has asked me to take a look at his computer after it's been acting odd, and it looks like he's got a doozy of something running on the system. He's been getting some pop ups advertising various programs, the desktop is changed to text reading "Your system is infected! System has been stopped due to a serious malfunction. Spyware activity has been detected" (which is not something any program that should be running would display", Task Manager is blocked from opening and a fake piece of anti-spyware has taken up residence (don't have the name off hand).Looking at the log, I found a couple of things that I'm not a fan of - batmeter16.dll, for starters. There's a couple others I don't recognize, but I am not sure if they are bad or not.Unfortunately, my attempts to fix it have been thwarted - an AVG scan said it cleared it up, but more pop ups came. I tried to run Malware Bytes, but when I download the latest update through the program, I get a nice warning message saying "The database you are using is not supported by this version of Malwarebytes' Anti-Malware. Download the latest version of the program."Additionally, this came about because I tried to start into Safe Mode to get this cleaned up. I couldn't get my keyboard to register keystrokes before Windows started, which kept me from accessing the dialogue allowing Safe Mode to be entered, so I modified boot.ini to force a safe mode boot. Unfortunately, this brought about a blue sc... Read more

A:Malware blocking MalwareBytes (post-update), fake anti-malware program

Hello, my name is fenzodahl512 and welcome to the forum.. Please do the following....Please download The Comedian.exe by Rorschach112 to your desktopPlease disable all of your antivirus/firewall before doing this step. Please visit HERE if you don't know how..Double click the program to run it. It will only take around several minutes to run.It will do a series of tasks and tell you when each one is finished.You will be prompted to press any key after each stepWhen it is done it will close and exit itself automatically.You can delete The_Comedian.exe once it is finishedSTOP! if you can't complete this step.. Tell me more about it..NEXTPlease download OTL by OldTimer and save it to your desktop.Under the Custom Scans/Fixes box paste this innetsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\*. /mp /s
CREATERESTOREPOINTDon't change any setting... Just click on the Run Scan button.. Let it scan till finish..Then a log will pop-up at your Desktop. Post the content of the log hereNEXTWe need to scan for Rootkits with GMERPlease download GMER from one of the following locations, and save it to your desktop:Main Mirror
This version will download a randomly named file (Recomm... Read more

Read other 3 answers
RELEVANCY SCORE 68

Have been persuaded to use Kaspersky and am awaiting download. Do I have to remove Sec Essentials before installing Kasp ?

A:MS Security Essential and Kaspersky Internet Security 2014

Yes, it's better to remove any other antivirus prior to install a new one. Reason is that two active antivirus scanning the system at the same time may conflict between them and unnecessarily slow down your system.

Always have only one antivirus doing on-access system scanning. Keeping MSE or anything else just for on-demand scans is fine.

Read other 2 answers
RELEVANCY SCORE 67.6

My PC was attacked by the 'systemdefender' virus yesterday and I was relieved to get it back again after using Malwarebytes' Anti-Malware. After fresh reboot I did a final quick scan with Malwarebytes and it said there were 0 infected files left but when I tried to access google the IE page presented the 'Internet Explorer cannot display the page' message with another below suggesting that the site I am trying to reach is dangerous and offering a hidden link back to the System-defender website. I could not believe that this virus was still in my system? Anyway I decided to try SUPERantispyware, ran that and it found several more infected files so I removed them.

I now have the regular 'Internet Explorer cannot display the page' message (without any corrupt link) when I try to access the web. My wireless says it is connected with excellent strength. If I run the IE 'diagnose connection problems' tool, I am told that it is probably firewall settings preventing connection, but even with the firewall turned off I still cannot connect.

I am now guessing that something vital was deleted during the clean-up process. Can anyone suggest anything?

