Over 1 million tech questions and answers.

If malwarebytes found threats and i delete all the threats will it bro

Q: If malwarebytes found threats and i delete all the threats will it bro

If malwarebytes found threats and i delete all the threats will it broke my pc?

RELEVANCY SCORE 200
Preferred Solution: If malwarebytes found threats and i delete all the threats will it bro

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: If malwarebytes found threats and i delete all the threats will it bro

Hi,
Depends it doesn't look like it did yet ?
See this,
Malwarebytes Anti-Malware Free

Read other 7 answers
RELEVANCY SCORE 112.8

First I will attempt to explain what has happened. I had been letting my two nephews (Ages 14 and 16) use my desktop pc (they live with me). At first, I let them on the admin account which resulted in me having to do a restore. Then I did as you folks suggested and made each of them a Standard account, and let them use the desktop while I used my laptop. The boys are gone this week spending time with their Dad so I got on the desktop because my laptop doesn't handle my games very well. I got on this morning and the computer was lagging and freezing so I ran Malwarebytes and it found 286 threats and told me to restart to remove the threats. I ran all the scans that you requested and will post them in multiple posts.

System Info:

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Ultimate, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz, Intel64 Family 6 Model 42 Stepping 7
Processor Count: 8
RAM: 12270 Mb
Graphics Card: AMD Radeon HD 6700 Series, 1024 Mb
Hard Drives: C: Total - 1418215 MB, Free - 1334384 MB;
Motherboard: Dell Inc., 0Y2MRG
Antivirus: Microsoft Security Essentials, Updated and Enabled
 

A:Malwarebytes Found Threats

Read other 16 answers
RELEVANCY SCORE 112.8

Hi @ all!
I am running Windows 7 64-bit Home Edition
My Malwarebytes found 2 threats on my PC. It's been the second time it showed me those threats, even though I told the program to remove it.
I tried to uninstall it via the "Control Panel" - "Programs & Features", but it will not uninstall it. I attached a pic of the 2 threats.
I just want it removed from my PC

A:Malwarebytes found 2 threats

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===Please download AdwCleaner by Xplode onto your Desktop.Close all open programs and internet browsers.Double click on AdwCleaner.exe to run the tool.Click the Scan button and wait for the process to complete.Click the Report button and the report will open in Notepad.IMPORTANTIf you click the Clean button all items listed in the report will be removed.If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.Close all open programs and internet browsers.Double click on AdwCleaner.exe to run the tool.Click the Scan button and wait for the process to complete.Check off the element(s) you wish to keep.Click on the Clean button follow the prompts.A log file will automatically open after the scan has finished.Please post the content of that log file with your next answer.You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).===Download the version of this tool for your operating system.Farbar Recovery Scan Tool (64 bit)Farbar Recovery Scan Tool (32 bit)and save it to a folder on your computer's Desktop.Double-click to run it. When the tool opens click Yes to disclaimer.Press Scan button.It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.The first t... Read more

Read other 9 answers
RELEVANCY SCORE 111.6

Hi Hope you can help, I regularly scan with malware bytes last scan a few days back found PUP and deleted it rescan and nothing found ran it again this morning and it found loads of threats, which it deleted  I then ran adware and rogue killer adware ran okay and deleted what it found went to run rogue killer which ran up to the scan but then a message popped up to say that it had stopped working  and needed to close I tried to get my computer to run in safe mode to retry RK but could not, I have posted the log for malware bytes the only thing I added to the scan was an old hdd (Drive I). which I store my photos on and only switch on when downloading photos (Drive D is recovery drive)
 
Malwarebytes Anti-Malware 1.75.0.1300www.malwarebytes.org
Database version: v2013.12.04.04
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16428
Tony :: TONY-PC [administrator]
04/12/2013 10:14:03
mbam-log-2013-12-04 (10-14-03).txt
Scan type: Full scan (C:\|D:\|I:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 347314
Time elapsed: 40 minute(s), 4 second(s)
Memory Processes Detected: 1
C:\Program Files\SearchProtect\bin\CltMngSvc.exe (PUP.Optional.Conduit.A) -> 1980 -> Delete on reboot.
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 3
HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc (PUP.Optional.Condu... Read more

A:Malwarebytes Found numerous threats

Download Security Check from here or here and save it to your Desktop. Double-click SecurityCheck.exe Follow the onscreen instructions inside of the black box. A Notepad document should open automatically called checkup.txt; please post the contents of that document.NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me. Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.Make sure the following options are checked:
Internet ServicesWindows FirewallSystem RestoreSecurity Center/Action CenterWindows UpdateWindows DefenderOther ServicesPress "Scan".It will create a log (FSS.txt) in the same directory the tool is run.Please copy and paste the log to your reply. Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList Devices (do NOT change any settings here)List Users, Partitions and Memory sizeClick Go and post the result. Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/products/malwarebytes_free to your desktop.* Double-click mbam-setup.exe and follow the prompts to install the program.* At the end, be sure a checkmark is placed next to Update Malwarebytes' Ant... Read more

Read other 25 answers
RELEVANCY SCORE 110.4

I was having some problems with my laptop (Dell Inspiron 9400 running Win XP), so I ran a Malwarebytes scan. It reported 6 "threats": 4 files and 2 folders. (How can a folder be a threat?)
 
What puzzles me is that it seems to be recommending that I ignore the threats. The message is "Scan Complete -- Non-Malware Detected". Then for each threat, the default action is "Ignore once".
 
I have a screen shot, but I can't figure out how to attach it. I have pasted the log text below.
 
I am inclined to override the default and quarantine them all. Is that the right course of action?
 
