Over 1 million tech questions and answers.

The computer at work is infested with PAV. I downloaded Malware bytes anti-Malware but it still won't scan

Q: The computer at work is infested with PAV. I downloaded Malware bytes anti-Malware but it still won't scan

these are the instructions I followed:Uninstall itclick on this link ? and then select run.http://www.malwarebytes.org/affiliates/2...INSTALL IT TO YOUR DESKTOP, update it, then run a full scan and remove everything it finds.some viruses will try to disable it so if malwarebytes will not start up then go into the folder it is in and rename the mbam file to XXX then double click on the file you just renamed to start it up.after you have used malwarebytes then do this on-line scan.to make sure you have nothing else hiding away.http://www.bitdefender.com/scan8/ie.htmlpreferably in safe mode with networking.it's important you install it on your desktop so you can easily get into the folder and change the name of the mbam file.and viruses do not always look on the desktop for it.OR you can try the on-line scan first.This seemed to have helped but I still can't run Malware bytes and my computer redirects websites I try to get into sometimes. I installed Norman Malware cleaner is this is what it said:Removed 5 of these ( deleted file:C:/windows\system.32\UACqfqboedxvctjti.dat)in red appeared- To many infections/an unexpected error (Please contact support):C\Windows\system32\UACqfqboedxvctjtit.dat (infected with Text/Td.ss.A)File marked for defered cleaning (reboot required) c:\windows\Temp\UAC314c.tmp(infected with W32\FakeAlert.NEUI clicked quit afer it finished scanning and it prompted me to reboot computer automatically. I selected for the computer to reboot . Results: I am still have problems with redirected web pages. PAV seems to be mostly gone but it seems that it is still lurking somewhere in my system. Please help. (Moderator edit: post moved to more appropriate forum. jgw)

RELEVANCY SCORE 200
Preferred Solution: The computer at work is infested with PAV. I downloaded Malware bytes anti-Malware but it still won't scan

I recommend downloading and running DRP. It's a recovery tool that has been proven to recover files that most other programs have no luck with. I've even recovered files from freshly formatted or partitioned drives.

You can download it direct from this link http://goo.gl/v51TwD. (This link will automatically start a download of DRP that you can save to your computer.)

A: The computer at work is infested with PAV. I downloaded Malware bytes anti-Malware but it still won't scan

Hello it appears you are heavily infected with rootkits. They are interfereing with removal.You need to run HJT/DDS.Please follow this guide. go and do steps 6 and 7 ,, Preparation Guide For Use Before Using Hijackthis. Then go here HijackThis Logs and Virus/Trojan/Spyware/Malware Removal ,click New Topic,give it a relevant Title and post that complete log.Let me know if it went OK.

Read other 1 answers
RELEVANCY SCORE 116

Decided to download it since I was bored 
 
http://tinypic.com/r/9r3luh/8
 
http://i.imgur.com/uydEaZO.png
 
6 things it found...
 
Does this mean I need to change all my passwords?
 
weird, I can't even see the picture on tinypic when I click my link.

A:Downloaded malware bytes anti root kit and

bump

Read other answers
RELEVANCY SCORE 99.6

Have been using Win 7 Ultimate x64 for quite a while but tonight ran into a small problem. I like to keep the titles for links very short and want to rename "Malwarebytes Anti-Malware" (I am a registered, paid user) to simply "Malwarebytes". I am listed as an Administrator and I used LockHunter to unlock the file but it still does not allow me to shorten the description. When I shorten the name and hit OK I am told "You'll need to provide administrator permission to rename this file" Since I am the administrator on this machine I do not know what to do. Continuing does nothing. Anyone have any suggestions? /* Philip */

A:Changing File Decription for link to Malware Bytes Anti-Malware

Not sure but I think Malwarebytes is trying to protect itself.
That is one of the first things a virus would try to do is change the name/link and get it out of the infection way.

I can change the name of the desktop Icon to MBAM.

Read other 9 answers
RELEVANCY SCORE 99.2

I tried to down load the now version, and the computer won't let me download it.

And there is something wrong with the version of Anti-Malware I have now. Every time I want to use it.
It downloads the setup and then it up dates. And today when I wanted to scan, it stopped and computer ran an error
report.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:03:38 PM, on 10/4/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\LSI SoftModem\agrsmsvc.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Secunia\PSI\PSIA.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Comodo\Firewall\CPF.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\G... Read more

A:Can't download the news version of Malware bytes Anti-Malware

Read other 16 answers
RELEVANCY SCORE 98.4

I am pulling my hair out. Please help. I have followed the instructions in your excellent forum at http://www.bleepingcomputer.com/virus-remo...-antivirus-plus but still no luck. Everytime Malware Bytes starts to run it dies. I have also been unable to get the RootRepeal Report. Same problem - it starts then apparently is killed by Antivirus Plus. I also had difficulty getting the DDS Tool to generate the log files but it finally worked. Here are the two files. At least it's a start. Can you tell me what I should do next? Thank You

A:Antivirus Plus Kills Malware Bytes Anti-Malware

Hello and welcome to Bleeping Computer! We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Fo... Read more

Read other 2 answers
RELEVANCY SCORE 96.4

Hi... I'm so frustrated. I ran a computer scan and was told that I am infected with malware. I had Malware Bytes Anti-Malware installed, but when I clicked on the short cut, to my surprise, it was missing. So, I tried to download it again. After clicking the link to download, my computer goes through the motions, even notifying me that the program has been downloaded. But, I get no screen asking me if I want to RUN, SAVE, or Cancel. What do I do?Thank you for your help and support,vallee45 Edit: Moved topic from XP to the more appropriate forum. ~ Animal

A:Can't install Malware Bytes Anti-malware

Can you get to bit defender for an online scan, or trend micro online scan?
You also can google on renaming MB temporarily so it will run, the malware is programmed to do that by name.

Read other 6 answers
RELEVANCY SCORE 95.6

I have a Windows XP SP3 PC from a user who was infected with malware, I used Malware Bytes to remove the offending software, and now I am unable to open the Windows Update page. I can browse to other pages but after a few minutes, I get redirected to another random page. I also keep seeing the Just In Time debugger. Tried a Registry edit I found recommended elsewhere, to fix that issue, but that didn't last. At this point, neither SAS nor MBAM see any malware present, but I am stuck with my problem. Existing antimalware package is MS Forefront. All utilities I have used have been updated to the most recent definitions.

A:Malware Bytes cleaned malware, now Windows Update doesn't work, webpages randomly redirected

Hello,Please follow the instructions in ==>This Guide<== starting at Step 6.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues and what you have done to try to resolve them.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Orange Blossom

Read other 1 answers
RELEVANCY SCORE 94.8

Here is the Hijack this log: I could use any and all help from here! Thank You in advance!

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:01:28 PM, on 7/7/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\James Marchisio\My Documents\Downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.noaa.gov/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explo... Read more

A:All executable files will not open, when opening AVG to scan computer freezes...malware bytes and AVG in safe mode will not fix...

