Over 1 million tech questions and answers.

Virus, google problem, Malwarebyte problem, Spybot problem, etc

Q: Virus, google problem, Malwarebyte problem, Spybot problem, etc

I believe I have a virus these are the symptoms i am experiencing and what I have tried so far:-

1. I am having problems using google, sometimes when I click on results they go to another page, sometimes it decided i am not connected to the internet when I know I am.

2. I started by trying to run Malwarebytes but this would not open, then the same problem occurred with Spybot, it wont open.

3. I tried to scan with Trend Micro but the virus has prevented Java from working and so Trend does not work.

4. Tried to do a system restore but that says the drive failed during the restore.

5. AVG does not find any viruses when scanned.

6. Computer will not hibernate, it goes to blackscreen and then back to the desktop.

7. I managed to get Malwarebytes working by renaming the file from mbam.exe to mbam1.exe but now it freezes is not responding about halfway through the scan, have also told it not to scan registry items but it still freezes. Also after it has frozen it will not close even by trying to end the process.

So they are my problems can anyone help? Thanks

RELEVANCY SCORE 200
Preferred Solution: Virus, google problem, Malwarebyte problem, Spybot problem, etc

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: Virus, google problem, Malwarebyte problem, Spybot problem, etc

Try this scan. You can copy it over from another computer on a CD or pen drive if you need to.Before we start fixing anything you should print out these instructions or copy them to a NotePad file so they will be accessible. Some steps will require you to disconnect from the Internet or use Safe Mode and you will not have access to this page.Please download DrWeb-CureIt and save it to your desktop. DO NOT perform a scan yet.Reboot your computer in "Safe Mode" using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".Scan with Dr.Web CureIt as follows:Double-click on drweb-cureit.exe to open the program and click Start. (There is no need to update if you just downloaded the most current versionRead the Virus check by DrWeb scanner prompt and click Ok where asked to Start scan now? Allow the setup.exe to load if asked by any of your security programs.The Express scan will automatically begin.
(This is a short scan of files currently running in memory, boot sectors, and targeted folders).If prompted to dowload the Full version Free Trial, ignore and click the X to close the window.If an infected object is found, you will be prompted to move anything that cannot be cured. Click Yes to All. (This will move any detected files to the C:\Documents and Settings\userprofile\DoctorWeb\Quarantine folder if they can't be cured)After the Express Scan is finished, put a check next to Complete scan to scan all local disks and removable media.In the top menu, click Settings > Change settings, and uncheck "Heuristic analysis" under the "Scanning" tab, then click Apply, Ok.Back at the main window, click the green arrow "Start Scanning" button on the right under the Dr.Web logo.Please be patient as this scan could take a long time to complete.When the scan has finished, a message will be displayed at the bottom indicating if any viruses were found.Click Select All, then choose Cure > Move incurable.In the top menu, click file and choose save report list.Save the DrWeb.csv report to your desktop.Exit Dr.Web Cureit when done.Important! Reboot your computer because it could be possible that files in use will be moved/deleted during reboot.After reboot, post the contents of the log from Dr.Web in your next reply. (You can use Notepad to open the DrWeb.cvs report)

Read other 1 answers
RELEVANCY SCORE 78.4

Ok il try to make this as brief as possilbe.

Sister clicked a stupid website link today on my laptop. Started doing weird things.

Now when i boot it up a popup appears saying google installer has encountered a problem. You know when it asks wheither to send error report or not. Now for the weird parts

It wont let me run any anti-virus removal software. I can run IE/Firefox ok. Even when i go into their folder and change the .exe filename to something like fluffy it opens them for like 5 secs and when i run the scan it closes str8 away.

Again when i search for anything on google about the problem i get a message saying my connection has been reset. Obv the virus/trojan is doing this.

Now i try to reboot in safe mode and it wont let me do it either. Im going insane here.

I cant even do a PC recovery because it says the recovery partition cannot be found.

Any ideas are most welcome

A:Virus/Trojan Problem (Google Installer Encountered Problem Message)

We Need to check for Rootkits with RootRepealDownload RootRepeal from the following location and save it to your desktop.Direct Download (Recommended)Primary MirrorSecondary MirrorSecondary MirrorSecondary MirrorZip Mirrors (Recommended if you have a slower connection or if the Direct Download mirror is down)
Primary MirrorSecondary MirrorSecondary MirrorRar Mirrors - Only if you know what a RAR is and can extract it.
Primary MirrorSecondary MirrorSecondary MirrorExtract RootRepeal.exe from the archive (If you did not use the "Direct Download" mirror).Open on your desktop.Click the tab.Click the button.Check all seven boxes: Push OkCheck the box for your main system drive (Usually C:), and press Ok.Allow RootRepeal to run a scan of your system. This may take some time.Once the scan completes, push the button. Save the log to your desktop, using a distinctive name, such as RootRepeal.txt. Include this report in your next reply, please.

Read other 14 answers
RELEVANCY SCORE 75.2

Hello.I have previously asked about this in another thread so background is in there - http://www.bleepingcomputer.com/forums/ind...p;#entry1221094Briefly, I am getting redirected when using Google. It performs the search okay, but about 30-50% of the time when I click on a link instead of taking me to the correct page it will go somewhere different, an advertising page or a different search page. I can usually click the back button and retry the link and it will take me to the correct page then.Also sometimes, maybe 10% or less of the time, when I click a link I get a popup message that says updates to my 'web media player' need to be installed (it does not mention a specific program or brand). I close the popup and get a blank white screen with a message saying Web Media Player Updating and a series of file names flash up to indicate they are downloading.I have not installed any new 'web media players' recently and can only assume this is something I do not want downloading.Every time it happens I just close the page. I don't know where it downloads to so I don't know how to check what has happened.I had a few other issues (mentioned in the other thread) but they all seem to have stopped recently.Yesterday on one occasion my computer shut itself down and rebooted totally unprompted. I had a problem with it doing that about 6 months ago, it went through a phase of rebooting randomly, and eventually windows became corrupted. I thought at the time it was my hard drive packing ... Read more

A:Google redirect problem which isn't found by Spybot / MBAM

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the resul... Read more

Read other 2 answers
RELEVANCY SCORE 74

Hi there,

I've had a problem recently where I go to open up Spybot (or Adaware for that matter) but when I click on it, nothing happens. I'm guessing I have some sort of virus, but have no idea how I can get rid of it. I've run AVG but it doesn't find anything. I hope someone can help me out...it would be most appreciated.

Thank you,

Dan.

Edit - I forgot there seems to be other odd things too. The first (and I'm sure I'm not going mad) is that all of the search results in Google seem ro be in a larger font than they used to be and the second is that if I try to click on a link that relates to Spybot in anyway, then it opens up a new window and comes up with the 'Explorer can not display this page' page. The url for that is http//windowsclick.com/I can't remember the rest (it was a lot of letters and numbers). Surely both of these things are related to whatever it may be that I've caught.
 

Read other answers
RELEVANCY SCORE 73.6

I tried to scan and fix the " Antimalware Doctor" but failed twice.Error report "sent" but wonder who will response.Please see the attached screen-print and help.