Thanks
 
-------------------------- scan log ----------------------------
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 07-31-14
Scan Time: 18:42:54
Logfile:
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.07.31.09
Rootkit Database: v2014.07.17.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 436196
Time Elapsed: 44 min, 35 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items de... Read more

A:Malwarebytes found 6 threats, recommends I ignore them

I uploaded the image file (jpg) to DropBox. Here's the link:
 
https://www.dropbox.com/sh/rspf3s6ns518b0y/AADrwft_1GE49MNfobJvesxQa
 

Read other 5 answers
RELEVANCY SCORE 105.6

I'm new here after screwing up my computer a few days ago using an anti-malware cleaner called RogueKiller.  While deleting the files in RogueKiller didn't initially cause problems, my computer eventually became disconnected from the internet after a "blue Screen event" and I had to restore my windows 10 to an earlier date.  I just ran AdwCleaner and here's the log file - I hesitate to delete ANYTHING after I had done so before and lost internet connection.  Please advise me the safest way to deal with these "threats" because I am not computer savvy when it comes to registry files - obviously after I screwed up settings that were needed to get online. I don't want to screw up again. 
 AdwCleanerS0.txt   17.15KB
  2 downloadsEdit: Moved topic from Virus, Trojan, Spyware, and Malware Removal Logs to the more appropriate forum. ~ Animal

Read other answers
RELEVANCY SCORE 105.6

RogueKiller found 601 threats;  all the threats are registry related except one.  I'm not sure if I should deleted it.  I've attached the log which shows the threats it found.  Please let me know if I should delete it or ignore it.  Thanks.

Read other answers
RELEVANCY SCORE 97.6

Can some one please help me out with this problem i woke up this morning and turned on my computer and i started getting these SYSTEM ALERT: MALEWARE THREATS saying that my computer is infected with a back door trojan that allows the remote attacker to perform malicious actions and when i try to go on the internet it goes to this IESECURE web page and it say they ran a scan and i am at risk,also i keep getting these porno pop ups and i dont no were they came from because i have pop up alert when i try to report abuse it say that some body downloaded to watch free videos and i pay with the pop ups

so i went to best buy and bought a spy ware and anti virus program because i didnt have ne protection the program i bought was TREND MICRO internet security and i ran all the scans i caught some trojans then i deleted them and i had like 120 spy ware things infected if some body can please help me out i would really like it

thank you
 

A:HELP:iesecure, maleware threats and constint back door virus threats

Read other 9 answers
RELEVANCY SCORE 92

Is anyone getting the pup.price.ninja threats? I get the same 4 pup threats every time Malwarebytes scans. I also noticed that I get advertisement popups while running Chrome that I don't get running Firefox. I have popups turned off but these popups continue regardless what site I am on. Only recently started getting these. May have to stop using Chrome.

A:PUP Threats Detected By Malwarebytes

The "pup" stands for "potentially unwanted program." The "price.ninja" has probably been added to your system by a site you have visited.

Read other answers
RELEVANCY SCORE 92

Malwarebytes found 2 infections. It deleted infections believe called BadCompany with Notepad. Now WinPatrol advises these 2 threats are trying to make changes to computer. 1. Microsoft Notepad.exe% Want to make change for this type of file registry editor Microsoft regit.exe %1 #2 .SCE Microsoft Notepad.exe %1 Want to change for this file type to file, (with no company name) to %1/s. How do I get rid of these threats. WinPatrol is driving me crazy with alerts. Thank You

A:Malwarebytes Finds 2 Threats Won't Go Away

Try booting into safe mode. Then run malwarebytes.

Read other 9 answers
RELEVANCY SCORE 90.8

I run:
AMD Athlon 64 2.40 GB
512MB RAM
Windows XP (SP2)
80 GB hard disk

It's been intermittently running slow. Crtl-Alt-Delete > Performance will show CPU usage at 99%-100%. I ran XoftSpy which came up with the following threats or high threats.
Vendor / Type / Category / Object

CWS.Googlems / Registry Value / Malware / Software\Microsoft\Internet Explorer\main/search bar

VX2 / Registry Value / BHO / Software\Microsoft\Internet Explorer\toolbar\webbrowser

1st Alert 1.3 / File / Carding / C:\File_Id.diz

Haxdoor / File / Trojan / C\WINDOWS\system32\w32tm.exe (High Threat)

EPS E-Mail Password / Sender File / Password Capture / C:\What’sNew.txt

Tracking Cookie File / Data Miner / C:\Documents and settings\first user\cookies\first [email protected]

What is the best way to deal with them? I could buy a XoftSpy licence for $40, but I am asking this question because every anti-virus or spyware programme seems to pick up different issues, so will any one safeguard me? Can I get rid of these without buying a licence, and what is my way forward? Thanks.
 

A:Threats and High Threats on XoftSpy

Read other 9 answers
RELEVANCY SCORE 90.8

I try to download iwisoft video downloader from CNET and found 2 short cuts on my desk top that was not there before , ( SYNC FOLDER & MY PC BACKUP ) Not only that but iwisoft video downloader dont work , it keep saying i need adobe flashplayer even after i install the flash player . i did a malwarebytes scan and it came up with 14 detection .
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Professional, Service Pack 1, 32 bit
Processor: AMD A4-4000 APU with Radeon(tm) HD Graphics, x64 Family 21 Model 19 Stepping 1
Processor Count: 2
RAM: 2271 Mb
Graphics Card: AMD Radeon HD 7480D, 768 Mb
Hard Drives: C: Total - 319899 MB, Free - 254015 MB; D: Total - 156937 MB, Free - 156843 MB; F: Total - 49999 MB, Free - 49799 MB; G: Total - 102618 MB, Free - 102318 MB;
Motherboard: MSI, FM2-A85XMA-E35 (MS-7721)
Antivirus: Microsoft Security Essentials, Updated and Enabled
 

A:Malwarebytes Scan Threats Detected .

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 7/31/2014
Scan Time: 12:51:23 PM
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.31.05
Rootkit Database: v2014.07.17.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: User

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 259624
Time Elapsed: 5 min, 58 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 9
PUP.Optional.AtuZi.A, HKLM\SOFTWARE\CLASSES\CLSID\{65daaf6f-90ac-49a4-9b47-d353c427367a}, , [b55cf3b363185ed8ef70423e7889f20e],
PUP.Optional.AtuZi.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{3d2409fc-ae09-4859-baa1-032c4af0c952}, , [b55cf3b363185ed8ef70423e7889f20e],
PUP.Optional.AtuZi.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{9D842DD0-7F7D-444C-8BDD-EC9A702C62D9}, , [b55cf3b363185ed8ef70423e7889f20e],
PUP.Optional.AtuZi.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{65DAAF6F-90AC-49A4-9B47-D353C427367A}, , [b55cf3b363185ed8ef70423e7889f20e],
PUP.Optional.AtuZi.A, HKLM\SOFTWARE\CLASSES\CLSID\{65DAAF6F-90AC-49A4-9B47-D353C427367A}\INPROCSERVER32, , [b55cf3b363185ed8ef70423e7889f20e],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49... Read more

Read other 2 answers
RELEVANCY SCORE 90.8

I am having problems with My Dell XPS 400 XP
I used CCleaner and then tried to run malwarebytes but each time it will freeze after a minute or two then the whole computer seems to be frozen and I have great difficulty getting it back on. Malwarebytes was sending me notices of 'blocking malicious threats' even though I could not run the scan. I did see the 'blue screen of death' last week. Hoping a look at a hijack log might help find the problem.
Thank You
.DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 10.5.1
Run by Judy at 12:43:18 on 2012-07-21
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.2129 [GMT -5:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Lavasoft Ad-Aware *Enabled/Updated* {964FCE60-0B18-4D30-ADD6-EB178909041C}
FW: Lavasoft Ad-Aware *Disabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Application Updater\ApplicationUpda... Read more

A:Malwarebytes 'blocking malicious threats' but won't run

Don't know how to zip and attach to note pad.