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything. We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. To help Bleeping Computer better assist you please perform the following steps:*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/459704 <<< CLICK THIS LINK If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.*************************************************** If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lo... Read more

Read other 13 answers
RELEVANCY SCORE 92.8

I ran a scan and was informed that I am infected with Maleware. I thought I had Malware Bytes Anti-Malware installed, but when I went to click on the short cut it was missing. I checked to see if the program was still installed and it isn't. I tried to download MBAM again, but it won't download. Can anyone help me? I am receiving pop-ups and they are annoying.

Thank you for your help and support,
vallee45

A:Malware Bytes Anti-Malware

If you cannot use the Internet or download any required programs to the infected machine, you are going to need access to another computer (family member, friend, library etc) with an Internet connection. Save mbam-setup.exe to a flash (usb, pen, thumb, jump) drive or CD, transfer it to the infected machine, then install and run the program. If you cannot transfer to or install on the infected machine, try running the setup (installation) file directly from the flash drive or CD by double-clicking on mbam-setup.exe so it will install on the hard drive. If you cannot copy files to your usb drive, make sure its not "Write Protected". Some flash drives have a switch on the side which could have accidentally been moved to write protect.-- Some types of malware will disable Malwarebytes Anti-Malware and other security tools to keep them from running properly. If MBAM will not install, try renaming it first.Right-click on the mbam-setup.exe file file and rename it to mysetup.exe. If that did not work, rename it explorer.exe.Double-click on the renamed file to start the installation.If that still did not work, then try changing the file extension. <- click this link if you do not see the file extension
If using Windows Vista, refer to these instructions.Right-click on explorer.exe and change the .exe extension to .scr, .com, .pif, or .bat.Then double-click on explorer.com (or whatever extension you renamed it) to begin installation.If after installation, MBAM will not r... Read more

Read other 1 answers
RELEVANCY SCORE 90.8

This may well be a stupid question - if so, I apologise.On my wife's laptop, I have her set up as a standard user, while I am the Administrator. We use Vista firewall, and AVG anti-virus. I also have SuperAntiMalware, which I use to scan the system each week.My question is, does such a scan (initiated by me) look at all the files/folders on the HDD? Or, does she need to run the scan as well?Thanks

A:Anti-malware scan on a computer with different users

If you are logged into an administrator account, any typical malware scanner should do all files and folders. Now, registry issues is what may be a concern. If there is a malware issue in HKEY_CURRENT_USER in another account, that will not be covered because it is not loaded. Otherwise, you should be good.

Read other 6 answers
RELEVANCY SCORE 90.4

I've been seeing here that Emsisoft Anti-Malware is free for 30 days, after 30 days of use will be able to scan and remove malware that it finds?
I do not want to use it with real-time protection, I have ESET for it, I use it as I use Malwarebytes Anti-Malware Free, only for weekly scans!
Thank you
#Translator
 

A:Emsisoft Anti-Malware Free'll be able to scan and delete the malware?

Download emsisoft emergency kit

Emsisoft Free Emergency Kit: Portable malware scanner | Free removal of Viruses, Bots, Spyware, Keyloggers and Trojans

it's scanner without real time, full free
 

Read other 3 answers
RELEVANCY SCORE 90

Just recently I tried to get rid of the google virus on my pc using Malware Bytes, after the scan it found 6 threats to my computer, after I removed them Malware Bytes asked me to restart my pc, and even since the computer has been restarting at start up, I have tried to go into safe mode but it still reboots it self from there. Can someone explain to me what is going o with my pc?

I am not sure iif this helps but, right before the pc reboots the theme chaanges to the classic windows theme.

Thank You in advance.
 

A:PC keeps rebooting after malware bytes scan

Read other 14 answers
RELEVANCY SCORE 89.6

Fresh install on the image I had backed up so this is strange

Malware anti bytes works fine when quick scan but thorough scan freezes and not responds

anyone help me out please

A:Malware anti-bytes freezes

Do you get any error messages?

Read other 8 answers
RELEVANCY SCORE 89.6

Hi folks

Tried installing malware bytes anti-malware bytes program (through recommendation), my current anti-virus AVG picked up on this - quarantined it thought it was a trojan (can't remember name, but it was something like trojan.banker..JO5). I checked the source of download and new it was ok, so I un-installed AVG and ran the anti-malware bytes executable file and nothing happened. I've since reinstalled avg and now it has no problem with the anti-malware bytes executable file sitting on my desktop, although when I click to start it I get this message

c:\users\THOMAS\Desktop\mbam-setup.exe is not a valid win32 application

can you have a look at this for me?
do I really need this malware bytes anti-malware program if i have avg or have I stumbled on a problem that has until now remained hidden. any advice would be greatly appreciated.

Here is the DDS log information

DDS (Ver_09-10-13.01) - NTFSx86
Run by THOMAS SWINHOE at 19:58:37.16 on 19/10/2009
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_10
Microsoft? Windows Vista? Home Basic 6.0.6001.1.1252.44.1033.18.2047.1213 [GMT 1:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: AVG Anti-Spyware *disabled* (Updated) {48F2E28D-ED66-4646-9C11-B3055B0AF604}
SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP:... Read more

Read other answers
RELEVANCY SCORE 89.6

DDS will not run on my computer.. I think it's due to my version of Windows? Is there any other program I can use and post to get help?

A:Very slow computer and malware bytes picking up malware

Hello Heathr6913,

Welcome to Bleeping Computer.
My name is fireman4it and I will be helping you with your Malware problem.

Please take note of some guidelines for this fix:
Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
   If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
   Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
In the upper right hand corner of the topic you will see a button called Follow This Topic.I suggest you click it and select Immediate E-Mail notification and click on Follow This Topic. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

   Finally, please reply using the Post  button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.
  I will be analyzing your log. I will get back to you with instructions.  1.Please download AdwCleaner by Xplode and save to your Desktop.Double click on AdwCleaner.exe to run the tool .Click on the Scan button.AdwCleaner will begin to scan your computer.After the scan has finished...Click on the Clean button.Press OK when ask... Read more

Read other 4 answers
RELEVANCY SCORE 89.2

When I do a virus scan with both my purchased mcafee software and Malwarebytes, during the scan of my C: Drive, my computer “beeps” twice during the scan. I do not get any prompts of what happened, it just beeps. Are there a couple of files the virus scan doesn’t like? Is there a log from these virus software packages that I can look at to see what it beeped at, or show me what happened. I also get a file with the word “Chinese” on it, is this a part of windows 7, or should I be concerned? I never had the system beep at me before during virus scans. The scans show that there are no virus’s present.
Thanks for any help in this matter, I'm very concerned about this.
 