A:Malwarebyte Scan Problem

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. Please include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.We need to create an OTL ReportPlease download OTL from one of the following mirrors:This is THE MirrorSave it to your desktop.Double click on the icon on your desktop.Click the "Scan All Users" checkbox.In the custom scan box paste the following:CODEmsconfigsafebootminimalactivexdrivers32netsvcs%SYSTEMDRIVE%\*.exe/md5st... Read more

Read other 2 answers
RELEVANCY SCORE 72.8

It started with HDD defragger and Antivirus Action viruses. The Ffox browser was also hijacked. The rkill dot com and Malwaregyte's antimalware programs seemed to find the problem and fix it.. However upon reboot, i find out that the Firefox crashes almost immediately. But I also get multiple error messages that say that Internet Explorer has stopped working eventhough I didin't try to run IE, in fact I tried to disable the IE by going into Tools in IE and changing the setting to go to Manual Proxy server 0.0.0.0 etc.

This is a brief summary, I have tried many other things and would appreciate some help

Read other answers
RELEVANCY SCORE 72.8

Hello everyone,

I also posted this issue on Tech Support Forum, because I really need some help.

I purchased a brand new HP Touchsmart 620 (All-in-One Computer) about two weeks ago. I also have an HP laptop (Pavilion dv7). Both computers are running Windows 7 Home Premium and are 64 byte machines.

I had the purchased copy of Malwarebytes and Norton 360 Ver 5 from my previous computer (Dell desktop), and transferred them over via PCMover Professional when I received my new computer, along with many other programs. All has been working well until today. Starting today, I noticed that Norton 360 has been turned off (not by me), and so has Malwarebytes (not by me). I have tried manually turning on Malwarebytes, but it won't turn on, and in fact, trying to download the program to repair it only tells me that my Malwarebytes program is corrupted. I have tried "opening" Norton 360 from the Desktop icon, but it won't open.

I went to the Start button and tried turning on Norton 360 from there, but it won't open. I also tried inserting the Norton 360 disc to re-install the program, but when the Norton installation box appears on the screen and I click on Install Norton 360, nothing happens.

Figuring that I would try to uninstall Norton, I tried "uninstalling' Norton 360 from the Control Panel, but nothing happens there either. As a result of all of this, it appears that I have alsolutely no virus or computer protection on my new desktop. I am wri... Read more

A:Norton 360 & Malwarebyte Problem on New Computer

1. Download the Norton Uninstall Tool from the web (I have copied the address) and run it. Don't know if this tool will actually remove Norton, since nothing else has worked. Assuming it works, I would re-install Norton 360.Click to expand...

i would do that
All Versions - The Norton Removal Tool uninstalls all Norton 2010/2009/2008/2007/2006/2005/2004/2003 products, Norton 360 and Norton SystemWorks 12.0 from your computer.
http://majorgeeks.com/Norton_Removal_Tool_SymNRT_d4749.html

if you read the general security forum, you will see most advice
--------------------------------------------------------------

The windows 7 firewall is considered adequate and especially you are connected behind a router.
Have a read in our "general security" forum and look for the advice from our security gurus, they are identified with a green shield next to their name

Several excellent free antivirus programs are available.

Microsoft Security Essentials (MSE)
http://www.microsoft.com/en-gb/security_essentials/default.aspx

Avast
http://www.avast.com/free-antivirus-download

AntiVir
http://majorgeeks.com/Avira_AntiVir_Personal_-_FREE_Antivirus_d955.html

Two other programs to also have on the PC

Malwarebytes
http://www.malwarebytes.org/mbam.php
superantispyware
http://www.superantispyware.com/download.html
--------------------------------------------------------------

2. Return my HP computer to the original factory settings, but I'm not sure I know how to do... Read more

Read other 2 answers
RELEVANCY SCORE 72.4

yeasterday evening i dowloaded and ran spybot and adware and spywareblaster. not feeling very comfortable right now, being that norton is telling me that i have this:w32.spybot.worm virus.
is this what i get for trying to protect my computer.
someone please help me.

thanks
steaks355
 

A:spybot problem with norton anti-virus

If you got the correct versions it wasn't them - There are many that are similar in name.

SpywareBlaster http://www.javacoolsoftware.com/spywareblaster.html
AdAware SE http://www.majorgeeks.com/download506.html
SpyBot S&D http://www.safer-networking.org/en/download/
 

Read other 1 answers
RELEVANCY SCORE 72

a couple days ago i lost the ability to use my internet on my laptop and get amessage saying a problem has occurred that has caused ie to stop working. I ran my antispyware and it found nothing and I cannot start up malwarebyte anti malware.I notice that i have a new process running under task manager with the name 1439536946.tmp. any suggestions?

A:problem loading ie or ff and cant run malwarebyte anti malware

I would have to suggest checking out the infection forum.Good luck mate.

Read other 1 answers
RELEVANCY SCORE 72

hi guys I'm having problems with malwarebyte software
from this site Malwarebytes

I had this software before and it was running good until I updated the DB version
to 5046.

when I ran full scan it stops at file location where my voice chatting program for gaming. It stays at that location and never go further than before update.

I don't know what the problem is.. do you guys think that malwarebyte is not compatible with foreign softwares? its a korean software.

if you guys think it is then will you guys recommend me other anti virus scanning softwares?

A:problem with malwarebyte's anti malware software

Microsoft Security Essentials is good and used by many including myself.

Read other 12 answers
RELEVANCY SCORE 71.6

I am fixing a computer for my aunt's mother and running into nothing but issues. I am pretty good at clearing stuff out but am hoping to get some advice here. If you could advise me what logs you need I would be glad to help. I tried renaming mbam and spybot to install them still doesn't work. gives error that install is corrupt and other bs. Lots of pop ups and stuff of that nature on the computer so definitely virus/malware related. Any help is greatly appreciated.Thank you,LeeEdit: Moved topic from Windows 7 to the more appropriate forum. ~ Animal

A:Virus/Malware problem, can't open or install MB or Spybot plz help

Hello Lee and Welcome -
First please remove Spybot S&D fully as it is not required, and program scans are limited.
Is there a decent (even free) Antivirus program installed ??
 
Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/
* Double-click on the Rkill desktop icon to run the tool.
* If using Vista or Windows 7 right-click on it and choose Run As Administrator.
* A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
* If not, delete the file, then download and use the one provided in Link 2.
* Do not reboot until instructed.
* If the tool does not run from any of the links provided, please let me know.
NOTE - If normal mode still doesn't work, run the tool from safe mode.
When the scan is done Notepad will open with rKill log.
Post it in your next reply.
NOTE. rKill.txt log will also be present on your desktop.
 
Important: Do not reboot your computer until you complete the next step.
 