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 10/25/2005 6:46:13 PM
System Uptime: 7/18/2012 4:26:14 PM (68 hours ago)
.
Motherboard: Dell Inc. | | 0YC523
Processor: Intel® Pentium® D CPU 2.80GHz | Microprocessor | 2793/800mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 144 GiB total, 67.908 GiB free.
G: is Removable
H: is Removable
I: is Removable
J: is Removable
K: is FIXED (FAT32) - 931 GiB total, 845.425 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E965-E325-11CE-BFC1-08002BE10318}
Description: CD-ROM Drive
Device ID: IDE\CDROMSONY_DVD-ROM_DDU1615____________________FDS1____\5&286E6A4&0&0.0.0
Manufacturer: (Standard CD-ROM drives)
Name: SONY DVD-ROM DDU1615
PNP Device ID: IDE\CDROMSONY_DVD-ROM_DDU1615____________________FDS1____\5&286E6A4&0&0.0.0
Service: cdrom
.
Class GUID: {4D36E965-E325-11CE-BFC1-08002BE10318}
Description: CD-ROM Drive
Device ID: IDE\CDROMHL-DT-ST_DVD+-RW_GWA4164B_______________D108____\5&286E6A4&0&0.1.0
Manufacturer: (Standard CD-ROM drives)
Name: HL-DT-ST DVD+-RW GWA4164B
PNP Device ID: IDE\CDROMHL-DT-ST_DVD+-RW_GWA4164B_______________D108____\5&... Read more

Read other 25 answers
RELEVANCY SCORE 90.8

Recently, I downloaded an application that when installed, came with many other attached applications, and from there my computer started acting strange.  MBAM keeps on alerting me of threats including something along the lines of rootkit.kamahuda.PUA or something like that. Can somebody take a look at my FRST logs? thanks!
 
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:18-04-2016
Ran by andrew (administrator) on ANDREW-PC (19-04-2016 17:42:41)
Running from C:\Users\andrew\Desktop\chemlab
Loaded Profiles: andrew (Available Profiles: andrew)
Platform: Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) Language: English (United States)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe
(Qihu Software Co. Limited) C:\Program Files\360\Total Security\safemon\QHWatchdog.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device S... Read more

A:Malwarebytes not Quarantining all detected threats

Hi azhang My name is Aura and I'll be assisting you with your malware issue. Since we'll be working together, you can call me Aura or Yoan, which is my real name, it's up to you! Now that we've broke the ice, I'll just ask you a few things during the time we'll be working together to clean your system and get it back to an operational state.As you'll notice, the logs we are asking for here are quite lenghty, so it's normal for me to not reply exactly after you post them. This is because I need some time to analyse them and then act accordingly. However, I'll always reply within 24 hours, 48 hours at most if something unexpected happens;As long as I'm assisting you on BleepingComputer, in this thread, I'll ask you to not seek assistance anywhere else for any issue related to the system we are working on. If you have an issue, question, etc. about your computer, please ask it in this thread and I'll assist you;The same principle applies to any modifications you make to your system, I would like you to ask me before you do any manipulations that aren't in the instructions I posted. This is to ensure that we are operating in sync and I know exactly what's happening on your system;If you aren't sure about an instruction I'm giving you, ask me about it. This is to ensure that the clean-up process goes without any issue. I'll answer you and even give you more precise instructions/explanations if you need. There's no shame in asking questions here, better be safe than sorry!;If you d... Read more

Read other 20 answers
RELEVANCY SCORE 88.4

Hi

I was reading on the internet that last.exe and updateloader.exe are threats. So, how to remove these files without affecting the rest of the system? The first .exe file is in C:\Documents and Settings\Computer\Local Settings\Application Data\Xenocode\Sandbox\COMODO \4.00.0002\2010.11.27T19.25\Virtual\STUBEXE\@[email protected] I am not able to delete it. The license of my KAV was finished so i installed the latest version and it was also not able to delete this file.

Thanks
 

A:How to delete these threats

Read other 16 answers
RELEVANCY SCORE 88

I use AVG 2012 and the software detected threats. It has to do with tracking cookies. I ran malwarebytes. That's as far as I gotten. Can anyone help me get rid of these threats. They are also in Documents and Settings. I use windows xp professional. 2.0GB
 

A:AVG found threats

Get rid of AVG 2012 and then replace it with Microsoft Security Essentials 2.1.1116.0.

Also install SUPERAntiSpyware 5.0.0.1144 so it can work with Malwarebytes Anti-Malware 1.60.1.1000(which you apparently already have installed) in keeping the "nasties" out of your computer.

MSE will run in the background and do its own thing.

Run a quick scan with SAS and MBAM once a week after you first update their definition files, then select and remove everything they find.

---------------------------------------------------------
 

Read other 3 answers
RELEVANCY SCORE 88

Hello MSE has found three Severe threats on my machine. They are:

Exploit:Java/CVE-2010-0842.AL
Trojan:Java/Agent.A
Exploit:Java/CVE-2010-0840.MA

All three files were located in the Temp folder in AppData. MSE sucessfully removed the three threats however I am concerned that there may be further infections on my machine and I would be grateful if somebody could instruct me how to check thoroughly. Thanks in advance.