Read other answers
RELEVANCY SCORE 89.2

Hi, I've got a strange problem. After some time on the interent the other day I clicked on a link to a site that gave me one of those faux "Microsoft Anivirus" pop-ups and closed it. I ATF Cleaned my computer and then ran Spyware Doctor and Malware Bytes to make sure I was clean. Spyware Doctor found nothing and Malwarebytes found 3 infections under Microsoft Antivirus. I went to remove and was prompted to reset and when the computer went on to start windows again I got a blue screen and this message.:A problem has been detected and windows has been shut down to prevent damage to your computer. If this is the first time you've seen this stop error screen restart your computer. If this screen appears again follow these steps: Disable or uninstall any anti-virus, disk defragmenation or backup utilities. Check your hard drive configuration, and check for any updated drivers. Run CHKDSK /F to check for hard drive corruption and restart your computer. Technical InformationSTOP: 0x00000024 (0x001902FE, 0xF7AAD3FO, 0xF7AAD0EC, 0x87441889)After I got this message I went to do a disk repair with the Microsoft XP boot disk, and when I selected repair the computer froze. I also tried all safe modes, and last known good configuration and before it arrives to start Windows it blue screens. I'm at wits end, any help is appreciated.

A:Blue Screen After Malware Bytes Scan

I've been trying to work out the problem using the bootdisk ubcd4win and running SuperAntiSpyware and Spybot Search and Destroy. SuperAntiSpyware deleted some of the found problems and Spybot Search and Destroy found and removed some but when I re-run the Spybot the same infection it said was deleted returned. I think In may have narrowed down my computers solution to these files. Microsoft.Windows.System: [SBI $51373AEE] Settings (Registry change, fixed) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoDispAppearancePageMicrosoft.Windows.System: [SBI $51373AEE] Settings (Registry change, fixed) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoDispAppearancePageHas anyone else approached or have seen a problem like this. It seems like a flawed registry error that makes a comeback after the killl. Thanks in advance for any help anyone can provide.

Read other 30 answers
RELEVANCY SCORE 88.4

i downloaded antimalware bytes but i get a runtime error 440 what can i do to get anti malwarebytes up and running thanks

A:runtime errror on anti malware bytes

Uninstall your current version of Malwarebytes, reboot your computer, then download and install the most current version from here.

Read other 1 answers
RELEVANCY SCORE 88

I am getting redirects in Firefox. I'll click on a search result in google, and I'll be taken to a different page. I got back and try again and I get the page I was trying to go to. This happens sporadically.

I have ran Malware Bytes AntiMalware and come up with a clean scan but I still get redirects and don't know how to remove it.

Please help Thanks!

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_18
Run by Mr.Roboto at 21:05:23 on 2011-09-07
Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.1.1033.18.2046.813 [GMT -7:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\syst... Read more

A:Redirects after clean Malware Bytes and virus scan

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.Do not run any other tool untill instructed to do so!Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.Run Combofix:You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<Combofix may need to reboot your computer more than once to do its job this is normal.You can download Combofix from one of these links.Link 1Link 2Link 3 1. Close any open browsers or any other programs that are open.2. Close/disable all anti virus and anti malware programs so they do not interfere with the r... Read more

Read other 10 answers
RELEVANCY SCORE 88

Hi, My neighbour got infected with Security Tool on his computer, and I tried fixing it using the guide on this website:http://www.bleepingcomputer.com/virus-remo...e-security-toolIt worked pretty much perfect until step 15: CODEMBAM will now start scanning your computer for malware. This process can take quite a while, so we suggest you go and do something else and periodically check on the status of the scan. When MBAM is scanning it will look like the image below.It found a few threats and such, but then it got to a the file "torfusb" (tosrfusb?) or something like that in the Windows\Drivers folder I think. The computer just froze for a while and then it got bluescreen and rebooted. The bluescreen was just up for a second or something but I think i saw something with "memory" in it.Thing is, the computer doesn't get past the initial boot up screen anymore, or at least it didn't when I last tried. But it should be noted that it had some problems loading XP even before the bluescreen, probably due to the virus, so it's possible I just haven't waited long enough (waited upwards 10 minutes with just a black screen)If I get the computer running again, how can I make sure it doesn't get bluescreen again when I do the scan?And if that isn't possible, will the problem be solved by repairing Windows with the Windows XP disc or something like that?Some other info:It's a (i think) pretty old laptopIt uses Windows XP ProfessionalIf ... Read more

A:Security Tool problems, Anti Malware scan causes computer to freeze

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

Read other 2 answers
RELEVANCY SCORE 87.6

My browser appears to get redirected to the following sites, so it makes me believe that it has been hijacked.

infomash.org
skyddaonline.biz
bestblackcat.com

Thank You,
Jeff

A:IE ReDirects - Ran Malwayre Bytes Anti Malware, MSE, Spybot, AVG

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the ... Read more

Read other 34 answers
RELEVANCY SCORE 87.2

New Information: In windows event log I found a message that stated Windows defender had taken action to protect my machine againstTrojan:Win32/FakeSysdefapparently it failed. I do remember seeing the defrag program come up and it fooled me as a scheduled defrag. Then it took over windows defender with imposter results and warnings which I knew were fake but it started "deleting" (hiding) files and crashed my computer and I couldn't log back in to safe mode at first then I used a recovery boot disk to get to safe mode and started the antiroot kit virus removal process.Also, the log says that today and yesterday there were critical errors in the boot monitoring process. Hi,There are probably some Malware relics left on my computer after I completed the rootkit removal based on instructions in the "I'm infected" forum. I describe the problem below.I have completed all the prep options and backed up and am ready to post to this forum. The attach.zip is attached, the DDS log is pasted.Thanks so much for your help!! Deb Posted 31 March 2013 - 04:19 PMHi, I just cleaned my computer from a rootkit virus with help from this forum. I meant to start using AVAST avtivirus but I accidently installed Malware bytes free trial instead. So I used it for a week to see how I liked it and when it expired, I didn't immediately install AVAST because I was busy. A couple days later I updated Malware bytes definitions and ran the stand-alone in preparation to unin... Read more

A:After rootkit removal Malware Bytes & AVAST crash during scan

Greetings Deb and to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.===================================================Ground Rules:First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me about it.When you post your reply, use the button instea... Read more

Read other 32 answers
RELEVANCY SCORE 87.2

Hello Bleeping computer,
This is my first post as I can normally get the help I need from reading existing threads here.
 
A colleagues son was having trouble with his Laptop internet browser not working even though he was connected to the internet. I ran malware bytes in safe mode and it returned me 1246 results, which I quarantined. Upon rebooting it's riddled with "Bad image errors". Trying to run anything on it delivers these errors.
I read previous threads here and ran Farbar Recovery.
 
I have edited the below result replacing the computer owners name with "REDACTED" due to them being a minor and not wanting to plaster their name over the internet.
If you guys need the original unedited file I will send it in a personal message. 
 
I've ran scf/scannow and it seemed to verify everything without making any changes.
 
Any assistance you can offer would be greatly appreciated. In the mean time, I am giving the kid a talk about malware and how to avoid getting into this situation.
 
Thank you in advance.
 
 
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-06-2014
Ran by REDACTED (administrator) on REDACTED-PC on 24-06-2014 10:51:55
Running from C:\Users\REDACTED\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleeping... Read more

A:Malware Bytes Scan "Bad Image Errors" Farbar Fix list help.

UPDATE:
I've scanned the computer a further two times with malware bites, each time it is showing a further 1000 or more detected items.
I believe they've installed something in order to play an online game which is really a virus it's simply reinfecting itself.
 