* Please download AdwCleaner by Xplode and save to your Desktop.
* Double-click o... Read more

Read other 7 answers
RELEVANCY SCORE 68

Hi guys,Now my Desktop start to have pop up and running very slow. Used Spybot S&D to scan and detected Virtumonde, Virtumonde,generic etc. After Click fixed it the PC start to clean up but half way through it, it just go into window protection saying Window detected problems and need to reboot. once after reboot PC Spybot S&D start again but saem problem happen again and again. Virtumonde and Virtumonde keep appearing on the detection list, some of the other problem disappear.PLease kindly advise me. below is the Hijackthis data.Logfile of Trend Micro HijackThis v2.0.2Scan saved at PM 12:14:34, on 18/11/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\SYSTEM32\SVCHOST.EXEC:\Program Files\BUFFALO\Client Manager 2\bwsvc.exeC:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exeC:\WINDOWS\SYSTEM32\LEXBCES.EXEC:\WINDOWS\SYSTEM32\LEXPPS.EXEC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\bkxcvmya.exeC:\Program Files\ewido anti-malware\ewidoctrl.exeC:\Program Files\Common Files\LightScribe\LSSrvc.exeC:\... Read more

A:Pc Having Problem After Spybot S&d Is Trying To Clean Up Problem

Welcome to the BleepingComputer HijackThis Logs and Analysis forum woodwind My name is Richie and i'll be helping you to fix your problems.Please disable Spybot S&D?s protection,or it will interfere.You can enable it later once you're system is clean.Open Spybot and click on 'Mode' and check 'Advanced Mode'.Click on 'Tools' in bottom left hand corner.Click on the 'System Startup' icon.Uncheck 'Teatimer' box and/or uncheck 'Resident'.Click the 'Allow Change' box.Then, check next to the computer clock to see if the icon for Spybot is still there.If it is, right click it and choose 'exit Spybot-S&D Resident'.Restart the computer.If you find you're experiencing problems disabling Spybot's Tea-Timer,follow the info in the link below:http://www.russelltexas.com/malware/teatimer.htmIf you have previously downloaded ComboFix,please delete that version now.Now download Combofix and save to your desktop:Note: It is important that it is saved directly to your desktop Close any open browsers.Disconnect from the Internet. Double click on combofix.exe and follow the prompts. When it's finished it will produce a log. Post the entire contents of C:\ComboFix.txt into your next reply. Note: Do not mouseclick combofix's window while it's running. That may cause the program to freeze/hang. Do NOT post the ComboFix-quarantined-files.txt unless I ask.*Note*In case your Antivirus or any other realtime scanner is displaying an alert after you downloaded Combofix or while you use Combo... Read more

Read other 13 answers
RELEVANCY SCORE 68

everytime i run spybot i get these problems Windows secruity i don't know what it means is it something bad
or is it just a notifcation that my firewall is disable and has nothing to do with my internet aka when i play games my ping is like 200 or above. Or is taht the isp ?

Windows Security Center.FirewallDisableNotify: Settings (Registry change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify!=dword:0

Windows Security Center.AntiVirusDisableNotify: Settings (Registry change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify!=dword:0

A:Spybot Problem Or Is It Bigger Problem

These entries are Spybot's way of alerting you that someone has disabled one or more of the notifications in the Windows Security Center for SP2. Similar entries and explanation here.To ignore these, launch Spybot, go to File Menu > Mode and select Advanced mode.Select Settings > Ignore products > All Products Tab, scroll down and place a check mark next to all entries for Windows Security Center. You can also use the Security.sbi Tab to do the same.

Read other 1 answers
RELEVANCY SCORE 66.4

Hello BCers,Greetings! My browser redirects to bad websites which my parental filter software K9 blocks...see this conversation..I did scan my comp again with ad-aware, spybot S & D, Ewido and Norton systemworks 2005 in SAFE MODE and all these software says my system is ok (with some lowrisk/norisk tracking cookies)..BUT the browser still takes me occassionaly (2-3 times every 10 hours and sometimes more than 2-3 times) .When this problem started to appear (about 20 days ago) I noticed that in a couple of days the google toolbar disappeared , I dowloaded and installed it again ..then after a couple of days I observed that the google toolbar was placed parallel to address bar whereas earlier it was below address bar. I uninstalled and reinstalled google toolbar about 5-6 days ago and havent faced any problem since.I am not using ANY firewall (yes, I know about zonealarm in particular and firewalls in general, and you know who to blame.. ).When I created HJT log I had 2 browser(IE) windows open.I am posting my Hijackthis Log below (I've read all the guidelines related to creating and posting HJT logs).Logfile of HijackThis v1.99.1Scan saved at 6:12:14 PM, on 04/10/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\Syste... Read more

A:Hijackthis Log - Scanned System With Anti-virus(nortan Systemworks 2005), Ad-aware, Spybot S&d And Ewido But Problem Persists

Hello Amit,

I am currenly working on your log and post back a fix ASAP. Thanks

Read other 12 answers
RELEVANCY SCORE 65.2

I was innocently searching for some office furniture using the Google search window in my Firefox 3.6.2 browser when after clicking a blue link, I was redirected to a different website. This website could be located in any part of the world. As I researched the problem on the internet I came across the Google Redirect Virus (GRV) and further research led me to this forum.

The virus is my laptop. Windows XP Pro SP3, 2Ghz Pentium M, 2 GB Ram, all MS updates installed, all drivers up to date. Used the following to remove the virus before posting on this forum:
IObit Security: deep scan; IObit System Care: spyware removal, registry fix and registry defrag; SpyBot S&D, Hijack This; GMER which reported a suspicious activity with atapi.sys (I took no action).

I try to run a clean machine but one got by. Thank you for any assistance provided.

A:A Google Redirect Virus problem

You will need to replace the atapi file with a clean one.please go here....Preparation Guide ,do steps 6 - 9.Create a DDS log and post it in the new topic from step 9,not in this thread.Let me know if that went well.

Read other 4 answers
RELEVANCY SCORE 65.2

When I click on a link in google, the link gets redirected to an adware site. I downloaded Malwarebytes to remove it first (I know I should have asked someone first, but at the time I could only see suggestions and direct sites). It worked for about three days and now the virus is back. First it attacked Mozilla Firefox (my primary browser). Then, it attacks Google Chrome. How do I know this? Because I found this forum by googling it right now. I have tried to follow the steps as much as possible as according to the Preparation Guide. Any help will be appreciated!

.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by Harry Potter at 21:55:33.51 on Sat 04/30/2011
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_24
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3999.2411 [GMT -4:00]
.
AV: McAfee VirusScan Enterprise *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svch... Read more

A:Google Redirect Virus Problem!!!

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!Please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.In order for me to see the status of the infection I will need a new set of logs to start with.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.DeFogger: Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
The application window will appear Click the Disable button to disable your CD Emulation drivers Click Yes to continue A 'Finished!' message will ap... Read more

Read other 18 answers
RELEVANCY SCORE 65.2

Hi, I have the hijackthis log below, please please help!!:Logfile of Trend Micro HijackThis v2.0.4Scan saved at 22:19:11, on 11/05/2010Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.17023)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\Program Files\Common Files\Symantec Shared\ccProxy.exeC:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\PROGRA~1\AVG\AVG8\avgwdsvc.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB&... Read more

A:Another google redirect virus problem

Hello, fizz_da_wizzWelcome to the Bleeping Computer Forums. My name is Thomas (Tom is fine), and I will be helping you fixing your problems.If you do not make a reply in 5 days, we will have to close your topic.You may want to keep the link to this topic in your favourites. Alternatively, you can click the button at the top bar of this topic and Track this Topic. The topics you are tracking can be found here.Please take note of some guidelines for this fix:Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools. Doing so could cause changes to the directions I have to give you and prolong the time required. Further more, you should not be taking any advice relating to this computer from any other source throughout the course of this fix.If you do not understand any step(s) provided, please do not hesitate to ask before continuing. I would much rather clarify instructions or explain them differently than have something important broken.Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean". We do not want to clean you part-way, only to have the system re-infect itself.Please reply using the button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply. Only attach them if requested or if ... Read more

