Over 1 million tech questions and answers.

> Malware byte's Anti Malware software, Malware byte's Anti Malware Not working

Q: > Malware byte's Anti Malware software, Malware byte's Anti Malware Not working

[topic=253487.html"]Malware byte's Anti Malware software, Malware byte's Anti Malware Not working[/topic]My google requests are being redirected to other sites. As a first step to correcting this, I started to run Malware byte's Anti Malware software. After I updated it, I started the scan when all of a sudden it stopped working. When I tried to reconnect, I got a message"Windows cannot access the specified device, path or file. You may not have the appropriate permissions to access the item"I re-installed the software, updated it, and tried to run it again, and got the same message.Since then, SuperAntispyware, RootRepeal and now DDS will not work. They download okay, but then terminate during the scan, hence I don't have logs I can insert.I've backed up all my data onto an external hard drive.I'm at my wits end, but I'm happy with any assistance I can give you. Hopefully the topic link works.Here is my Win32kDiag.exe log. The next post will by my Rootrepeal drivers log.Log file is located at: C:Documents and SettingsPhilDesktopWin32kDiag.txtWARNING: Could not get backup privileges!Searching 'C:WINDOWS'...Found mount point : C:WINDOWSaddinsaddinsMount point destination : Device__max++>^Found mount point : C:WINDOWSassemblyNativeImages_v2.0.50727_32TempZAP247.tmpZAP247.tmpMount point destination : Device__max++>^Found mount point : C:WINDOWSassemblyNativeImages_v2.0.50727_32TempZAP453.tmpZAP453.tmpMount point destination : Device__max++>^Found mount point : C:WINDOWSassemblyNativeImages_v2.0.50727_32TempZAP6BF.tmpZAP6BF.tmpMount point destination : Device__max++>^Found mount point : C:WINDOWSassemblyNativeImages_v2.0.50727_32TempZAP775.tmpZAP775.tmpMount point destination : Device__max++>^Found mount point : C:WINDOWSassemblyNativeImages_v2.0.50727_32TempZAP874.tmpZAP874.tmpMount point destination : Device__max++>^Found mount point : C:WINDOWSassemblytemptempMount point destination : Device__max++>^Found mount point : C:WINDOWSassemblytmptmpMount point destination : Device__max++>^Found mount point : C:WINDOWSCacheAdobe Reader 6.0.1Adobe Reader 6.0.1Mount point destination : Device__max++>^Found mount point : C:WINDOWSConfigConfigMount point destination : Device__max++>^Found mount point : C:WINDOWSConnection WizardConnection WizardMount point destination : Device__max++>^Found mount point : C:WINDOWSCursorsCursorsMount point destination : Device__max++>^Found mount point : C:WINDOWSDebugUserModeUserModeMount point destination : Device__max++>^Found mount point : C:WINDOWSimechsimeappletsappletsMount point destination : Device__max++>^Found mount point : C:WINDOWSimeCHTIMEAppletsAppletsMount point destination : Device__max++>^Found mount point : C:WINDOWSimeimejpappletsappletsMount point destination : Device__max++>^Found mount point : C:WINDOWSimeimejp98imejp98Mount point destination : Device__max++>^Found mount point : C:WINDOWSimeimjp8_1appletsappletsMount point destination : Device__max++>^Found mount point : C:WINDOWSimeimkr6_1appletsappletsMount point destination : Device__max++>^Found mount point : C:WINDOWSimeimkr6_1dictsdictsMount point destination : Device__max++>^Found mount point : C:WINDOWSimesharedresresMount point destination : Device__max++>^Found mount point : C:WINDOWSInstaller$PatchCache$Managed0DC1503A46F231838AD88BCDDC8E8F7C3.2.307293.2.30729Mount point destination : Device__max++>^Found mount point : C:WINDOWSInstaller$PatchCache$Managed90A2CC5A3D9ECE9429D33078B4DBC4C21.20.01.20.0Mount point destination : Device__max++>^Found mount point : C:WINDOWSInstaller$PatchCache$ManagedDC3BF90CC0D3D2F398A9A6D1762F70F32.2.307292.2.30729Mount point destination : Device__max++>^Found mount point : C:WINDOWSMicrosoft.NETFrameworkv1.1.4322Temporary ASP.NET FilesBind LogsBind LogsMount point destination : Device__max++>^Found mount point : C:WINDOWSMicrosoft.NETFrameworkv2.0.50727Temporary ASP.NET FilesTemporary ASP.NET FilesMount point destination : Device__max++>^Found mount point : C:WINDOWSmsappsmsinfomsinfoMount point destination : Device__max++>^Found mount point : C:WINDOWSmsdownld.tmpmsdownld.tmpMount point destination : Device__max++>^Found mount