I'm currently going through removing everything I cannot authenticate as legitimate from his program list.
 
If it was my own computer I'd be reformatting at this point.
 
Any advice would be great.

Read other 3 answers
RELEVANCY SCORE 86

I do not know if I am infected or it is just some temp files from malware bytes as i was running a malware bytes scan while this happened. The file name of the file that Norton keeps deleting is: 0000000-88671ffb and it was in the temp folder of Windows. Also before this happened I got a random pop up saying stuff from my desktop was being deleted. When I got this pop up I immediately shut down my computer and when I started it back up I started the malware bytes scan during which Norton detected the thing.
So, am I infected or is it just one of the many false positives that Norton has?

Read other answers
RELEVANCY SCORE 86

My vista 64 Gateway pc has started to give me random BSOD's when putting pc to sleep or waking from sleep. But then it could not run any web browsers or email programs, they would not launch.  If I logged in from a different administrator account, then I could surf the web but it was not entirely stable.  I rand full scans with KASPERSKY Rescue Disk 10 from a USB (only found like old emails with trojan scripts but nothing major)  an also Norton 360 Recovery USB (hanged and crashed midway before completion) 
 
I rebooted after this and reinstalled Norton 360 because it was disabled somehow from my regular windows account. I could not start it up and neither would Malware Bytes both would not run.  It was very difficult but I had to attempt numerous times in different ways eventually resorting to a free web proxy site to access the antivirus download pages.  The download would crash the browser before completion.  Finally I was able to complete the download and reinstall norton 360.  I also reinstalled Malware Bytes and enabled trial of full premium version, ran a full scan, it found nothing.
 
I also noticed that whenever I log in and start using the web, my memory and CPU usage would go high until BSOD but could not determine the cause. The apps listed in Taskmanager do not consume that amount of RAM (8gb)..
 
I googled microsoft windows 7 or windows 10 iso download.  The browser would not load any microsoft win... Read more

A:PC HANGS, BSOD, BROWSERS, ANTIVIRUS, MALWARE-BYTES DISABLED & USB SCAN NO FIX

I also want to mention. I ran HJT from my second windows user account as the primary account having troubles with browser and web.  Should I run HJT on the more problematic User Account and then post the report here? 
 
I just ran the tool called AdwCleaner on the alternatate user account and it found a few things and I chose "clean all" at the end.  I attached the report to this reply if that helps?
 
Thanks
 
 
===== START Adw Cleaner Report Jul 26 2016 ======
# AdwCleaner v5.201 - Logfile created 26/07/2016 at 16:13:22
# Updated 30/06/2016 by ToolsLib
# Database : 2016-07-26.1 [Server]
# Operating system : Windows ™ Vista Home Premium Service Pack 2 (X64)
# Username : Administrator - MARCH2009-PC
# Running from : C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2YGIF03P\AdwCleaner.exe
# Option : Clean
# Support : https://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : YahooAUService
***** [ Folders ] *****
[#] Folder Deleted : C:\ProgramData\Babylon
[#] Folder Deleted : C:\ProgramData\Free Youtube Downloader
[#] Folder Deleted : C:\ProgramData\Application Data\Babylon
[#] Folder Deleted : C:\ProgramData\Application Data\Free Youtube Downloader
[#] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Youtube Downloader
[#] Folder Deleted : C:\Program Files (x86)\Free Youtube Downloader
[#] Folder Deleted : C:\Windows\SysWOW64\config\systemprofile\AppDat... Read more

Read other 5 answers
RELEVANCY SCORE 84.4

Hello,

For the past few months Firefox as well as my whole system in general has been running slower then usual. I'm also noticing a drastic performance deceleration in games from a fresh install to now.

Firefox tends to crash after 20 or so minutes of usage and when I look in the task manager it's using around 200 mbs of ram and 99 CPU. I've also noticed clicking on links after searching in Google doesn't bring up a result.

Here is a fresh Hijack This log for more information.


Quote:




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:45:26 PM, on 1/21/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
... Read more

A:Firefox running screwy, comp generally slow after malware bytes scan. (HijackThis)

Hello and welcome to TSF.

HijackThis is no longer the preferred initial analysis tool in this forum.

We want all our members to perform the steps outlined in the link given below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

Please follow our pre-posting process outlined here:

http://www.techsupportforum.com/f50/...lp-305963.html

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Read other 1 answers
RELEVANCY SCORE 84

Hi,
 
I think my computer is infected: it is very slow when using the internet when it was pretty quick, also tried to use MBAM but it gets shut down immediately (same for rKill and TDSS etc). I am running Norton security and have tried shutting it down whilst running the anti malware programs but this made no difference.
 
Any advice?
 
Regards
Nick

Read other answers
RELEVANCY SCORE 84

Running Windows XP, Home Edition, Version 2002, Service Pack 3, MSI Motherboard, 512MB Ram, Pentium 4 - 2.4GHz CPU.I used to have Spybot, but after some point whenever I tried to run it the computer would reset. Now, I've gotten a few messages from Windows Defender that there is a trojan on the computer. I can run a quick scan and remove what shows up, but when I try to run a full scan, the computer resets. I try to scan the computer with McAfee anti-virus, I can run a quick scan no problems, but when I try to run a full scan, the computer resets. I know there is at least 1 trojan/virus, but any program I try to run to get rid of the problem makes the computer reset. The latest software I installed is a-squared, and I can do a quick scan and find/fix a few problems, but when I do a full scan (in safe mode as administrator) a message pops up saying that the computer is going to shut down, NT AUTHORITY/SYSTEM.Please help before I tear out what's left of my hair.Pasted and attached.DDS.txt============DDS (Ver_09-01-07.01) - NTFSx86 NETWORK Run by Administrator at 22:34:33.51 on Fri 01/16/2009Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_11Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.511.175 [GMT -5:00]============== Running Processes ===============C:\WINXP\system32\svchost -k DcomLaunchsvchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINXP\System32\svchost.exe -k netsvcssvchost.exesvchost.exeC:�... Read more

A:Multiple Trojans, PC resets when full-scan anti-virus or anti-malware is run

Hello AdamLinn13Welcome to Bleeping Computer. =====================Please re-open Hijackthis and click on "Do a system scan only"Then place a check mark next to these entries below:R3 - Default URLSearchHook is missingO2 - BHO: CMVideoPlugin - {08DEA348-F510-45FD-A6EC-CF3BE0917C5E} - C:\WINXP\system32\CMVideo.dllO2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dllO4 - HKLM\..\Run: [Framework Windows] frmwrk32.exeO4 - HKLM\..\Run: [Rrokuwip] rundll32.exe "C:\WINXP\Gxizahopira.dll",eO4 - HKLM\..\Run: [Ngewok] rundll32.exe "C:\WINXP\exufijocifalut.dll",eO18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dllNow click on Fix Checked and then close Hijackthis.====================================================Download ComboFix from one of these locations:Link 1Link 2Link 3* IMPORTANT !!! Save ComboFix.exe to your DesktopDisable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

Double click on ComboFix.exe & follow the prompts.