Read other 6 answers
RELEVANCY SCORE 65.2

every time i click on a link from google i'm redirected to another page, i searched it and saw its a common problem and was instructed to download the following programs: CCleaner, malwarebytes, SUPERanti-spyware free edition, nd hijack this. I have logs from malwarebytes and superanti-spyware but for the time being here is just my hijackthis log. pleassseeee help me----

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:00:14 AM, on 2/23/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\S3trayp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\FileZilla Server\FileZilla Server.exe
C:\WINDOWS\system32\LxrJD31s.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Comcast\De... Read more

A:google redirect virus problem please help

I also noticed when i look at my system32drivers/ect/hosts there are SEVERAL hosts with names similar to this::

127.0.0.1 0websearch.com # ***Inserted By STOPzilla***
127.0.0.1 2005-search.com # ***Inserted By STOPzilla***
127.0.0.1 600pics.com # ***Inserted By STOPzilla***
127.0.0.1 a1.interclick.com # ***Inserted By STOPzilla***
127.0.0.1 absolutepics.net # ***Inserted By STOPzilla***

127.0.0.1 nude-teen-bodies.com # ***Inserted By STOPzilla***
127.0.0.1 onlyhotlinks.com # ***Inserted By STOPzilla***
127.0.0.1 on-search.com # ***Inserted By STOPzilla***
127.0.0.1 picshunter.us # ***Inserted By STOPzilla***

It doesnt look good to me but ive read that it is to stop certain ads from appearing, in other places ive read tht these need to be deleted asap.
 

Read other 3 answers
RELEVANCY SCORE 65.2

Hi- A couple days ago I started having the Google Redirect problem with Internet Explorer (and later Firefox as well). I did a MalwareBytes Scan that found a couple files that I deleted, but the problem did not go away. Neither Avast or Oupost Security Suite seemed to register it. I did a scan with UnHackMe that only located a few legitimate files. I also did a TDSSKiller scan which didn't locate anything.
The problem happened right after a manual Java Upgrade, so I deleted the Java cache in case it may have been hiding in there (to no avail). The odd thing with the virus is that it is not consistent- it seems to come back after a reboot and then it is gone again, until it just starts up again randomly.

I downloaded Hitman Pro and did a single scan last night that found and removed one file- a devifmon.dll from my AppData temp file, but the first time I tried to use Google today I was redirected again (although now Google works fine!). I also checked the Hosts Driver file as suggested on a few sites and it had no abnormal additions.

I appreciate your help- having got a few viruses in the past, I know better than to just assume that it is gone (especially after I was redirected once today and haven't changed anything since).

Karl
DDS (Ver_10-12-05.01) - NTFSx86
Run by Karl at 16:03:02.66 on Wed 12/08/2010
Internet Explorer: 8.0.6001.18975 BrowserJavaVersion: 1.6.0_22
Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.1.1033.18.2037.726 [GMT -8:00]
... Read more

A:Problem with Google Redirect Virus, Perhaps Others...

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!Please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.In order for me to see the status of the infection I will need a new set of logs to start with.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.DeFogger: Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
The application window will appear Click the Disable button to disable your CD Emulation drivers Click Yes to continue A 'Finished!' message will ap... Read more

Read other 3 answers
RELEVANCY SCORE 65.2

Hi. I had intermittent problems with the Google redirect virus on Firefox and tried a whole variety of solutions, including TDSKiller and even redirecting my DNS. Nothing has worked. I am not prevented from accessing or running any programs, I just get redirected occasionally (not every time) I Google something. This only happens when I click a Google result --- I end up going to another page instead of the one I've clicked. I ended up uninstalling Firefox and switching to IE and didn't have problems for several days. Today it's back and acting up on IE.
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 1.6.0_31
Run by HP at 21:45:41 on 2013-01-08
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.6135.2848 [GMT -7:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows&... Read more

A:Another Google redirect virus problem!

**In any case where you happen to be busy or unable to give us a reply, we would be grateful if you keep us informed in advance and we will be more than happy to wait. Failure to do so we will have your thread closed in THREE(3) days.

Hello there, cjtemp I'm Conspire, I'll be glad to help you with your computer problems.Please observe these rules while we work:Read the entire procedureIt is important to perform ALL actions in sequence.If you don't know, stop and ask! Don't keep going on.Please reply to this thread. Do not start a new topic.Stick with me till you're given the all clear.Remember, absence of symptoms does not mean the infection is all gone.Don't attempt to clean your computer with any tools other than the ones I ask you to use during the cleanup process.IMPORTANT NOTE : Please do not delete anything unless instructed to. Remember to backup all your important data(if possible) before moving on.

Read other 40 answers
RELEVANCY SCORE 65.2

First thank you for any and all assistance. I was directed to post to this forum by administrator boopme who initially helped me with my problem. My system: Dell XPS M140 laptop, 2 Ghz Pentium M, 2 GB Ram, Windows XP Pro SP 3, all updates installed, all drivers up to date.Anti-Virus software the virus slipped through: IObit Security 1.41, IObit System Care, SkyBot S&D, Firefox 3.6.2 w/ No Script and Ad Block PlusSymptoms: Using Firefox, when I do a Google search in the Google window I get the usual 10 blue links. Upon selecting a link I am redirected to a different site not associated in any way with the link.My corrective actions have been:Attempt 1: terminated all programs and anti-virus programs, ran Defogger, ran DDS. My system would not run DDS, it returned a report of gibberish as follows: p?"ns??e??Xc??Dg?????|?0 O ??E ?? J?\#2\??bN?\Mk?(?^EK?] mAttempt 2: terminated all programs and anti-virus programs, ran Defogger, ran RSIT successfully and generated a report, ran GMER successfully and generated a report.These are the result from the RSIT and GMER log. Attached will be the GMER log file named "gmer_scan" and the RSIT file named "rsit_Log2"RSIT Log File:Logfile of random's system information tool 1.06 (written by random/random)Run by Carlos at 2010-04-03 06:40:41Microsoft Windows XP Professional Service Pack 3System drive C: has 13 GB (25%) free of 52 GBTotal RAM: 2039 MB (75% free)Logfile of Tren... Read more

A:A Google Redirect Virus problem

Hi,My name is Extremeboy (or EB for short), and I will be helping you with your log. I apologize for the delay.If you still require assistance we would like to see the current condition of your system so please post a new set of DDS Logs as well as a GMER log and a description of any remaining problems or symptoms you may still have please.If for any reason you did not post a DDS log or GMER log please refer to this page and in step #6 and Step #7 and Step #8 for further instructions on downloading and running DDS & GMER. If you have any problems when running the tools or unable to produce a report for any reason, just let me know in your next reply.For your next reply I would like to see:-The DDS logs---DDS.txt and Attach logs-GMER log-Description of any remaining problems you may still have.With Regards,Extremeboy

Read other 12 answers
RELEVANCY SCORE 65.2

I picked up what looks like a Google re-direct virus late last week. Whenever I try to go to a web site through Google I am redirected to a completely unrelated page. My computer is running impossibly slow now on all tasks either on-line or off. Occasionally Internet Explorer will open a new page on its own. AVG 2011 and Spybot have been no help. AVG has sent a lot of stuff to the vault including SHeur3.CETU with no result.
I am running Windows XP Pro but I do not have an install or boot CD
I have completed the pre-posting steps to the best of my ability and am including the logs that resulted from the requested scans of my computer.
Any help, please.
.
DDS (Ver_2011-06-12.02) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.5.0_17
Run by User at 11:54:45 on 2011-05-16
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1015.353 [GMT -4:00]
.
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe
C:\Program Files\AVG\AVG10\... Read more

A:Google redirect virus problem

Hi and welcome to TSF.