Read other answers
RELEVANCY SCORE 67.2

I have this setup on two PCs, both with Windows 10 64-bit. My concern is possible conflicts between softwares. I added the exclusions for Malwarebytes Anti-Malware in Avira and for Avira in Malwarebytes Anti-Malware, even if I read that there shouldn't be any conflicts between these two, especially with free version of Malwarebytes Anti-Malware. I have Avira Pro set to highest detection level, CF configured according to this link (Guide for Comodo Internet Security v8 installation & setting +HIPS enabled in Safe Mode), Voodooshield free with Whitelist Mode-always ON and default setup, Avira Scout as browser and Avira System Speed Up.
My biggest concern is CF, because I use it now for the first time, I read a lot about it, but still have some concerns.
What settins should I make in CF( Firewall, Sandbox, Hips, Viruscope) for these secutity tools to work together without conflicts?
What settings should I do in other softwares for same purpose?
I have installed the setup for a week now and it seems to not be any problem, but I want to be sure.
Finally i want to ask for opinions about setup, what should I add/remove, how strong it looks etc.
I added a screenshot of my CF config: Gyazo - 4b9ea71bb8e9757646229a01e5e837e9.png
One last thing, when I want to open a browser in Comodo Sandbox, I have no internet, the page is not loading and the process appears in Blocked Intrusions in Defense+Events section and i don't know why (tried with many browsers).
 

A:What exclusion should I do for this configuration: Avira Internet Security+CF+Malwarebytes Anti-Malware Free+Voodooshield

There shouldn't be conflicts between Avira & VoodooShield or Malwarebytes Anti-Malware but it is possible that there could be a conflict with Comodo IS. If you use Comodo IS primarily for the Firewall then you should be fine but yeah like you said you need to check all the settings to make sure that everything is ok & won't ever conflict. By the sound of it I think you'll be fine. I used to use Comodo IS with Kaspersky IS 2017 & VoodooShield & Zemana. I used Comodo for Sandboxing only though & there were no conflicts there.
 

Read other 34 answers
RELEVANCY SCORE 66

Anyone using this software? Reviews? Opinions?

They got some great deals on Ebay for this software for 3 pcs and 2 years for $20.00!!!

A:Bit Defender Internet Security 2014

Hi there .. I would tend not to buy Software from that source .. We had a poll on here awhile back and the AV you have mentioned was only used by three people .. At the end of the day its your choice but no matter which one you choose . Make sure you get it from a reliable source ..

Read other 2 answers
RELEVANCY SCORE 66

We have been infected by this trojan.  I go into safe mode, run McAfee and Malware.  Delete the objects they find but when I reboot, it starts right up again. Any suggestions?  Thanks! Also, I am not very knowledgable so please dumb it down for me.  Edit: Moved topic from Windows 7 to the more appropriate forum. ~ Animal

A:Internet Security 2014 question

Welcome aboard  Please follow the instructions in THIS GUIDE starting at Step 6. If you cannot complete a step, skip it and continue.Once the proper logs are created, then make a NEW TOPIC and post it HERE. Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

Read other 1 answers
RELEVANCY SCORE 65.6

I am trying to help a friend remove some anti virus program which got on her machine somehow. The program keeps showing up programs being run as being infected.. it won't allow anything to open other than a browser. It is trying to sell their program to disinfect it. The program I believe was named Anti Spy Soft with a windows anti virus logo in the taskbar. It kept forwarding browsers to their website to try to sell it. I disabled a few programs from the startup in msconfig and the program stopped running, but I'm unsure which it was that caused it. The program isn't causing issues anymore, but I'd like to get it removed as well as anything else that could be potentially harming system performance.




DDS (Ver_10-03-17.01) - NTFSx86
Run by Steve at 1:48:55.05 on Tue 05/11/2010
Internet Explorer: 7.0.6001.18000
Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.1.1033.18.3006.1878 [GMT -7:00]

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe ... Read more

A:Fake Anti Virus Malware

Hi,

Please do the following:


Download Combofix from either of the links below. You must rename it to combo.exe before saving it.
Save it to your desktop. Change the save as file type to "all files"

**Note: In the event you already have Combofix, delete it, this is a new version that I need you to download. It is important that it is saved and renamed following this process directly to your desktop**
If you are using Firefox, make sure that your download settings are as follows:Tools->Options->Main tab
Set to "Always ask me where to Save the files".


Link 1
Link 2

----------------------------------------------------------- Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.

-----------------------------------------------------------
NOTE: If ComboFix asks to install the Recovery Console, please ALLOW it to do so.

--------------------------------------------... Read more

Read other 2 answers
RELEVANCY SCORE 65.6

I tried removing it with MBAM, but it only seems to have made things worse. Now the computer can't even boot up at all!It goes through the boot process, windows loading screen pops up, then an error messege comes up... saying Windows had trouble loading and it asks me to pick an option for restart. Only... my keyboard won't work when it comes up... so it stays on the 'restart normally' option and loops endlessly. I tried using a different keyboard... and it was able to access the Bios... so I know it functions... but when it goes back to the error screen it won't function. Something tells me it's the virus putting that screen up... so I believe I need a way to kill it before loading Windows. Fortunately I have this computer (although it was hit with a different virus the other day [friggen google link redirect virus] it still seems to well enough) so I can download and burn to CD any programs needed.Please help!