As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine be... Read more

Read other 90 answers
RELEVANCY SCORE 83.6

Hi all!
 
Nowadays, of course by default you have your real-time multi-layered anti-virus, anti-malware and anti-exploit/anti-ransomware tools set to automatically scan your downloaded files for malware, as this is a security-wise imperative.
 
Moreover, it is equally important to scan your downloaded files on-demand for malware before using them, as this could further help eliminate malware; BTW I speak from experience.
 
I myself scan all the files that I am about to download with VirusTotals's Vtzilla browser add-on before actually downloading them, and afterwards with my AV/AM (EAM Pro) and MBAM Free. If the files are big however, I use Metascan Online.
 
There are several reputable online file analyzers & services as well as on-demand scanners out there, and hence my question is as follows: How do you scan your downloaded files on-demand for malware before using them?
 
Please specify which tools and methods you use!
 
Thank you very much in advance!
 
Regards,
midimusicman79

A:How do you scan your downloaded files on-demand for malware before using them?

How do you scan your downloaded files on-demand for malware before using them?
I don't.  I research programs I am interested in and download from either the home site or a reputable repository.

Read other 6 answers
RELEVANCY SCORE 82.8

My computer is infested with malware and I don't know where to start to get rid of it.
I have Zone Alarm and the malware has set up a tmp file to divert it's functioning properly.
I also have System Mechanic 7 and the malware has infested it so that I can't even uninstall the application. I am not really sure if the Register Mechanic is operating properly. There are so many problems that everytime I try to fix one thing, there are a
multitude of other problems. My backup has been infested with malware and even when
I try to erase something, the malware puts it right back. I tried to use the incinerator from
the System Mechanic and now the malware won't even let me access the incinerator. I am
having bootup problems because of malware prefetch files that I can't get rid of. It does me no good to try to go back to a previous version of backup because the malware has
infested that as well. Is there anything that can cure this problem? I have seen some
software advertised as regcure and am wondering if this would work. How can I clean up
my computer? Any help would be greatly appreciated.

Holton Man
 

Read other answers
RELEVANCY SCORE 82.8

Hello, I'm completely new to this forum, but am at my wits end with my parents laptop. I know for sure it has the redirect virus, and there seems to be a few other malware that I am unfamiliar with, such as command prompt windows opening very briefly on startup of the computer. They usually close too fast to see the text in the window. I've already downloaded and run hitman pro, malware bytes, and adwcleaner. While these programs seemed to remove some malware, there seems to be some left. Now I've come for help with someone more trained in these matters. The computer runs Windows 8.1, and I dont think there has ever been anti-virus protection on it.

A:Malware infested computer.

Welcome aboard   Download Security Check from here or here and save it to your Desktop. Double-click SecurityCheck.exe Follow the onscreen instructions inside of the black box. A Notepad document should open automatically called checkup.txt; please post the contents of that document.NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.Make sure the following options are checked:
Internet ServicesWindows FirewallSystem RestoreSecurity Center/Action CenterWindows UpdateWindows DefenderOther ServicesPress "Scan".It will create a log (FSS.txt) in the same directory the tool is run.Please copy and paste the log to your reply. Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList Devices (do NOT change any settings here)List Users, Partitions and Memory sizeList Restore PointsClick Go and post the result. Please download Malwarebytes Anti-Malware (MBAM) to your desktop.NOTE. If you already have MBAM 2.0 installed scr... Read more

Read other 8 answers
RELEVANCY SCORE 82.8

Serious problems with the old win XP Dell computer. I was out of town and my wife started dealt with it initially. She noted that TrendMicro blocked SMSS32.exe and recorded that there was a popup warning her about worm Win32 Netsky. She closed the pop up and attempted to continue to use the computer. When she noted it ran slow, she shut the computer down.When I got home, I updated TrendMicro and scanned the computer. It removed a trojan horse of sometype. I think "EU" was in the title. Still suspicious, I looked up SMSS32.exe and saw that my machine still had the signature for something called TROJ_FAKEAV.BNB. I went through the steps on TrendMicro's site to manually remove the trojan. Not all the items listed for the trojan were on my machine.Still suspicious, I created a new user account and left the machine on for a week unused. During that time, TrendMicro detected and removed a trojan with the word "Ransom" in the title and there were multiple error warnings for an instruction at 0x7c923845 referencing memory at 0x00000000. Searching on that led me to this site where a few recently have had the same problem.Here's the DDS and the ark----DDS (Ver_10-10-10.03) - NTFSx86 Run by Jonathon at 9:48:19.65 on Sun 10/17/2010Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_11Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.510.220 [GMT -4:00]AV: Trend Micro Internet Security *On-access scanning enabled* (Updated) {7... Read more

A:My Malware infested computer

Hello , And to the Bleeping Computer Malware Removal Forum. My name is Elise and I'll be glad to help you with your computer problems.I will be working on your malware issues, this may or may not solve other issues you may have with your machine.Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.The cleaning process is not instant. Logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen. Please reply using the Add/Reply button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, send me or a moderator a personal message with the address of the thread or feel free to create a new one.You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.-----------------------------------------------------------If you have since resolved the original problem you were having, we would appreciate you... Read more

Read other 21 answers
RELEVANCY SCORE 82.8

I keep getting directed everywhere but where I want to go. Even .gov sites won't work.I have AVG but somehow something got thru. Please help!Also AVG detects a file called :"C:\WINDOWS\system32\skp.exe";"Runtime packed mew";""but can't seem to do anything about it.DDS (Ver_09-12-01.01) - NTFSx86 Run by Katie at 21:00:33.20 on Thu 01/21/2010Internet Explorer: 7.0.5730.11Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.475 [GMT -6:00]AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupC:\Program Files\AVG\AVG9\avgchsvx.exeC:\Program Files\AVG\AVG9\avgrsx.exeC:\Program Files\AVG\AVG9\avgcsrvx.exesvchost.exesvchost.exeC:\WINDOWS\system32\spoolsv.exesvchost.exeC:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exeC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\Program Files\AVG\AVG9\avgwdsvc.exeC:\WINDOWS\system32\basfipm.exeC:\Program Files\Seagate\Basics\Service\SyncServic... Read more

A:My computer is infested with malware

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

Read other 22 answers
RELEVANCY SCORE 82.8

ace74aceThread Starter

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Pentium(R) CPU P6200 @ 2.13GHz, Intel64 Family 6 Model 37 Stepping 5
Processor Count: 2
RAM: 3893 Mb
Graphics Card: Intel(R) HD Graphics, 1722 Mb
Hard Drives: C: Total - 463436 MB, Free - 185155 MB;
Motherboard: Intel Corp., Base Board Product Name
Antivirus: Norton Internet Security, Disabled

I have tried to run Malwarebytes anti Malware but what ever is on this machine is thwarting the scan. How can we get this machine back to running like it just came out the box?

I tried to create a Hijackthis log file but I cant'.
The computer seems to shut itself off when ever I try to run any anti Mal ware program, etc.... even when I go into safe mode with networking.
Can someone one help me clean up this machine?
 