I am currently reviewing your log. Please note that this is under the supervision of an expert analyst, and I will be back with a fix for your problem as soon as possible.

You may wish to subscribe to this thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant Notification, then click Subscribe.

Please be patient with me during this time.

Read other 19 answers
RELEVANCY SCORE 65.2

Hello folks,Wandering if any kind soul would be able to help me identify and remove a google redirect virus from my machine. Had it for a couple of days, not sure where I got it from. It is also affecting yahoo and manifests itself in explorer and firefox. I have had no luck running spyware doctor and installing Norton to try to clean the bug out. I have followed the instructions on posting the info that you guys need and hope I've got everything right. DDS.txt file copied below and Attach.txt and ark.txt files attached. Many thanks in advance for any help.DDS (Ver_09-12-01.01) - NTFSx86 Run by 0003515t at 14:17:31.89 on 31/01/2010Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_18Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1140 [GMT 0:00]AV: Norton 360 *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}FW: Norton 360 *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}============== Running Processes ===============C:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost -k DcomLaunchC:\WINDOWS\system32\svchost -k rpcssC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\Program Files\Intel\Wireless\Bin\WLKeeper.exeC:\WIND... Read more

A:Google redirect virus problem

Hello and welcome to Bleeping Computer! We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Fo... Read more

Read other 24 answers
RELEVANCY SCORE 65.2

I picked up what looks like a Google re-direct virus late last week. Whenever I try to go to a web site through Goodle I am redirected to a completely unrelated page. My computer is running impossibly slow now on all other tasks either on- line or off and I?m getting a load of pop-ups and error messages. AVG and Spybot have been no help. I?m using Windows XP Pro and I have a DSL internet connection. Can anyone help me get rid of this bug (bugs)?

A:Google redirect virus problem

Hello and welcome to TSF.

We want all our members to perform the steps outlined in the link given below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

Please follow our pre-posting process outlined below. Use a USB flash drive to download and transfer the tools to the affected machine, if necessary. You might like to run the Flash_Disinfector.exe on the clean machine and the flash drive first to protect against any possible transfer of infection via USB.


NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help - Tech Support Forum

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Please note that the Virus/Trojan/Spyware Help forum is extremely busy, and it may take a while to receive a reply.

PS. Please use normal font in your posts.

Read other 1 answers
RELEVANCY SCORE 64.8

Hey,

I am working on a friends computer, found it had Personal Antivirus installed. When to download and load Malwarebytes and ... nothing, double-click on the installer and it thinks for half a second then nothing pops up like it should. Tried using Spybot S & D, same thing. I got most of Personal Antivirus off by manually deleting in programs file and registry, but it is not 100 % gone. Found Limewire installed and got rid of that for him. Also, found Norton Internet Security with expired subscription.

Here is the DDS log:
DDS (Ver_09-05-14.01) - NTFSx86
Run by HP_Administrator at 21:06:41.60 on Wed 06/17/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2046.1472 [GMT -5:00]

AV: AntiVir Desktop *On-access scanning enabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaa... Read more

A:Can't get Malwarebyte's or Spybot to run/install

Any help would be appreciated.===========Hello While we understand your frustration at having to wait, please note that Bleeping Computer deals with several hundred requests for assistance such as yours on a daily basis. As a result, our backlog is quite large as are other comparable sites that help others with malware issues. Although our HJT Team members work on hundreds of requests each day, they are all volunteers who work logs when they can and are able to do so. No one is paid by Bleeping Computer for their assistance to our members.Further, our malware removal staff is comprised of team members with various levels of skill and expertise to deal with thousands of malware variants, some more complex than others. Although we try to take DDS/HJT logs in order (starting with the oldest), it is often the skill level of the particular helper and sometimes the operating system that dictates which logs get selected first. Some infections are more complicated than others and require a higher skill level to remove. Without that skill level attempted removal could result in disastrous results. In other instances, the helper may not be familiar with the operating system that you are using, since they use another. In either case, neither of us want someone to assist you who is not familiar with your issue and attempt to fix it.We ask that once you have posted your log and are waiting, please DO NOT "bump" your thread or make further replies until it has been responded to b... Read more

Read other 3 answers
RELEVANCY SCORE 64.4

I've tried running Combofix and a few antivirus programs but nothing will remove it. Both TDSSKiller and FixTDSS will not run even in safe mode and when I rename .exe to .com. I tried an apparently undetectable version of TDSS killer and the virus seems to delete it off the computer before I can open it.

Any help is appreciated, thank you!

A:Google Redirect Virus/Rootkit Problem

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31
Run by John at 4:43:37 on 2012-10-02
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4863.3050 [GMT -4:00]
.
AV: Norton Security Suite *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Security Suite *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Security Suite *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files (x86)\iWin Games\iWinTrusted.exe
C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
c:\... Read more

Read other 7 answers
RELEVANCY SCORE 64.4

I have recently been encountering the fake anitvirus problem. I have not actually seen this happen myself but my husband has seen it several times.

In the last day however, a new problem surfaced. IE 7 would not load. When I would click in the IE icon the cursor would turn to an hourglass shortly but nothing loads. I am currently use Firefox as my browser. I have run Norton antivirus and am not getting any hits. I have also run Adaware and removed any threats that it showed.

At this point I have even tried running in Safe Mode with network capabilities thinking that I would be able to download a new version of spybot. Spybot will not install.

Any help would be appreciated since what I am doing is not working. Thanks.

I am including the text from the file DDS.txt:


DDS (Ver_09-02-01.01) - NTFSx86 NETWORK
Run by Coan at 11:52:26.45 on Sat 02/21/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1023.710 [GMT -6:00]

AV: Norton AntiVirus *On-access scanning disabled* (Updated)
FW: Norton Internet Worm Protection *enabled*
FW: ZoneAlarm Firewall *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefo... Read more

A:Antivirus virus problem and IE 7 google redirect

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

It appears that you have two firewall programs installed and running, Norton Internet Worm Protection and ZoneAlarm. While this may seem like better protection, they can actually conflict with one another and cause system instability or even system hangs. Please choose one to keep and uninstall the other via Add or Remove Programs in your Control Panel.

------------------------------------------------------
Download mbr.exe and Save it to your Desktop.
Double-click mbr.exe to run it.
It shall produce a log on your desktop.
Post the log, mbr.log in your next reply.
------------------------------------------------------

Please visit this webpage for download links, and instructions for running ComboFix:

http://www.bleepingcomputer.com/comb...o-use-combofix

* Ensure you have disabled all antivirus and antimalware programs so they do not interfere with the running of ComboFix.

Get help here

Please post the C:\ComboFix.txt in your next reply for further review.

--------------------------------------------... Read more

Read other 9 answers
RELEVANCY SCORE 64.4

Hi for around a month now I have been having the google redirect problem. I have used many forums and softwares such as combofix, tdsskiller,and malwarebytes. None of these have fixed the problem. If you know any other fixes it would be very much appreciated. Thank you very much.