A:Fake anti malware program

Hello, please see if you can follow the steps below.I will move this thread to a more appropriate forum.Please download OTLPE (filesize 120,9 MB)When downloaded double click on OTLPENet.exe and make sure there is a blank CD in your CD drive. This will automatically create a bootable CD.Reboot your system using the boot CD you just created.Note : If you do not know how to set your computer to boot from CD follow the steps hereYour system should now display a REATOGO-X-PE desktop.Depending on your type of internet connection, you should be able to get online as well so you can access this topic more easily.Double-click on the OTLPE icon.Ensure the box "Automatically Load All Remaining Users" is checked and press OKOTL should now start.Press Run Scan to start the scan.When finished, the file will be saved in drive C:\OTL.txtCopy this file to your USB drive if you do not have internet connection on this systemPlease post the contents of the OTL.txt file in your reply.

Read other 26 answers
RELEVANCY SCORE 65.6

Happy New Year guys,

A fake anti-virus malware has infected my PC. It added proxies to browsers and restricted access to internet. Have entered into safemode with networking, deleted the proxies and am able to access internet now. Please find below log from DDS and attached more logs from DDS and GMER.

Please help. Cheers!!

DDS (Ver_10-12-12.02) - NTFSx86 NETWORK
Run by User at 2:10:30.01 on 05/01/2011
Internet Explorer: 8.0.6001.18943 BrowserJavaVersion: 1.6.0_13
Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.44.1033.18.3070.2477 [GMT 0:00]

AV: McAfee VirusScan *Enabled/Updated* {2A28CCAF-2E53-0F80-A82C-9572D1C24D8C}
SP: McAfee VirusScan *Enabled/Updated* {91492D4B-0869-000E-929C-AE00AA450731}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Personal Firewall *Enabled* {12134D8A-643C-0ED8-8373-3C472F110AF7}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows&... Read more

A:fake anti-virus malware

Hello manoj123 ,This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix. If McAfee gives you any problems, you may have to temporarily uninstall it. For some reason, this is common with McAfee. 1. Download this file - combofix.exe http://download.bleepingcomputer.com/sUBs/ComboFix.exe 2. Double click combofix.exe & follow the prompts.3. When finished, it will produce a log for you. Post that log in your next reply please.Note:Do not mouseclick combofix's window while it's running. That may cause it to stall.If you have trouble running it the first time, then rename ComboFix.exe to manoj.exe and try again.Thanks,tea

Read other 4 answers
RELEVANCY SCORE 65.6

Logfile of Trend Micro HijackThis v2.0.2Scan saved at 7:12:26 PM, on 12/8/2008Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16735)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\wltrysvc.exeC:\WINDOWS\System32\bcmwltry.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\WINDOWS\system32\bgsvcgen.exeC:\Program Files\Yahoo!\Antivirus\ISafe.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Yahoo!\Antivirus\VetMsg.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Synaptics\SynTP\SynTPLpr.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\Program Files\HPQ\Quick Launch Buttons\EabServr.exeC:\Program Files\Java\jre1.5.0_02\bin\jusched.exeC:\Program Files\hpq\HP Wireless ... Read more

A:Malware/ fake anti spyware

Well hello there ladybug! Heh....flattery will get you everywhere. Nah, I actually just happened upon this this morning. Sorry to see you back, but nice to see you. Go to start -> control panel -> Display properties -> Desktop -> Customize Desktop... -> Web tab, then uncheck and delete everything you find in there (except for "My current home page"),Also remove the checkmark from the the Lock Desktop Items box if it is checked.Apply.Apply and Exit Display properties.Please run HijackThis! and click "Scan." Place checks next to the following entries, if present:O24 - Desktop Component 0: (no name) - http://www.lowridermagazine.com/freestuff/...m_48chevy_s.jpgO24 - Desktop Component 1: (no name) - http://www.lowridermagazine.com/freestuff/..._53burban_s.jpgClose all browsers and other windows except for HijackThis!, and click "Fix checked".Reboot your computer.Please download Malwarebytes' Anti-Malware from one of these places:http://www.majorgeeks.com/Malwarebytes_Ant...ware_d5756.htmlhttp://www.besttechie.net/mbam/mbam-setup.exeDouble Click mbam-setup.exe to install the application. * Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. * If an update is found, it will download and install the latest version. * Once the program has loaded, select "Perform Quick Scan", then click Scan. * The scan may take some time t... Read more