A:Threats found by MSE

Downloadhttp://www.techspot.com/downloads/4716-malwarebytes-anti-malware.htmlInstall,update and run a full scan Remove infections and Post the clean logDownloadTDSSkillerLaunch it.Click on change parameters-Select TDLFS file systemClick on "Scan".Please post the LOG report(log file should be in your C drive) Please download GMER from here(doesnot work on 64 bit OS)http://www2.gmer.net/download.phpTemporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.Now click the Scan button. If you see a rootkit warning window, click OK.When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.Click the Copy button and paste the results into your next reply. DownloadaswMBRLaunch it, allow it to download latest Avast! virus definitionsClick the "Scan" button to start scan.After scan finishes,click on Save logPost the log results here

Read other 7 answers
RELEVANCY SCORE 86.8

Hello guys,

I have been using Spybot Search & Destroy for quite a long time, and it always found between 15 and 35 threats (Ad Revolver, Double Click, etc) which I always deleted.

About 4 weeks ago I upgraded to the later version, and also 'immunised' my system at the same time (which hadn't been done before). However, since this upgrade, whenever I run Spybot it always comes up with "No Threats Found". Yesterday, I uninstalled Spybot and reinstalled it, ran it again, but it still came up with "No Threats Found". How come the old version always found some threats/spyware, but this new version doesn't? Could it be because my system is now "immunised" which is not allowing any of these threats in, or is Spybot not working properly? When it was downloading, a file looked to have a gobbledegook name, but I have read about such filenames and I think they are ok.

Also, is it OK to run your spyware check (at top of your screen) even though Spybot is installed?

I have Windows 98SE and free AVG on this computer.
I would welcome your advice. Thank you in advance.

(Like many others, I also have a problem with computer slowing down drastically after being on for 2-3 hours. Am currently trying to sort it following reading relevant threads, but if no luck will be asking another question!)
 

Read other answers
RELEVANCY SCORE 86.8

RogueKiller found 32 threats;  all the threats are registry related except one.  I'm not sure if I should delete it.  I've attached the log which shows the threats it found.  Please let me know if I should delete it or ignore it.  Thanks.

A:RogueKiller found 32 threats

Attachments aren't allowed in this forum....as you can see.
 
Use the programs below to clean, find and remove adware and malware.
 
Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the
Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.
After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.
CCleaner - PC Optimization and Cleaning - Free Download
 
Download Malwarebytes' Anti-Malware from Here
Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).
Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
When MBAM is finished scanning it will display a screen that displays any malware that it has detected.
Click the Remove Selected button.
MBAM will now delete all of the files... Read more

Read other 3 answers
RELEVANCY SCORE 86.8

Hi -----For the past week or so Spybot S&D no longer finds any new threats on my puter. I just uninstalled and then reinstalled Spybot. Ran a new search and it still finds no threats. AdAware, which always found fewer threats than Spybot is still working. Are there any known issues re Spybot? Any suggestions or thoughts?
 

A:No threats found with Spybot

Read other 12 answers
RELEVANCY SCORE 86.8

Hi can anyone help me out?.I noticed since I installed spy bot 1.4 every single scan result says, Congratulations no immediate threats were found!.But I know this is not right.Does anyone know what to do?.Thanks.
 

A:Spy Bot 1.4 No threats found every scan

Read other 16 answers
RELEVANCY SCORE 86.8

I posted a hjt log file a few days ago but between then my computer got completely filled with infections and i couldnt use the internet for days. I finaly got rid of them and got firefox working but could some one have a look at scan results in case there are still some problems that couldnt be fixed

Thanks

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:44:22, on 25/04/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Wes... Read more

A:Over 3,000 threats found on computer!

Thanks in advance if some one is able to give me some advice!
 

Read other 1 answers
RELEVANCY SCORE 86.8

So I recently upgraded to AVG free 2013. On it's first scan through my computer it found 2 threats. When I tried to "address the issue" it would let me select the files, but not repair them. I'm not 100% sure they are even virus files. I get conflicting results searching online for the names. The threats were listed as follows:

"";"The file is signed with a broken digital signature, issued by: Microsoft Corporation., D:\I386\Apps\APP03978\src\INSNTMSI.EXE";"Infected"

and

"";"The file is signed with a broken digital signature, issued by: Microsoft Corporation., D:\I386\Apps\APP08668\src\3rdPartyApp\HHUPD.EXE";"Infected"
Any ideas? Are these files dangerous to my system? What can I do to get a clean scan from AVG? Below are the requested logs. Thanks in advanced.

MJ

____________________
HijackThis Log

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:56:16 PM, on 11/4/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
C:\Program Files\AVG\AVG2013\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\arservice.exe
C:\Program Files\AVG\AVG2013\avgid... Read more

A:AVG found threats it can't repair

ignore those error messages
Some time during the next 6 months or so Microsoft update will replace those files with versions with the correct digital signatures
It was all down to a digitally signed certificate being withdrawn by Microsoft recently, so a lot of files that were signed using that certificate, flag as invalid by some antiviruses & scanning tools
They are fine so don't do anything
 

Read other 2 answers
RELEVANCY SCORE 86.8

I have all these pop ups and I would really appreciate if you could help me pinpoint the virus. Thanks

Logfile of HijackThis v1.99.1
Scan saved at 4:10:53 PM, on 1/3/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\IBM\IBM Rapid Restore Ultra\rrpcsb.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\Pharos\Bin\CTskMstr.exe
C:\WINDOWS\System32\QCONSVC.EXE
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\WINDOWS\System32\TPHDEXLG.EXE
C:\WINDOWS\system32\TpKmpSVC.exe
C:\WINDOWS\system32\CCM\CLICOMP\RemCtrl\Wuser32.exe
C:\WINDOWS\system32\CCM\CcmExec.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Video ActiveX Object\isamonitor.exe
C:\Program Files\V... Read more

A:Threats found from HIJACK

Hi dre1514 and welcome to TSF.

My name is Iain and I will be helping you clean your system.

You may wish to Subscribe to this thread (Thread Tools) so that you are notified when you receive a reply.

Please read these instructions carefully and then print out or copy this page to Notepad in order to assist you when carrying out the fix. You should not have any open browsers or live internet connections when you are following the procedures below.

Note that the fix may take several posts. Please continue to respond to my instructions until I confirm that your system is clean.

If there is anything you don't understand, please ask BEFORE proceeding with the fixes.

Please ensure that you follow the instructions in the order I have them listed.


Show Hidden Files
Go to My Computer > Tools > Folder Options > View tab and make sure that Show hidden files and folders is enabled. Also make sure that the System files and Folders are showing / visible. Uncheck the Hide protected operating system files option.