A:Help Google Redirect Virus Nothing is Solving Problem

Hello darkguru,having run ComboFix we need to see that and a DDS log.Please go here....Preparation Guide ,do steps 6 - 9.Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.Skip the GMER step and instead post the ComboFix log you have.Let me know if that went well

Read other 2 answers
RELEVANCY SCORE 64.4

Hio... ok sum ass on MSN sent me to a site called 2girls1cup (If u have a weak stomache i strongly advise u not to check it out)... about 1/2 days after i noticed i was getting a pop up every 3/4 pages i went on in IE saying my computer could b infected with the latest version of ---.Trojan... (--- = cant remember name but yeh ya kno wa i meen...)No every time i go on google no matter what i type in to search it always has the 1st result as YouTube - Array - Watch now!Above that it has a banner saying Google Error! (see attached screenshot for more details)It also seems that websites are being added to my history... no1 else uses my laptop its very wel passworded and every 1-2 days there is about 3-5 sites with "Rude" names...Anyways, i have attached a Screenshot and a HiJackThis! Log that i did earlyer today, i havnt installed anything new since i did the log and nothing seems to have got worse so it should be fine if u want a newer one let me know and i shall send one.Thanks in AdvanceSystemOveride366

A:Ie - Google Error! - Virus / Malware Problem?

I apologize for the very long delay. We have a huge backlog of HijackThis Logs to handle and it has been taking us greater time than normal to get caught up. If you are still having a problem, and want us to analyze your information, please post a brand new hijackthis log. If we do not hear back from you within a couple of days we will need to close your topic.When posting your logs please post them directly into the reply. Do not attach them.Also make sure you have already followed the steps outlined below:Preparation Guide For Use Before Posting A Hijackthis LogThank you for your patience.

Read other 1 answers
RELEVANCY SCORE 64.4

My laptop had this virus/rootkit and it killed it, and now my desktop has it too. I got it even though I had anti virus software running..Behaviour of virus as follows.. 1. It launches popups which say "Google installer has encountered a problem and needs to close". They keep appearing, and clicking on 'dont send' seems to make it worse and the computer crashes or freezes. With my laptop this eventually got so bad it would only stay on for 2 minutes or so before freezing.2. Online, using any search engine or browser, it will give you your page of search results ok, but when you click on a link it redirects (in another browser tab) to a page filled with dodgy ads.3. System restore is disabled4. malwarebytes ant-malware finds 3 infections, and sometimes the problem goes way for a few minutes after reboot, then it comes back -a rootkit maybe?5. Lastly the weirdest thing is that random audio adverts will play, even with no browser running. My laptop had all this and more, and eventually had to be reformatted. So far I have tried running AVG free scan and MalWareBytes anti malware, both of which found infected items, which were healed but the problem is still there. I really need help with this - can't afford to lose this machine too!EDIT: I just ran rootkitrevealer, after reading a few other threads on here, and it found a file called UACd.sys. I googled this, and it appears to be a rootkit trojan thingy. So how do i get rid of this?

A:Google Installer has encountered a problem - virus, need help

Please post your Malwarebytes and RootRepeal results. We can go from there

Read other 3 answers
RELEVANCY SCORE 64.4

I've been getting this problem for the longest time I pay for AVG once a year, I'm fully protected I'm the only one that has this problem in the house everyone's else computer is find I check for spyware and maleware daily and I have Norton utilities just bought and fixed the registry errors, But I will get disconnected from the internet it's not the internet box connection cause my cell phone WiFi is prefect connection and when I try to load a page any page etc it will say (UNABLE TO ACCESS NETWORK) I tried to disable the firewall and etc it just don't do it I want this fix so I don't have problems it's just been doing this ever since AVG had the newest updates recently. Very annoying.  Forgot to also mention I also added chrome and chrome set up to the allow on firewall so that's has not fixed anything yet.I have windows seven home premium, Dell Inspirion 1750 laptop all up to date Verizon Fios internet. Red and black internet box. 
 

A:Google Chrome and AVG virus protection problem.

Norton Utilities...I didn't even know that was still being sold to anyone.  In any case, I suggest that you uninstall it immediately.  Unless major improvements have been made, it will create problems, rather than solve problems on your system.
 
Please...download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis

Read other 10 answers
RELEVANCY SCORE 64.4

I was told that combofix would fix this REDIRECTING problem w google, it hasnt but heres my log file i need help asap please! i use google and almost all the webpages get REDIRECTED to a junk website! im not computer retarded but this thing has me beaten and no other progams will fiz this SOMEBODY PLEASE HELP here is the log file, im new to this place so keep in mind never posted log file (mostly cuz never had to i can always fix myself, but i cant read this lol) THANKS! -ryan oh yea COMBOFIX said that something was messed up ine the ROOTKIT and then it restarted and my avast on access board was gone including the toolbar icon and cant seem to get it back in my computer but i was able to get my SUPERANTISPYWARE back.! (even tho avast is my primary)

ComboFix 10-11-17.04 - martin 11/18/2010 13:25:07.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1918.1459 [GMT -5:00]
Running from: c:\documents and settings\martin\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 101016-1] *On-access scanning disabled* (Outdated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ActiveArmor Firewall *disabled* {EDC10449-64D1-46c7-A59A-EC20D662F26D}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

.
\\.\PhysicalDrive0 - Bootkit TDL4 was found and disinfected
.
((((((((((((((((((((((((( Files Created from 2010-10-18 to 2010-11-18 )))))))))))))))))))... Read more

A:google REDIRECT problem/virus need help fix log file!PLEASE!

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!Please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.In order for me to see the status of the infection I will need a new set of logs to start with.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.DeFogger: Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
The application window will appear Click the Disable button to disable your CD Emulation drivers Click Yes to continue A 'Finished!' message will ap... Read more

Read other 3 answers
RELEVANCY SCORE 64.4

Hi

I seem to have the google redirect virus that is going around, and can't get rid of it. I use McAfee SecurityCentre, SpybotS&D and HitmanPro which all bring nothing up.

McAfee does ask me whether I want to allow or block shell.exe, so I googled and it seems it's a virus(?) so I block it but it is still running when I look in processes.

Hope you guys can help. I'm using Windows Vista on a laptop and havn't had any other problems (I previously posted but had no reply so hope it's okay to post again?)
Have attached new copies of all the files you guys need and the DDS below.

Many thanks
Missdell

---------------------------------------------------------------------

DDS (Ver_10-10-31.01) - NTFS_AMD64
Run by Vicky at 15:58:28.09 on 06/11/2010
Internet Explorer: 8.0.6001.18975
Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.44.1033.18.4055.2361 [GMT 0:00]
SP: Spybot - Search and Destroy *enabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\... Read more

A:google redirect problem and shell.exe virus?

Hi

Please do the following:

Download OTL and save it to your desktop.
Double click on the icon to run it.
Make sure all other windows are closed and to let it run uninterrupted.
When the window appears, underneath Output at the top, make sure Standard output is selected.
Under the Extra Registry section, check Use SafeList
Download the following file scan.txt to your Desktop. Click here to download it. You may need to right click on it and select "Save"
Double click inside the Custom Scan box at the bottom
A window will appear saying "Click Ok to load a custom scan from a file or Cancel to cancel"
Click the Ok button and navigate to the file scan.txt which we just saved to your desktop
Select scan.txt and click Open. Writing will now appear under the Custom Scan box
Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic

Read other 10 answers
RELEVANCY SCORE 64.4

When I try using search engines such as Yahoo or Google, the webpages that I click on redirect me to different websites. However, if I type in a webaddress, it will take me to the correct website. Also, my computer runs slowly, and when I check Windows Task Manager, under the Processes tab, I've noticed that "iexplore.exe" keeps opening and running and the user is "SYSTEM". Although iexplore.exe is running in Windows Task Manager, no Internet Explorer window is opened. I can end the process, but it keeps reopening every 15 minutes. Any help will be greatly appreciated.