Read other 7 answers
RELEVANCY SCORE 65.6

Sady news, i found a fake program called AntiMalware GO from my old computer windows XP, but i was gave to my little sister, so i have tried remove from program Malwarebytes Anti-Malware, but they don't let me open it, it is from fake antimalware, how are they build that fake. Geez. so my old computer is very old, and seem weak, since 6 years, from my my birthday, my dad brought for me. it is completed destroy. i hate fake program.

I have a tried way other, but found this link, still don't work, Remove AntiMalware Go (Uninstall Guide)

A:Fake program Anti-malware

  
Quote: Originally Posted by reborn7778


Sady news, i found a fake program called AntiMalware GO from my old computer windows XP, but i was gave to my little sister, so i have tried remove from program Malwarebytes Anti-Malware, but they don't let me open it, it is from fake antimalware, how are they build that fake. Geez. so my old computer is very old, and seem weak, since 6 years, from my my birthday, my dad brought for me. it is completed destroy. i hate fake program.

I have a tried way other, but found this link, still don't work, Remove AntiMalware Go (Uninstall Guide)


Run Malwarebytes in safe mode with networking

Read other 6 answers
RELEVANCY SCORE 65.6

I have a fake windows security tray icon, can't open regedit, can't use task manager, can't do anything without it popping up. I've read through the forum but can't find any recent information. My AVG is up to date and everything, please help!

Sorry, I have windows xp on a dell lap top. The popup i'm getting is wtserverhid.exe is infected

I think when it all started was when I got a pop up about java that vanished. Then this started.

A:fake anti-malware, can't get computer to do anything

I was able to log in under another user profile and clean the computer. Thank you.

Read other 1 answers
RELEVANCY SCORE 65.6

My wife and I each have a PC running Windows 7 Professional edition. Today she showed me the dreaded Anti-Virus pop-up that wants registration ($$$) in order to 'clean the pc'.

Following instructions on this site, from my uninfected PC I downloaded RKILL and MalwareBytes and unhide.exe and transferred them to a thumb drive. I transferred the files to her PC and tried to run RKILL but got a pop-up (from Windows?) asking me to chose which program to run the file with. Same if I tried to run the MalwareBytes install program. This was done under her account.

I logged out of her account and logged into the PC with my old account (it was previously my PC before I gave it to her). With my account I was able to install MalwareBytes and run RKILL (as admin) and then MalwareBytes Full System Scan. MB found 9 infections and quarantined them (Trojan.FakeAlert, Trojan.Agent, Trojan.Exe.Shell.Gen, Hijack.StartMenuInternet). Happily I thought to myself... that's it. Problem fixed.

However when I rebooted to complete the MB removal process I was unable to get my Microsoft Security Essentials to start up. The message stated the necessary service wasn't running. So I right-clicked My Computer and selected "Manage" to see which services were available and that wouldn't start either. But that gave me the error that the file C:\ProgramData\Microsoft\Windows\StartMenu\Programs\AdministrativeTools\Computer... Read more

A:Fake Anti-Virus Malware... got it bad!

Can you access Safe Mode via hitting F8 after the BIOS post screen.

Read other 11 answers
RELEVANCY SCORE 65.2

I know that's a mouthful, but this virus is frustrating from what I have been reading on these forums. I am trying to fix a computer for a friend, and have read the solutions on here but haven't been able to resolve them.

Basically can't install anti-malware software even with rename after running rkill(which just makes the screen blink and prompt me to run in safe mode again), I have deleted most of the known files of is2010 and disabled it on startup, but yet am not getting anywhere. Also, the computer I am working on cannot connect to the internet due to this virus.
And for the record, I do have a flash drive and a usable computer to use for files.

I would really appreciate it if someone could guide me in the right path.
Thanks!!!

A:Internet security 2010: RKill runs but prompts me to clikc safe mode again, can't install anti-malware on pc with rename, n...