Downloads
Please download Cleanup! or use this Alternate Link if the main link does not work and install it. You will use this later.
*NOTE* Cleanup deletes EVERYTHING out of temporary folders and does NOT make backups. If you have any files in any TEMP directory and you need to keep them, then please MOVE THEM NOW!


Download AVG Anti Spyware

Use the link at the bottom of the page under "AVG Anti-Spyware Free for Windows"... Read more

Read other 1 answers
RELEVANCY SCORE 86

My computer has been hijacked by many security threats. I ran our security scan and anti-spyware scan and found the following:
Tesllar A-Trojan
WinAntispyware2007-unknown
ISM A-adware
Matcash-downloader
AVSystemcare-Rogue Security
Web Buying-adware
Matcash BG-downloader
Abetear A-Adware
ISM C-adware
SillyDi DBI-trojan
MatcashY-downloader
I do have antispyware on my computer but it is unable to delete these. I also have hijack this but I am unsure of what to delete from the log.
PLEASE HELP
Thank you in advance,
pullgrl
 

A:Multiple Security Threats Found

Read other 8 answers
RELEVANCY SCORE 86

I want a 100% clean system and want verification if the threats detected by Avast Free Antivirus 6 are harmful or not. I performed a custom scan and included the following All harddisks,System drive,CD-ROM and DVD drives,Memory,Auto-start programs (all users)Note:I have only one user on this laptop myself. The last thing I had it scan for was(potentially unwanted programs). When this scan finished the following 17 threats were detected. Screenshot of scan log, sorry not great quality but readable I think.If you could interpret if these process threats are real I would greatly appreciate this. Avast will not allow me to move these to chest or delete them. So I need your help I downloaded combofix but don't want to do the wrong thing and mess up my laptop because it seems to be working very well. I use Advanced SystemCare 4, CCleaner, Hitman Pro 3.5 Note: I ran default scan and NO THREATS were found at all. I have Spybot - Search & Destroy,Malwarebytes' Anti-Malware currently Pro version still on free trial. I have done A LOT of scans with many programs. I use COMODO Firewall maximum protection to go with my chosen Antivirus as previously stated. Avast Free Antivirus 6 with current updated engine and virus definitions. If you need any further info to resolve my issue please post and I can provide it thank you for reading this, and for any help I receive. I included my system spec below in case you need it. System SpecsWindows 7 Home Premium 64-bit (6.1, Build 7601)... Read more

A:Avast found 17 threats how can I remove them?

The last thing I had it scan for was(potentially unwanted programs). When this scan finished the following 17 threats were detected.If these detections only appeared when doing that, please be aware that a Potentially Unwanted Program (PUP) is a very broad threat category which can include any number of different programs to include those which are benign as well as malicious. They may also be defined somewhat differently by various security vendors.Lavasoft: What are Potentially Unwanted Programs (PUPS)?Eset FAQs: What are Potentially Unwanted Programs and Potentially Unsafe Applications?McAfee White Paper: Potentially Unwanted ProgramsSophos: Potentially unwanted applicationsAVG FAQ 2340: Potentially Unwanted ProgramsSome programs falling into the PUP category have legitimate uses in contexts where an authorized user or administrator has knowingly installed it. When flagged by an anti-virus or security scanner, it's because the program includes features, behavior or files (compressed, packed) that appear suspicious or which can potentially be used for malicious purposes. Compressed and packed files in particular are often flagged as suspicious by security software because they have difficulty reading what is inside them. Other legitimate files which may be obfuscated, encrypted or password protected in order to conceal itself so they do not allow access for scanning but often trigger alerts by anti-virus software. These detections do not necessarily mean the file is mal... Read more

Read other 5 answers
RELEVANCY SCORE 86

My Security keeps complaining about Security threats but everything seems to be in working order. Have done multiple full computer scans and no kind of malware showed up. Anyone know what is up?

A:Multiple Security Threats Found

Welcome
If you did not scan with malwarebytes do so now. Make a full scan and be sure it is updated.
If you AV comes up with threats, it should, also, identify, and possibly remove.

Read other 12 answers
RELEVANCY SCORE 86

Hello,
TrendMicro and ESET found and cleared some threats but I am still not sure the computer is clean. Startup programs keep changing, Chrome behaves strangely. Any help will be appreciated. Here is the FRST log. 
 
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:06-01-2015
Ran by Raj (administrator) on RAJ-PC (07-01-2016 09:17:55)
Running from C:\Users\Raj\Downloads
Loaded Profiles: Raj (Available Profiles: Raj)
Platform: Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) Language: English (United States)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files\360\Total Security\safemon\QHWatchdog.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
() C:\Program Files\Vodafone K4203I\Vodafone K4203I.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Progra... Read more

A:Found few threats, still not completely cured

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===Press the windows key + r on your keyboard at the same time. This will open the RUN BOX.Type Notepad and and click the OK key.Please copy the entire contents of the code box below to the a new file.

start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
CHR Extension: (uBlock) - C:\Users\Raj\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2015-11-22]
CHR Extension: (Leapforce Extension) - C:\Users\Raj\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\belncckcaakhmonmcfmegbglccbjlebc [2015-12-03]
CHR Extension: (NM Examples) - C:\Users\Raj\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jhbidnpflpccdoffamdgpmgilfbpigdh [2016-01-06]
S3 eapihdrv; \??\C:\Users\Raj\AppData\Local\Temp\ehdrv.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
Task: {66F68DCA-290E-4325-82A9-0C46046CEEE1} - \UpdateTask -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:4BE698E6
C:\Users\Raj\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojd... Read more

Read other 12 answers
RELEVANCY SCORE 86

Hello I have AVG installed.
 
Today it found threats and after a restart it is no longer displayed on the tray.
 
Also it looks like permissions have been gone, for example I was trying to install malwarebytes anti malware and an error occured "Failed to get path of 64-bit Program Files" which I found out it was due to not having permissions to access registry keys (only SYSTEM account had access).
 
DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.17054  BrowserJavaVersion: 10.65.2
Run by MTS at 10:51:06 on 2014-09-10
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.gr/
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\... Read more

A:AVG found threats. Now having permission problems

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/547584 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

Read other 3 answers
RELEVANCY SCORE 86

My system is Microsoft Windows XP Version 2002 Service Pack 3. When I restart my computer I receive the following: 1785 Multibay incorrectly instqalled. The multibay must be attached to the IDE controller as device 0. No other IDE device may be attached to the same controller.