A:Malware infested computer

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to download and run the 64 bit version
Right click to run as administrator. When the tool opens click Yes to disclaimer.
Press Scan button.
It will produce a log called FRST.txt in the same directory the tool is run from.
Please copy and paste log back here.
The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

 

Read other 1 answers
RELEVANCY SCORE 82.4

I am unable to access the internet after I ran malware bytes, looking through the forums it was recommended that I ask myself as my problem may not have the exact same solution as others.
what exactly happened was I ran Malware bytes it found lots of malware including DNS unlocker it then asked me to restart my computer. after the restart I ran it again, it found more DNS unlocker so I had to restart again. when I tried to access the internet after the second restart I was unable to.
Thankyou
 

A:After removing DNS Unlocker with malware bytes my internet wont work

Hello,

They call me TwinHeadedEagle around here, and I'll be working with you.

Before we start please read and note the following:

At the top of your post, please click on the "Watch thread" button and make sure to check Watch this thread...and receive email notifications. This will send an email to you as soon as I reply to your topic, allowing me to solve your problem faster.
Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process. Please do not perform System Restore or any other restore.
Instructions I give to you are very simple and made for complete beginner to follow. That's why you need to read through my instructions carefully and completely before executing them.
Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.

All tools we use here are completely clean and do not contain any malware. If your antivirus detects them as malicious, please disable your antivirus and then continue.
If during the process you run across anything that is not in my instructions, please stop and ask. If any tool is running too much time (few hours), please stop and inform me.
I visit forum several times at day, making sure to respond to everyon... Read more

Read other 2 answers
RELEVANCY SCORE 82

Hello. I appreciate all the help that anyone can give me. For an understanding of what is happening/ how this all started, please see a thread that I started today, here: threadNew info that wasn't posted in that thread: My internet has recently stopped working. None of my browsers are loading anymore (mozilla, opera, or rogers yahoo)I have run MBAM several times to no avail. SAS had only found tracking cookies, nothing else. TDSS Killer continues to report something in the "atapi" driver, but won't take care of the problem after it instructs me to reboot.::DDS LOG::DDS (Ver_10-03-17.01) - NTFSx86 Run by Compaq_Administrator at 19:12:05.17 on 14/05/2010Internet Explorer: 6.0.2900.5512Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1276 [GMT -4:00]AV: Rogers Online Protection Anti-Virus *On-access scanning enabled* (Updated) {5B5A3BD7-8573-4672-AEA8-C9BB713B6755}AV: Norton Security Online *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}FW: Rogers Online Protection Firewall *enabled* {80593BF4-D969-4EC5-ADAE-A22F2DFC7A22}FW: Norton Security Online *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}============== Running Processes ===============C:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupC:\Program Files\Rogers Online Protection\Rogers Online Protection\Fws.exeC:\WINDOWS\system32\Ati2evxx.exeC:... Read more

A:Malware- Infested Computer, Getting Worse

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.1.Please do not run any other tool untill instructed to do so!2.Please reply to this thread, do not start another!3.Please tell me about any problems that have occurred during the fix.4.Please tell me of any other symptoms you may be having as these can help also.5.Please try as much as possible not to run anything while executing a fix.If you follow these instructions, everything should go smoothly.Please subscribe to this thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant Notification, then click Subscribe.:run combofix:Please visit this webpage for download links, and instructions for running the tool: http://www.bleepingcomputer.com/combofix/how-to-use-combofixPlease ensure you read this guide carefully and install the Recovery Console first. The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.Once installed, you should see a blue screen prompt that says:The Recovery Console was successfully installed.Please continue as follows:Close/disable ... Read more

Read other 28 answers
RELEVANCY SCORE 81.2

Good afternoon,
 
  After 2 years of no problems, it seems I may have been infected with Malware.  The hard drive spins constantly, making my laptop nearly worthless.  I rebooted my computer in Safe Mode and ran several programs to try and find/remove the Malware.  Some programs run OK and find nothing, but at least 3 programs run for a short time, then freeze up and the hard drive spins constantly.
 
  Here is what I've tried so far:
- Norton Power Eraser - Finds no problems
- Panda Cloud Cleaner - Did find and quarantine a few issues
- Kaspersky - I ran a through scan on everything - it took several hours and did find 2 infections.  Cleaned or quarantined both
- Malwarebytes - Gets to a certain point, then freezes.   Hard drive spins constantly
- ESET - Gets to a certain point, then freezes.  Hard drive spins constantly
- House Call - Gets to a certain point, then freezes.  Hard drive spins constantly
 
- AdwCleaner - Ran this, log looks clean except for 1 Firefox and 1 Google Chrome file that are listed
- Junkware Removal Tool - Only tried to run in Safe Mode w/ Networking.  Shows a command prompt screen, but nothing happens
- ComboFix - I have run this, can produce the log file if needed.
 
Any help you can give would be greatly appreciated!!

A:Malware Infection - Freezes computer when Anti Malware Program is run

Hello having run ComboFix, you need to repos this with that ComboFix log in this forum...Virus, Trojan, Spyware, and Malware Removal Logs

Read other 4 answers
RELEVANCY SCORE 81.2

Hi everyone,My computer is infected with spyware. Every 15 or so seconds, a new popup ad will appear. Or, the spyware will redirect the site that I am currently looking at to another site. I have tried treating this problem with at least 5 different anti-spyware programs (Microsoft, ad-aware, etc.) and have had no success.Below is my HiJackThis log:Logfile of HijackThis v1.99.1Scan saved at 10:38:51 PM, on 12/28/2005Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\System32\drivers\CDAC11BA.EXEC:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\ISafe.exeC:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exeC:\WINDOWS\smncs.exeC:\WINDOWS\System32\svchost.exeC:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exeC:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exeC:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\VetMsg.exeC:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exeC:\WINDOWS\system32\rundll32.exeC:\WINDOWS\Explorer.EXEC:\... Read more

A:Computer Infested With Spyware/adware/malware

Hello all,Pop-up ads are coming up like crazy and I can't stop it. I have tried all other traditional anti-spyware programs, but to no avail. Pllllleeeeeeeease help somebody. Below is my HiJackThis file.Thank you in advance!Logfile of HijackThis v1.99.1Scan saved at 12:58:13 AM, on 12/30/2005Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\ISafe.exeC:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exeC:\WINDOWS\smncs.exeC:\WINDOWS\System32\svchost.exeC:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exeC:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exeC:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\VetMsg.exeC:\WINDOWS\system32\rundll32.exeC:\WINDOWS\Explorer.EXEC:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exeC:\PROGRA~1\TRENDM~1\INTERN~1\PccGuide.exeC:\windows\system\hpsysdrv.exeC:\Program Files\InterMute\SpySubtract\SpySub.exeC:\WINDOWS... Read more