Here is my Hijack This log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:11:19 PM, on 10/3/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\WINDOWS\system... Read more

A:Google redirect virus and iexplore.exe problem!

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

Please copy this page to Notepad and Save it to your Desktop in order to assist you when carrying out the following instructions.

Before beginning the fix, read this post completely. If there's anything that you do not understand, kindly ask your questions before proceeding.
Ensure that there aren't any opened browsers when you are carrying out the procedures below.

It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.

------------------------------------------------------

Please note that these fixes are not instantaneous. Most infections require more than one round to properly eradicate.

Please stay with me until given the 'all clear' even if symptoms seemingly abate.

Kindly follow my instructions and please do no fixing on your own or running of scanners unless requested by a helper.

------------------------------------------------------

Please explain why this computer has no antivirus program installed and running. This is an open invitation for infection.

It can take as little as eight seconds to... Read more

Read other 12 answers
RELEVANCY SCORE 64

Google street view is no longer showing the number/numeric in the box in Google street view when you go up and down the street.
Like..
example 1555 north main street




I have no idea where on West Pico Boulevard in LA this is. Other than getting cross street.

In the past it would show number like 1140 West Pico Boulevard or 1160 West Pico Boulevard in LA has you move up and down the street.

Not sure if this is problem with my computer or if other people here are having this problem. It was working okay two or three months ago and now it not showing the number/numeric in the box.

Is this a Google glitch or did it get moved some where else to display that info? Or is tis some problem at my end?
 

Read other answers
RELEVANCY SCORE 64

Good day.
 
A few weeks ago, I had to download a utility program from a popular website, and since then I seem to have aquired a persistent google redirect virus. 
 
The basic symptom is that if I type a search in Google, I often (1 in 3?) times will be directed to an "odd" website.
 
System:
   Windows 7
   IE9
   Norton Internet Security Running
 
Things done so far:
1) Reviewed toolbar addons, a number had been previously disabled, now uninstalled. 
2) Downloaded and ran Hitman pro.
3) Downloaded and ran unhackme
4) Downloaded and ran TDSSKiller.
5) Downloaded and ran Malwarebytes.
 
They each found one or two random things. . .but the virus persists.
 
I would appreciate any help.

A:Google Redirect Virus Problem: Seems to be removal resistant

Have you tried different browsers?
 
Ie, Firefox, maybe even try Opera.
 
also try this program Download GMER Rootkit Scanner from here to your desktop. It will be a randomly named executable.
Double click the exe file.
If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO, then use the following settings for a more complete scan.Click the image to enlarge it
In the right panel, you will see several boxes that have been checked. Ensure the following are unchecked
IAT/EAT
Drives/Partition other than Systemdrive (typically C:\)
Show All (don't miss this one)

Then click the Scan button & wait for it to finish.

Read other 16 answers
RELEVANCY SCORE 64

Hi there everyone,
 
I've recently tried to watch an episode on the internet and tried to download the episode from the website, I installed the program to download the movie, but ended up getting an error from the connection server, anyway I now have this Adware/Malware/ Virus put on my Google Chrome browser and I have no idea how to get rid of it this is what i get when ever I open up Google chrome http://websearch.lookforithere.info/?pid=320&r=2013/05/10&hid=3760214777&lg=EN&cc=FR&unqvl=14, I've tried changing the settings in the extensions tab but its not an extension, obviously, I also set my tab preferences for Google that works only when i make a new tab though, If someone could help me resolve this issue that would be great.
 
thanks hope to hear from someone soon.

Read other answers
RELEVANCY SCORE 64

Hi,

I am having a problem that when I search something in Google via firefox, I get redirected to an unrelated site. Sometimes these sites are malware/spyware infected. I have ran the following anti-virus programs:

-Malwarebytes
-Spybot
-Hitman Pro 3.5
-McAfee
-TDSSKiller
-Avast

I have ran all of these numerous times in safe mode and normal mode. The reason i think it is affecting atapi.sys is because when i ran TDSS Killer, i said that that file is infected, and that it would be cured on rebbot, but that never fixes anything. Also I ran GMER Rootkit and he said that there was suspicious modification to atapi.sys. This problem is a pain to deal with. What is should I do?

A:Google Redirect Virus (atapi.sys rootkit problem)

I am using Windows XP by the way

Read other 2 answers
RELEVANCY SCORE 64

Hello,

I have searched around this site to see what sort of results people are getting,
it is best to check out something before blindily trusting when asking for help.

All seems to be positive which is great,
a big "Thank You" to all involved with this site.


I have been trying to help out my parents with their computer as it is acting up,
it has the search engine redirect problem (both in FF and IE),
and sometimes a page just pops up in a new tab.
I just had it happen as I am typing this, some gambling page pops up.

They also seem to have a problem with firefox connecting,
it will be approx 5 mins before the firefox page opens up,
after that everything works fairly well (except the problems listed above),
so I don't know if that is a different problem or not.

I am slightly better with computers than my parents,
I am not the best computer person, I have an idea of basic things.
I have tried to clean out files/programs that I understand are potential problems,
hopefully haven't done any damage.

I have attached the files as requested from the instructions page,
so here we go....


DDS (Ver_10-03-17.01) - NTFSx86
Run by Pamela Lenko at 14:38:18.04 on 09/06/2010
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_19
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.510.242 [GMT -7:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Personal Fir... Read more

A:[SOLVED] Google Redirect + New Page Pop Up = Virus Problem?

Hi

Please do the following:


Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here Double click on ComboFix.exe & follow the prompts.
As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:


Click on Yes, to continue scanning for malware.
When finished, it s... Read more

Read other 19 answers
RELEVANCY SCORE 63.2

Thank you for looking.

I have a nagging issue of something blocking Spybot, Malwarebyte and Trend Micro. Also, completely wiped out NetNanny and Google and Yahoo search results redirect you to ad sites.

Spyware Doctor is able to run and finds the Following:

Trojan-Spy.Zbot.YETH in Folder C:\Windows\System32\lowsec

Spyware.Possible_website_Hijack Host Entry 94.232.248.66, antivir.service.microsoft.com

Any help or suggestions are greatly appreciated.

Kevin

A:Spybot, Malwarebyte, Trend Micro all blocked!!!

to Bleepingcomputer. I would go to Am I infected? What do I do? on this site. The good people there will be able to guide you through your repair of your system. You may have more than on problem.

Read other 12 answers
RELEVANCY SCORE 63.2

It was suggested that I move this thread to this forum.

Thank you for looking.

I have a nagging issue of something blocking Spybot, Malwarebyte and Trend Micro. Also, completely wiped out NetNanny and Google and Yahoo search results redirect you to ad sites.

Spyware Doctor is able to run and finds the Following:

Trojan-Spy.Zbot.YETH in Folder C:\Windows\System32\lowsec

Spyware.Possible_website_Hijack Host Entry 94.232.248.66, antivir.service.microsoft.com

Any help or suggestions are greatly appreciated.

Kevin

A:Spybot, Malwarebyte and Trend Micro Blocked!!!

So is your computer running slower than normal? Experiencing any pop ups?