I recently did 2 things that may be affecting my computer installed two 1000gbits Ram & connected a portable USB device into one of the USB slots in the back of the computer to save a document. I've never done that before and was unsuccessful.

Installation of the RAM did not seem to affect anything, but plugging in the USB PNY 8G device seemed to be when the problem started.

I now receive the above start up error message and my computer is running very slow, and glitching frequently meaning pages that I close out of appear as a white box before they disappear.

I thought it might be a virus so ran a Malwarebytes scan and saw that 47 files were infected. I removed the infected files and then did a disc clean up and defragmented.

Here is my dds file. I have attached the .ark & attach.txt file as you requested. I do not have access to window install disc or boot CD.


.
DDS (Ver_2011-06-23.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_21
Run by Girls at 9:51:56 on 2011-11-05
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3063.1658 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CC... Read more

A:Sluggish computer, & threats found

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

One or more of the identified infections is a backdoor trojan/rootkit.

This type of infection allows hackers to remotely control your computer, log keystrokes, steal critical system information, and download and execute files without your knowledge.

If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Please refer to Microsoft's Online Safety article for tips on creating a strong password.

Do not change passwords or do any transactions from the infected computer until it has been cleaned.

------------------------------------------------------

It appears you attached a shortcut to Attach.txt, instead of the actual Attach.txt log, to your initial post, which I cannot access.

Go to Start > Run and copy/paste the following into the Run box and click OK:

... Read more

Read other 10 answers
RELEVANCY SCORE 86

I never had a problem prior to about a week ago but lately I have been having problems with my system freezing up, especially when playing WOW with nothing else running. I have run adaware spybot superantispyware bitdefender. Nothing is turning up any threats. Can someone check my logs and tell me if anything looks out of place?


Here is a Deckard Scan.


Deckard's System Scanner v20071014.68
Run by Joe on 2008-04-14 01:56:28
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Joe.exe) -------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:56:42 AM, on 4/14/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\wpcumi.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Nero\Nero 7\InCD\InCD.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ASUS\ASUS Direct Console\LCMP.exe
C:\Windows\ASScrPro.exe
C:\Program Files\Apoint2K\... Read more

Read other answers
RELEVANCY SCORE 86

RogueKiller found 601 threats;  all the threats are registry related except one.  I'm not sure if I should delete it.  I've attached the log which shows the threats it found.  Please let me know if I should delete it or ignore it.  Thanks.

Read other answers
RELEVANCY SCORE 86

Hi,

Recently my computer has been running really slowly and when I try to open Taskmanger it says: "The application failed to initialize properly (0xc000012d). Click on OK to terminate the application."

When I try to open firefox the top part of the window will be missing along with text that should be appearing on the screen.When I reopen firefox after closing it, it say: "C;\Program Files\Mozilla Firefox\ xul.dull is not a valid Windows image. Please check this against your installation diskette"

Also, When I go to shut down my computer the START text will be missing and the icons for restart, shutdown, or logoff will be missing text. Even if I click on the icon the computer will not shut down So I have to force shutdown.

I am using Windows XP and I ran an ActiveScan with Panda, ran Malwarebytes Anti-Malware, and full Avast scans.
I have included the logs except MbAM because it did not detect anything.
I just do not know what actions to take for the infected files found with AVast! or how to fix these problems.

Thanks in advance!

;***********************************************************************************************************************************************************************************
ANALYSIS: 2011-06-06 17:16:43
PROTECTIONS: 1
MALWARE: 29
SUSPECTS: 0
;******************************************************************************************************************************************************... Read more

A:Actions to take for Threats found by Avast

Hello.Please try the following.Please download fixexe.reg by Grinler to your Desktop. This utility will reverse changes to your system made by the infection.Once downloaded, please execute the utility by double clicking on it. Windows will ask you if you wish to merge information with the Registry. You should allow it to do so.***************************************************Please try running MBAM this way.Please download RKill by Grinler from one of the 4 links below and save it to your desktop.Link 1Link 2Link 3Link 4Before we begin, you should disable any anti-malware software you have installed so it does not interfere with RKill running. This is because some anti-malware software mistakenly detects RKill as malicious. Please refer to this page if you are not sure how to disable your security software.Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed. If nothing happens or if the tool does not run, please let me know in your next reply***************************************************Make sure you are connected to the Internet.Launch Malwarebytes' Anti-MalwareClick on the Update tab and click the button Check for UpdatesIf you encounter any problems while downloading the definition updates, manually download them from http://data... Read more

Read other 10 answers
RELEVANCY SCORE 86

Hello,

We bought this Dell Inspirion Laptop about a year ago at a local Fred Meyer. I just noticed when I ran SuperAntiVirus it found some 486 Threats. When I clicked the 'Remove Threats' button I noticed that /Fred Meyer/ was listed in all the threats. However I couldn't quite see the path.

I also now just noticed when I go to File Explorer. I see two different paths to "My Documents".

One path shows: C/Users/fred meyer/Documents
The other path shows: C/This PC/Documents

I checked the files in some of the folders and they are the same and tested trying to delete a Document out of the Fred Meyer path but noticed it was also removed from C/This PC/Documents path as well. Or on the same note, if I add a folder or Document to C/This PC/Documents, it also get added to the fred meyer/Documents folder.

Can this be part of the 486 threats and how can I fix this? Every few days I am getting quite a number of threats detected..

Thanks in advance for any help...
 

Read other answers
RELEVANCY SCORE 86

my symantec antivirus backround scanner is perpetualy finding threats as is deleting them. after a restart, within the first 5 min im already at 1600 threats.

here is my HJT log:
Logfile of HijackThis v1.99.1
Scan saved at 11:34:27 AM, on 11/17/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\KeyboardSurrogate.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\System32\tabbtnu.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\WINDOWS\System32\inetsrv\inetinfo.exe
E:\programs\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common F... Read more

A:infiet threats found by symantec- HJT log

Ah! one more thing that i realized i should have mentioned before, all the threats seem to be varients of the win32/metabot trojan

Read other 3 answers
RELEVANCY SCORE 86

Dear TSF staff,

C:\WINDOWS\system32\acleditq.dll
C:\WINDOWS\system32\acleditq.dll.bak

Virus identified Obfustat.ADXW

was scanned with AVG free antivirus and healed. But still the virus is still in my computer. Currently, the computer cannot access the internet in which i believe may due to the virus.