Read other 2 answers
RELEVANCY SCORE 81.2

A friend ask me to look at her troubled computer. She was hit by MalwareProtector2008/Antivirus2008 and signed up for and paid for 2 years of protection with her credit card--she said then the popups started. She did not have updated antivirus protection. She had downloaded almost every free ware you can find ie .. games, music. When I turned it on, the popups were so massive that it was impossible to process anything. I could not do a Microsoft Update. I uninstalled all the free downloaded programs that I could find in ControlPanal, AddRemovePrograms. Then,went into safemode and deleted every free download I could find. I used msconfig to stop everything that was not necessary in the Startup and Services. I installed an unused copy of NAV2007. After it finally installed and updated it found numerous virus, trojans, adware and it removed many. It found MalwareProtector2008, Downloader trojan, MSJaun, av2009, Vundo(and its varients). Vundo kept returning because vundo seemed to have an open port and control of the pc any time IE7 was started. I read topics on "bleebingcomputer" and tried some of the hints to remove vundo, ran various programs ie: Norton's FxVundo, FxVundoB, UnHookExec(vundo had control of the registry). Lavasoft's Ad-aware, Spybot, Microsoft Defender, Malwarebytes' Anti-Malware, liveOneCare scan,Trend's Rootkitbuster, many times over(updating the software as needed. After the last time I ran Defender the WindowsUpdates took off and a... Read more

A:Various Malware, Trojans, And Adware Infested Computer

Hello would you please post the latest scan log of Malwarebytes. Here are the full instructions if needed.Please download Malwarebytes Anti-Malware and save it to your desktop.alternate download link 1alternate download link 2Make sure you are connected to the Internet.Double-click on mbam-setup.exe to install the application.When the installation begins, follow the prompts and do not make any changes to default settings.When installation has finished, make sure you leave both of these checked:Update Malwarebytes' Anti-MalwareLaunch Malwarebytes' Anti-MalwareThen click Finish.MBAM will automatically start and you will be asked to update the program before performing a scan. If an update is found, the program will automatically update itself. Press the OK button to close that box and continue. If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.On the Scanner tab:Make sure the "Perform Quick Scan" option is selected.Then click on the Scan button.If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button. The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".Click OK to close the message box and cont... Read more

Read other 1 answers
RELEVANCY SCORE 80.8

My computer recently started acting up. First the task bars changed from the windows xp blue to the old gray color. Next i couldn't get malware bytes to open and run. Then I lost the icons for any wireless internet/network connections in the bottom right task bar thus losing internet connection. I can't open system restore. I can't copy and paste files. Trying to use another computer and a flash drive to solve these issues. Please help.

A:No internet, copy/paste, system restore, malware bytes wont work

Try this application and then run mbam againPlease download Rkill by Grinler and save it to your desktop.Link 2Link 3Link 4Double-click on the Rkill desktop icon to run the tool.If using Vista, right-click on it and Run As Administrator.A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.If not, delete the file, then download and use the one provided in Link 2.If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.If the tool does not run from any of the links provided, please let me know.Do not reboot the computer or you will have to run it again==========================Also try thisWe Need to check for Rootkits with RootRepealDownload RootRepeal from the following location and save it to your desktop.Direct Download (Recommended)Primary MirrorSecondary MirrorSecondary MirrorSecondary MirrorZip Mirrors (Recommended if you have a slower connection or if the Direct Download mirror is down)
Primary MirrorSecondary MirrorSecondary MirrorRar Mirrors - Only if you know what a RAR is and can extract it.
Primary MirrorSecondary MirrorSecondary MirrorExtract RootRepeal.exe from the archive (If you did not use the "Direct Download" mirror).Open on your desktop.Click the tab.Click the button.Check all seven boxes: Push OkCheck the box for your main system drive (Usually C:), and press Ok.Allow RootRepeal to run a scan of your system. This may take some time.Onc... Read more

Read other 1 answers
RELEVANCY SCORE 80.4

I did a full scan using Anti-Malware by Malwarebytes. The results showed 75 Entries that were marked as PUP. What should I do with them? I'm reluctant to delete them until I know what they are.

A:What to do with PUP's after Anti-malware scan

  
Quote: Originally Posted by blockie


I did a full scan using Anti-Malware by Malwarebytes. The results showed 75 Entries that were marked as PUP. What should I do with them? I'm reluctant to delete them until I know what they are.


Hello Blockie,

PUP detection are Potentially Unwanted Programs , don't be reluctant to delete them because these entries aren't safe.

Read other 6 answers
RELEVANCY SCORE 80.4

Hi,

Im using Windows XP.
I currently only have the following AV; MalwareBytes' Anti-Malware installed.

I've got reason to believe my computer is infested with malicous malware/spy-ware :(

I've tried the following:
-MBAM has detected over 500 threats and quarantined the majority yet...the problems still occur.

-The nod32 online scanner has detected 109 threats (all were various Trojans such as Adware etc. within registry) and has claimed to remove them...but the problems still occur.

-I've tried uninstalling useless/unused programs, which I don't remember installing?. (As an atempt to improve the computers speed..and diagnose the blue screen issue)

-Tried doing a 'Disk Cleanup' as an attempt to improve the computers speed, but the preloader gets half way and stops (perhaps due to slowness -> CPU?).

-System Restore - but that did'nt have any dates which the computer was clean on...

-Ran a free registry fixer (to clean up any registry errors, which apparently detected over 500 errors and fixed them).

But I am still experiencing the following problems (even though I've tried all the above):
-The computer automatically shuts down after a while (if windows started normally) and displays a blue screen (of death?) - which says something like 'A problem has been detected and windows has been shut down to prevent damage to your computer...uninstall any recent software...'. However if im on safe mode with networking (which I'm using now to post here) it ... Read more

A:Computer infested with malware, google redirects aswell

Following instructions;


Heres my DDS.txt log:



DDS (Ver_10-03-17.01) - NTFSx86 NETWORK
Run by Administrator at 0:54:39.79 on 15/07/2010
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Home Edition 5.1.2600.2.1252.44.1033.18.191.59 [GMT 1:00]

AV: McAfee VirusScan *On-access scanning enabled* (Outdated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Personal Firewall Plus *enabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Administrator\Desktop\dds.scr

============== Pseudo HJT Report ===============

mDefault_Page_URL = file://c:\apps\ie\offline\uk.htm
uInternet Connection Wizard,ShellNext = hxxp://110380url.cptgt.com/cpv.jsp?p=110380&ip=90.201.66.88&url=http%3A%2F%2Fwww.facebook.com%2F&context=Welcome+to+Facebook&selectedKeyword=facebook+com&selectedListingId=7292712
mSearchAssistant = hxxp://www.google.com/ie
mWinlogon: Userinit=c:\windows\system32\userinit.exe,c:\windows\system32\sdra64.exe,
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
{12e9835b-31f2-4d02-b178-48c4b75dbde5}
{66a58e37-1986-4893-b382-514e5ac5799a}
TB: {4E7BD74F-2B8D-469E-A0E8-F479B685FA7D} - No File
TB: SweetIM... Read more

Read other 19 answers
RELEVANCY SCORE 80

I have been having problems with my labtop since June 2009. My kids have gone on inapropriate sites and some how got viruses. I am no longer recieving most of the unfortunate pop ups dealing with svc host files not working but still the computer is extremely slow. I also have AVG 8.5 and it is detecting two viruses. win32/Heur.