Read other 2 answers
RELEVANCY SCORE 62.4

I have and have run all kinds of stuff and I cant get rid of this stuff because I cant update my software. I have CA Antivirus (Full version) Malwarebyte Anti Malware (Full Verison) Super Antispyware (trial) none will update. Spybot S&D wont open at all.

This is what Super Antispyware said:

C:\WINDOWS\SYSTEM32\GAOPDXEOCEEXMV.DLL

AND

Adware.Tracking Cookie
C:\Users\Scott Seal\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
C:\Users\Scott Seal\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
C:\Users\Scott Seal\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
C:\Users\Scott Seal\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
C:\Users\Scott Seal\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt
C:\Users\Scott Seal\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
C:\Users\Scott Seal\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt
C:\Users\Scott Seal\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
C:\Users\Scott Seal\AppData\Roaming�... Read more

A:Spybot, CA Antivirus, SuperAntiSpyware,Malwarebyte wont update

Welcome to the BleepingComputer Forums. Since it has been a few days since you scanned your computer with HijackThis, we will need a new HijackThis log. If you have not already downloaded Random's System Information Tool (RSIT), please download Random's System Information Tool (RSIT) by random/random which includes a HijackThis log and save it to your desktop. If you have RSIT already on your computer, please run it again. Double click on RSIT.exe to run RSIT. Click Continue at the disclaimer screen. Please post the contents of log.txt. Thank you for your patience.Please see Preparation Guide for use before posting about your potential Malware problem. If you have already posted this log at another forum or if you decide to seek help at another forum, please let us know. There is a shortage of helpers and taking the time of two volunteer helpers means that someone else may not be helped. Please post your HijackThis log as a reply to this thread and not as an attachment. I am always leery of opening attachments so I always request that HijackThis logs are to be posted as a reply to the thread. I do not think that you are attaching anything scary but others may do so. While we are working on your HijackThis log, please: Reply to this thread; do not start another! Do not make any changes on your computer during the cleaning process or download/add programs on your computer unless instructed to do so. Do not run any other tool until instruc... Read more

Read other 2 answers
RELEVANCY SCORE 62.4

I'm having trouble reaching both Safer-networking.org and Malwarebytes.org. When I try to connect using any of the 4 computers in my home, I get a broken link page. If I VPN to my school's network, I can then access either of the two pages. I've found a similar problem in another thread http://forums.techguy.org/general-security/663609-solved-spybot-search-destroy-site.html. In that thread the original poster did a traceroute and found a bad hop and contacted the the site's tech people to resolve the problem. I looked up how to do a traceroute, looked up the sites' ip addresses and here are my resulsts
Tracing route to www.safer-networking.org [89.238.64.39]
over a maximum of 30 hops:

1 <1 ms <1 ms <1 ms 192.168.0.1
2 * * * Request timed out.
3 39 ms 26 ms 7 ms dtr01spbgsc-gbe-8-19.spbg.sc.charter.com [96.34.64.94]
4 11 ms 10 ms 20 ms crr01spbgsc-tge-0-1-0-7.spbg.sc.charter.com [96.34.64.41]
5 26 ms 28 ms 28 ms static.unknown.charter.com [96.34.72.38]
6 30 ms 12 ms 18 ms 96-34-78-94.static.kgpt.tn.charter.com [96.34.78.94]
7 37 ms 17 ms 14 ms bbr01sghlga-tge-0-1-0-0.sghl.ga.charter.com [96.34.2.40]
8 28 ms 27 ms 32 ms 66.216.1.133
9 31 ms 57 ms 38 ms ash-ten6-3-atl-ten5-4.wvfiber.net [66.216.1.141]
10 31 ms 30 ms 44 ms nyc-ten1-1-ash-ten3-3.wvfiber.net [66.216.1.162]
11 125 ms 108 ms 121 ms lon-vl14-ny60-vl14.wvfiber.net [66.216.48.214]
12 119 ms 117 ms 115 ms decix-j1.inexio.net [80.81.192.137]
13 124 ms 139 ms 122 ms inexio.cr2.network.m... Read more

A:Solved: Unable to reach spybot and Malwarebyte's sites.

Read other 7 answers
RELEVANCY SCORE 62.4

i recently recovered from and deleted from my computer the 'Windows Police Pro' virus, using Spyware Doctor and manually deleting all the files. Except now when i go to start->run->cmd it says "c:\Windows\system32\cmd.exe Application not found" but it is in the right place and it will run with right click> administrator.
Most other files/apps etc will bring up the 'Open With - choose the program you want to use to open this file' dialog too, unless i am able to right click > run as administrator. The reccomended program is usually internet explorer, and the "always use this program to open..." check box is greyed out.
I think it might possibly be something in regedit, but can't be sure
 

A:problem with Vista - Recovered from Virus, problem launching programs?

hi and welcome to the forum first i would run http://esupport.trendmicro.com/4/Ho...cro-HiJackThis-logs-for-malware-analysis.aspx you might also run
http://www.malwarebytes.org/ post you hjt log in the security and hijack forum http://forums.techguy.org/malware-removal-hijackthis-logs/622404-please-read-here-first-before.html and let them check out your comp first please be patient as they are usually very busy if you have no response in 48hrs, go to your thread and post bump this will bring you back to the top of the list to be noticed.if your still having problems after being checked out come back and someone will try to assist
 

Read other 1 answers
RELEVANCY SCORE 62.4

Hi, I'm in need of figuring out if my laptop was infected by a trojan, the operating system went kapoot and i need to reinstall it, or if its hardware failure. I used it last night and my AVG caught a "small trojan horse" called cryptbase.dll and after removing it i believe is where it began. My computer restarted and ended up starting up with the acer splash with me able to click f2 for setup. But f8 doesn't work and causes a long beeping noise if i leave it alone it goes to a black screen with a underscore blinking at the top left. i've done some research but, im unsure which route to take without taking some advice for my own laptop. My laptop is a Acer Aspire 5741-3541, Windows 7,intel core i5-450 processor, 4 GB DDR memory, 500 GB HDD. if you need more information please ask because im unsure with what is needed to fix the problem. The solutions i've heard is reinstalling windows 7, or it might be a HDD problem. Thank you.

A:Unsure if virus, operating system problem, or hardware problem

Let ma ask someone to look here.

Read other 52 answers
RELEVANCY SCORE 62.4

Hello,I am new to this site and I was hoping you guys can be of assistance to me. I am experiencing a virus that is shutting down my computer usually around 12:30am every night with the message NT/Authority System Shutdown your computer needs to be shut down in 30 seconds. Last time I received this was back in 2004 when I had the same worm most people had on their computers. Another Issue I am having is my firefox and IE is extremely slow mainly due to this Google Redirect Bug/Virus whatever you want to call it. I have searched for days to try to resolve this matter. I downloaded numerous malaware programs such as Ant-Virus Plus, Pareto, Trojan Remover, Goored Fix, MalawareBytes I believe its called.. but nothing has worked. I scanned my system plenty of times but it never cleaned anything.I have a Sony Vaio Laptop PCG-V505BX running on XP. Please let me know what other information you need.

A:Virus/Malaware NT/Authority System Shutdown and Google Redirect Problem

As no logs have been posted, I am shifting this topic from the specialized HiJack This forum to the Am I Infected forum.==>PLEASE DO NOT NOW POST LOGS<== unless a log is specifically requested.Please describe the issues you are experiencing with your computer.

Read other 19 answers