Based on DSS main.txt :

Deckard's System Scanner v20071014.68
Run by Dilla on 2008-01-13 21:34:43
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 2 Restore Point(s) --
2: 2008-01-13 13:34:49 UTC - RP2 - Deckard's System Scanner Restore Point
1: 2008-01-13 12:43:41 UTC - RP1 - System Checkpoint


Backed up registry hives.
Performed disk cleanup.

Total Physical Memory: 496 MiB (512 MiB recommended).


-- HijackThis (run as Dilla.exe) -----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:35:42 PM, on 1/13/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WIND... Read more

Read other answers
RELEVANCY SCORE 85.2

Since I've been having browser re-direction issues and lots of popups, I figured I would install 
something that had been recommended to uninstall WSE Taplika.  I found WSE Taplika in 
my Control Panel > Program and Features.
I uninstalled WSE Taplika, but noticed that SpyHunter found some other hidden files of
WSE Taplika.
 
I found some issues when I went to register and purchase SpyHunter.
At the registration site, it's marked as costing 29.99 but then the total 
comes to 39.99 yet I don't see where that's coming from.
 
I've noticed here that folks are saying beware of SpyHunter.
I tried another anti-malware software feature called SuperAnti-Spyware Remover but
it found no where near what SpyHunter found.
 
Is there a free anti-malware remover better than SpyHunter?
 

A:SpyHunter Found 1251 Threats on my Computer

SpyHunter by Enigma Software Group USA, LLC is a program that was previously listed as a rogue product on the Rogue/Suspect Anti-Spyware Products List because of the company's history of employing aggressive and deceptive advertising 1. It has since been delisted but some users have reported they still engage in deceptive advertising 2. Newer versions of SpyHunter apparently install it's own "Compact OS" and uses Grub4Dos loader 3 to execute on boot up. The user no longer sees the normal Windows boot menu but instead sees the GRUB menu. In some cases this has caused the computer goes into a continuous loop when attempting to boot. 4,Unfortunately, AV-Test has not included SpyHunter in their comprehensive testing analysis. If Enigmasoftware's SpyHunter was included, which we hope they attempt to do so, we would get a much clearer picture as to how it compares to other anti-spyware programs in terms of protection, detection, repair and usability.While there are mixed reviews for SpyHunter, some good and some bad, our main concern is the reports by customers of deceptive pricing, continued demands for payment after requesting a refund, lack of adequate customer support, removal (uninstall) problems and various other issues with their computer as a result of using this product 6. For example, some users are not aware that when purchasing SpyHunter, they have agreed to a subscription service with an automatic renewal policy 6. This information is in fine print at the bottom of the... Read more

Read other 12 answers
RELEVANCY SCORE 85.2

I've used the full scan option with Spybot Search & Destroy, Malwarebytes and Avast! 2014 (free versions) and all said that there were no threats found. Is that a good sign? Is there any way I could check any further?
 
 

A:No threats found by 3 different scans, a good sign?

Hello -
Is there a special reason for you to think that you may have a problem ??
 
There are about 100 tools that will always find something, what are you looking for ?
 
Sorry, but your post is a bit vague in the details of why you posted this -
 
Thank You -

Read other 9 answers
RELEVANCY SCORE 85.2

Hi guys,

Hopefully someone can point me in the right direction.
I've got an ACER 5750 laptop with Win7 Home Premium with a couple of problems.
- I can't turn the windows firewall on (error 0x80070424)
- MSE has picked up:
* Trojan:Win64/Sirefef.Y
* Trojan:Win32/Sirefef.AB
* Trojan:Win64/Sirefef.U
* Trojan:Win32/Alureon.FP
* Trojan:Win64/Sirefef.P
* Program:Win32/CoinMiner
- Malware Bytes has picked up:
* RiskWare.Tool.CK

So, sadly its a bit of a mess...

I have run MSE to remove the above which states a successful removal but when completing the requested restart Win7 wont boot and pops up a repair program which will only let the system run if I complete a restore in which case the whole lot starts over. I've also run Malware Bytes which sometimes clears the problem but on restart the problem still exists.

It seems to be a very similar problem to TommyC11's issue here: Link

I have run TDSSKiller.exe which doesn't return any threats.

Many thanks
Stu

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Sarah and Stu at 17:26:25 on 2012-05-08
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.64.1033.18.3948.1654 [GMT 12:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firew... Read more

A:Windows Firewall Error, Threats found in MSE

Hi Stu!!My secret agent name on the forums is SweetTech (you can call me ST for short), it's a pleasure to meet you. I'll be addressing you by your username, if you'd like me to address you by something else, please let me know!I would be glad to take a look at your log and help you with solving any malware problems.If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed. If you have not, please adhere to the guidelines below and then follow instructions as outlined further below:Logs from malware removal programs (OTL is one of them) can take some time to analyze. I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forums.
Please make sure to carefully read any instruction that I give you. Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.
If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask!
In Windows Vista and Windows 7, all tools need to be started by right clicking and selecting Run as Administrator!
If I instruct you to download a specific tool in which you already have, please delete the copy that you ha... Read more

Read other 26 answers
RELEVANCY SCORE 85.2

I did a Malwarebyte's (Licensed) scan yesterday, and it came up with these 2 threats:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (PUM.Hijack.StartMenu)

c:\system volume information\_restore{0c16e88b-c8d3-4b88-a534-8d600b484eb3}\RP48\A0007577.exe (Dont.Steal.Our.Software.A)

I obviously deleted them, but they are still in my quarantine folder. The thing is, before I did the scan I noticed something was up because I was unable to right click on the start menu. It would just be a brief flash on the screen. It still can't right-click on the start menu (except for down the bottom of the menu to click properties) even when enabling drag-'n'-drop.

Thanks TSF

A:[SOLVED] Two threats found, causing other problems too...

Bump, no replies

Read other 2 answers
RELEVANCY SCORE 85.2

Here is my log, panda scanner closed and could not get scan results.
please help, thank you!