Same problem, but a little farther along (since I was able to remove the drive and scan while attached as slave to another machine).Lingering problem: No internet connection (although it CAN see my network of other machine). Figured it was a firewall issue, and went researching, and found this site: http://www.practicallynetworked.com/sharin...ic_firewall.htmOn my affected machine, this particular box:* Does not have an "Authentification" tab.* Is blank in the lower two-thirds. -- When the top box is clicked, instead of the bottom choices appearing, it simply directs straight to the firewall CP.Essentially, it appears that, when it senses removal tools messing with it, IS2010 sets ICF to be locked "on" and screws with the control-panels.This really is the worst bit of nastiness I've seen in a long time. The sheer amount of effort involved in cleaning up after it is enormously tedious.(XPproSP3)

Read other 7 answers
RELEVANCY SCORE 65.2

Last night I installed Kaperskey Internet Security 2014 on both my PC and my Laptop. I ran it for about 1 hour and quickly decided I hated it for the following reasons:

- Too many notifications (even when I seemingly turned them off in settings)

- Had to confirm connection to home WiFi network every time I logged in

- Three web browser extensions, all IMO unnecessary:
a. Safe Money
b. Virtual Keyboard
c. URL Checker

- Every time I ran some of my own batch files to cleanup Windows I had to confirm. No way to turn this off.

etc.

When I tried to uninstall Krapersky on BOTH machines I got a fatal error which locked up my computers forcing me to reboot. When I got back in to Windows my keyboard AND mouse were not working (remember, this is both computers).

I tried everything I could think of to fix the kb/mouse. I tried restarting in safe mode, Windows Startup Repair, System Restore, different hardware on different USB ports, SFC /scannow, etc. but nothing worked. So at 3 AM last night I proceed to re-install fresh copies of Win 8.1 on 2 different computers! LOL.

Anyway, I am fed up with anti-virus programs nowadays. They are almost worse than having an actual virus! They hijack everything in your computer and affect both the user experience and performance. I am so fed up I have reverted to just using Windows Defender and Firewall.

Ideally what I would like is an antivirus that really does nothing till i tell it to scan, then it can find the most number of t... Read more

A:Kapersky Internet Security 2014 + 2 PCs = 2 Broken PCs :)

Agreed, Kaspersky is the pitts. Built in Windows Defender does the job efficiently without hogging all the resources. I would not turn off real time protection though because if you do, you will be left wide open to attacks.

Read other 15 answers
RELEVANCY SCORE 65.2

Sorry if this is the wrong place to ask this question:

Can I use Malwarebytes Pro along with Kaspersky Internet Security 2014?
 

A:Can I Use Malwarebytes Pro with Kaspersky Internet Security 2014

Malwarebytes can be used as a complimentary layer to your Antivirus, but not to replace. You can try and report back if or any conflicts (at your own risk), but are there any reasons in particular you wanted to couple Malwarebytes and Kaspersky?
 

Read other 6 answers
RELEVANCY SCORE 65.2

Hello,
We are very happy to announce that we are releasing today a new version of ISTP, TP87 and this version will also become the first Beta release of Internet Security 2014! The beta phase for Internet Security 2014 Beta lasts for six weeks approximately after which we will continue with the normal ISTP cycles.
This release includes bug fixes to the issues reported from previous releases and new user interface for Online Safety and Launch Pad. For the full listing of changes please refer to the release notes.
Your current installation gets the new version through the update channel automatically within 24 hours from receiving this email. If you encounter any issues with the latest version, please report them as soon as possible through https://beta.f-secure.com
Thank you all for your contributions so far and hope you enjoy the ride with us in future also!
Best Regards,
F-Secure Beta Piloting TeamClick to expand...








 

A:F-Secure Internet Security 2014 beta

Great man. Awesome stuff Petrovic. Installed it on your PC?
 

Read other 12 answers
RELEVANCY SCORE 65.2

I installed AVG Internet Security 2014 and it runs beautifuly, but his files are very fragmentated, and one in specefic(incavi.avm).I know i can't stop the fragmentation procces but i can reverse it, but this is not my question.I want to know why they are fragmenting.

A:AVG Internet Security 2014 has many fragmentated files,why?

No one here recommends AVG since it bloated up years ago and never slimmed back down.

We recommend Microsoft Security Essentials or Avast.

Once you get a decent performance AV installed, run CCleaner Disk and Registry tabs, then do a Boot Time defrag with full Disk Check using free Puran Defrag Download

Read other 6 answers