I have run malwarebytes 3 times and once at 9 infections once at 10 infections and once at 11 infections it froze. Each time it froze it froze in C:/windows/system32/config folder. I have to restart the computer each time (takes ten minutes but works). Slow start up and shut downs. Out of 56 Processes I can only see 9 in task manager. And I also see (my web search) like more then 50 times in my start up (Viewing that with Advanced System Care Pro)

This is my system information then AVG report and finaly HJT log Info in order that I just mentioned.

thanks to anyone who can help out!

AWC System Information Report

Computer System
Computer Name EKAPICA-PC
User Name Eka Pica ( Pee )
Organization
Operating System
OS Name Microsoft® Windows Vista™ Home Basic
OS Version 6.0.6002
ServicePack 2.0
Product ID 89572-OEM-7332166-00029
System Uptime 13/09/2009 1:54:47 AM
Internet Explorer Version 8.0.6001.18783
Microsoft DirectX Version 10.0
OpenGL Version 6.0.6000.16386 (vista_rtm.061101-2205)
Free Physical Memory 1872 MB
Free Page File 3075 MB
Free Virtual Memory 4942 MB
Registry
Maximum Size 682MB
Current Size 25MB
Status OK
Center Processor
CPU Name... Read more

A:Malware bytes freezes and AVG Detects Win32/Heur, Malware or Virus (Either way Please

Hello cgordon311,

Please download Malwarebytes' Anti-Malware from Here

Double Click mbam-setup.exe to install the application.
Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select "Perform Quick Scan", then click Scan.
The scan may take some time to finish,so please be patient.
When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Copy & Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.
 

Read other 1 answers
RELEVANCY SCORE 79.6

Hello,

I have a problem that is far beyond my limited skills. One of our people has a laptop that has either malware or a virus infecting it. Two symptoms are present: first, when using firefox web pages get redirected to advertising or to unrelated google searches; second, the machine seems more sluggish than usual.

I have tried to download anti-spyware software (e.g. Spy Sweeper, CounterSpy, MalwareBytes, Superantispyware, PC Doctor) and nothing works. In some cases such as Counterspy and PC Doctor, the executable will run but the program will not update (and thus, not allow for a scan). In other cases such as MalwareBytes, the executable simply will not run.

I have run a Trend Micro anti-virus scan. It seems to detect something but it crashes before the scan can complete. The same thing happens with Panda Activescan. Last night, I ran Panda Activescan for over 8 hours. When I woke up, the scan had frozen at the 52% point and had found 1 infected file, which it didn't appear to clean up.

Anyway, I'd really appreciate any help.
Best regards,
Jordan

A:HELP! -- Anti-spyware / Anti-virus doesn't work; malware crippling our machine

Uninstall all of the programs but Super Antispyware, Trend Micro and MalwareBytes AntiMalware.Find the MBAM.exe and rename it BAMM.com by right clicking on the file and choosing rename.Download the manual updates for MBAM from the link below. Double click on it to install. http://www.malwarebytes.org/mbam/database/mbam-rules.exeINSTRUCTIONS FOR USING MBAM:http://www.bleepingcomputer.com/forums/ind...t&p=1100727

Read other 1 answers
RELEVANCY SCORE 79.6

A couple days ago I was looking at the weather online on my Toshiba laptop (XP Media, SP3) when I got a report from Avast stating it had blocked a connection to a malware site, just like this, which popped up when I was typing.

Infection Details

Process:file://C:\WINDOWS\System32\svchost.exe Infection:url:Mal
Obviously I scanned and it did pick up some things, and I thought I had gotten the problem. Obviously I didn't, and I got Malwarebytes which I scanned with and again thought I might be good. MWB just started constantly reporting outgoing connections being blocked. I did some digging, a lot more scanning (all turned up clean), and I noticed a couple things.

1. I'm getting issues with SVChost where it is sometimes taking up nearly my entire CPU. I replaced it with a different version of SVChost (in all windows folder locations) and whatever is using it to do the bad stuff isn't the file itself because it resumed causing trouble.

2. I tried to get rid of all unwanted processes & services, & I came upon one which I couldn't get rid of- groovemonitor, associated with Microsoft Office. I'm suspicious because I've tried deleting it, manually and automatically, and whenever I try to delete the entire Microsoft Office folder this one set of files (the groovemonitor dll's) will not let me delete the folder. I've tried disabling this whenever possible.

I'm still getting constant url blocks no matter what I have done, all sca... Read more

A:Avast & Malware Bytes Constantly Blocking Malware Connections

Just wanted to provide a bump.
 

Read other 1 answers
RELEVANCY SCORE 79.6

I have run into a terrible problem and can no longer use my computer. It started a few days ago when I believe I was infected by malware...I noticed a program running in my task manager...one of those short 3 letter exe programs, so I decided to run malware bytes. Malware bytes succesfully found that program and I think called it a rootkit or something else. I chose to remove the found problems and then it asked me to restart. Following restart, I get a blue screen of death shortly after the windows XP title comes on. When I choose any of the options (Safe Mode, Safe mode with networking, Safe mode with command prompt, or normal windows) I always get the blue screen and cannot log into windows.

The error message reads:
A problem has been detected and windows has been shut down to prevent damage to your computer. If this is the first time you've seen this stop error screen restart your computer. If this screen appears again follow these steps: Check for viruses on your computer. Remove any newly installed hard drives or hard drive controllers. Check your hard drive to make sure it is properly configured and terminated. Run CHKDSK /F to check for hard drive corruption, and then restart your computer.

Technical Information:
STOP: 0x0000007B (0xBA4C7524, 0XC0000034, 0x00000000, 0x00000000)

So at this point I ordered startup/recovery CDs from dell. I am using a dell computer with OEM installed windows XP home edition. I got the recovery CD today, and can now boot from CD.... Read more

A:Blue screen after running malware bytes - infected with malware

Hello, lets see if we can find the cause of this problem. I will move this topic to the malware removal forum.Try this please. You will need a USB drive.Download GETxPUD.exe to the desktop of your clean computerRun GETxPUD.exeA new folder will appear on the desktop.Open the GETxPUD folder and click on the get&burn.batThe program will download xpud_0.9.2.iso, and upon finished will open BurnCDCC ready to burn the image.Click on Start and follow the prompts to burn the image to a CD.Remove the USB & CD and insert it in the sick computerBoot the Sick computer with the CD you just burnedThe computer must be set to boot from the CDGently tap F12 and choose to boot from the CDFollow the promptsA Welcome to xPUD screen will appearPress FileExpand mntsda1,2...usually corresponds to your HDDsdb1 is likely your USBClick on the folder that represents your USB drive (sdb1 ?)Press Tool at the topChoose Open TerminalType the following and press enter:

dd if=/dev/sda of=mbr.bin bs=512 count=1

Press EnterAfter it has finished a file will be located on your USB drive named mbr.binRemove the USB drive and insert it back in your working computer and navigate to mbr.bin, zip it up and attach it to your next reply.This will allow me to have a look at the MasterBootRecord of your drive and see if it is infected.

Read other 4 answers