Deckard's System Scanner v20070611.50
Run by Owner on 2007-07-06 at 21:45:32
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
34: 2007-07-07 01:45:38 UTC - RP257 - Deckard's System Scanner Restore Point
33: 2007-07-06 21:02:16 UTC - RP256 - Removed STOPzilla. Available with Windows Installer version 1.2 and later.
32: 2007-07-06 21:01:06 UTC - RP255 - Removed Microsoft Windows Theme Ontario
31: 2007-07-04 18:27:35 UTC - RP254 - Ad-Aware Restore Point 2007-07-04 14:27:31
30: 2007-07-04 17:00:46 UTC - RP253 - Installed Ad-Aware 2007


-- First Restore Point --
1: 2007-04-18 22:41:01 UTC - RP224 - Software Distribution Service 2.0


Backed up registry hives.

Performed disk cleanup.


-- HijackThis Clone ------------------------------------------------------------

Emulating logfile of HijackThis v1.99.1
Scan saved at 2007-07-06 21:46:45
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (7.00.6000.16473)

Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WIND... Read more

A:New to TSF. Check-up, STOPzilla found threats but have to buy to remove, please help!

Bump

Read other 12 answers
RELEVANCY SCORE 85.2

Hello all,

Recently I have been having an issue with IE 9. I mainly use Firefox as my browser, but occasionally I will use IE. When I search something in Google and click on a result, I will randomly be redirected to a different page. Most of the times it is this "click get answers fast" website. It is only every so often though. I can click on links for the most part and everything goes through, but occasionally I will get a redirect. Firefox is not having this issue at all, I am getting no redirects using Firefox. I have scanned with AVG, I have scanned with MBAM, and I have scanned with TDSSKiller. None of them are showing anything. I have cleared out cookies and temporary Internet files with no luck. I am hoping I could get some help, if someone would be so kind as to guide me through finding the problem and resolving it that would be great. There are no other symptoms, too, which is kind of weird as the redirects are only occasional (but still worrysome!)

OS - Windows 7 Home Premium 64-bit, using IE 9.

Thanks!

A:IE 9 Redirects - MBAM, AVG, TDSSKiller Found No Threats

DownloadTDSSkillerLaunch it.Click on change parameters-Select TDLFS file systemClick on "Scan".Please post the LOG report(log file should be in your C drive) Do not change the default options on scan resultsDownloadaswMBRLaunch it, allow it to download latest Avast! virus definitionsClick the "Scan" button to start scan.After scan finishes,click on Save logPost the log results hereDownloadESET online scannerInstall itClick on START,it should download the virus definitionsWhen scan gets completed,click on LIST of found threatsExport the list to desktop,copy the contents of the text file in your reply

Read other 13 answers
RELEVANCY SCORE 85.2

here is the HJT LOg

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:52:52 PM, on 5/29/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\AOL\1126917364\ee\AOLHostManager.exe
C:\Program Files\Common Files\AOL\11269173... Read more

A:HJT log please help diagnose over 63000 threats found on avg before it freezes

Ohh yeah 99.9% of the threats according to avg are trogans and all start with ODCSA.dll hope this will be of some help.

Read other 19 answers
RELEVANCY SCORE 85.2

Hi guys,Hopefully someone can point me in the right direction.I've got an ACER 5750 laptop with Win7 Home Premium with a couple of problems.- I can't turn the windows firewall on (error 0x80070424)- MSE has picked up: * Trojan:Win64/Sirefef.Y * Trojan:Win32/Sirefef.AB * Trojan:Win64/Sirefef.U * Trojan:Win32/Alureon.FP * Trojan:Win64/Sirefef.P * Program:Win32/CoinMiner- Malware Bytes has picked up: * RiskWare.Tool.CKSo, sadly its a bit of a mess...I have run MSE to remove the above which states a successful removal but when completing the requested restart Win7 wont boot and pops up a repair program which will only let the system run if I complete a restore in which case the whole lot starts over. I've also run Malware Bytes which sometimes clears the problem but on restart the problem still exists.It seems to be a very similar problem to TommyC11's issue here: LinkI have run TDSSKiller.exe which doesn't return any threats.Should I follow on with the process outlined in TommyC11's thread?Many thanksStu

A:Windows Firewall Error, Threats found in MSE

No,dont follow the instructions given to another user.

We need advanced tools to remove this infection

Read the guide here on preparing logs

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck

Read other 3 answers
RELEVANCY SCORE 85.2

So the first problem started by slow desktop about which I posted here http://www.techsupportforum.com/foru...ml#post3539358

After this post, I ran CCleaner again, and found two unfamiliar things are starting at startup of my pc... tkbell.exe and NSU_agent...
To be safe about them, I downloaded the norton 360 trial, and after updating it blocked an attack and showed me this (see the screenshot)....
The red-marked area was an ip address, which was pretty much similar (the first two set of numbers) to my own ip address. Not sure it was my own or not.
I don't know what the hell is going on...Please help.
Thank you.

Right now full scan is going on.

A:[SOLVED] Strange problems and threats found

Norton full scan detected 9 risks. 7 tracking cookies, 2 virus. among them 8 fixed and 1 unresolved

Read other 13 answers
RELEVANCY SCORE 85.2

Norton has indicated my laptop has this virus. 
I have include the 'Norton Scan' text file
Norton can't remove the virus
 
I executed the FRST program and attached the frst.txt and addition.txt
 

 Addition.txt   27.41KB
  4 downloads

 Norton Scan.txt   2.63KB
  4 downloads

 FRST.txt   25.79KB
  2 downloads
 
frst.txt pasted here
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-05-2015
Ran by Satellite (administrator) on SATELLITE-PC on 10-05-2015 19:46:40
Running from C:\Users\Satellite\Downloads
Loaded Profiles: Satellite (Available profiles: Satellite)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\ccsvchst.exe
(Symantec Corporation) C:\Program Files (x86)\PC Checkup\SymcPCCULaunchSvc.exe
(Symantec Corporat... Read more

A:Norton found Unresolved Threats:W64.Viknok.B!inf

Hi & to Bleeping Computer Forums!
My name is Jürgen and I will be assisting you with your Malware related problems.
Before we move on, please read the following points carefully:
My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
Perform everything in the correct order. Sometimes one step requires the previous one.
If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now!
Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.
If I don't reply within 24 hours please PM me!
Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
Step 1
Start FRST with Administrator privileges.
Write the following text into the Searc... Read more

Read other 25 answers