point : C:WINDOWSmuimuiMount point destination : Device__max++>^Found mount point : C:WINDOWSPCHealthERRORREPQHEADLESQHEADLESMount point destination : Device__max++>^Found mount point : C:WINDOWSPCHealthERRORREPQSIGNOFFQSIGNOFFMount point destination : Device__max++>^Found mount point : C:WINDOWSPCHealthHelpCtrBATCHBATCHMount point destination : Device__max++>^Cannot access: C:WINDOWSPCHealthHelpCtrBinarieshelpsvc.exe[1] 2004-08-04 01:56:52 743936 C:WINDOWS$NtServicePackUninstall$helpsvc.exe (Microsoft Corporation)[1] 2008-04-13 18:12:21 744448 C:WINDOWSPCHealthHelpCtrBinarieshelpsvc.exe ()[1] 2008-04-13 18:12:21 744448 C:WINDOWSServicePackFilesi386helpsvc.exe (Microsoft Corporation)[1] 2008-04-13 18:12:21 744448 C:WINDOWSsystem32dllcachehelpsvc.exe (Microsoft Corporation)Found mount point : C:WINDOWSPCHealthHelpCtrConfigCheckPointCheckPointMount point destination : Device__max++>^Found mount point : C:WINDOWSPCHealthHelpCtrHelpFilesHelpFilesMount point destination : Device__max++>^Found mount point : C:WINDOWSPCHealthHelpCtrInstalledSKUsInstalledSKUsMount point destination : Device__max++>^Found mount point : C:WINDOWSPCHealthHelpCtrSystemDFSDFSMount point destination : Device__max++>^Found mount point : C:WINDOWSPCHealthHelpCtrSystem_OEMSystem_OEMMount point destination : Device__max++>^Found mount point : C:WINDOWSPCHealthHelpCtrTempTempMount point destination : Device__max++>^Found mount point : C:WINDOWSPIFPIFMount point destination : Device__max++>^Found mount point : C:WINDOWSProfilesAll UsersAdobeWebbuyWebbuyMount point destination : Device__max++>^Found mount point : C:WINDOWSRegistrationCRMLogCRMLogMount point destination : Device__max++>^Found mount point : C:WINDOWSSoftwareDistributionAuthCabsAuthCabsMount point destination : Device__max++>^Found mount point : C:WINDOWSSoftwareDistributionDownload4f47c78d92d1e7d8afd6488622d909fdbackupbackupMount point destination : Device__max++>^Found mount point : C:WINDOWSSoftwareDistributionSelfUpdateRegisteredRegisteredMount point destination : Device__max++>^Found mount point : C:WINDOWSSunJavaDeploymentDeploymentMount point destination : Device__max++>^Found mount point : C:WINDOWSSxsCaPendDelSxsCaPendDelMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3210251025Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3210281028Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3210311031Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3210371037Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3210411041Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3210421042Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3210541054Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3220522052Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem3230763076Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem323com_dmi3com_dmiMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32CatRoot{F750E6C3-38EE-11D1-85E5-00C04FC295EE}TempDirTempDirMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileApplication DataAdobeFlash PlayerAssetCache2FQWLYSA2FQWLYSAMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileApplication DataMacromediaFlash Player#SharedObjectsEEYUSZ42EEYUSZ42Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileApplication DataMicrosoftIdentityCRLproductionproductionMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileApplication DataMicrosoftSystemCertificatesMyCertificatesCertificatesMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileApplication DataMicrosoftSystemCertificatesMyCRLsCRLsMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileApplication DataMicrosoftSystemCertificatesMyCTLsCTLsMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileDesktopDesktopMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileFavoritesLinksLinksMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileLocal SettingsApplication DataGoogleCustom ButtonsEnterpriseEnterpriseMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileLocal SettingsApplication DataGoogleFastSearchexceptionsexceptionsMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileLocal SettingsApplication DataGoogleToolbar Cache6.1.1715.1442enenMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileLocal SettingstempF-SecureAnti-VirusAnti-VirusMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileMy DocumentsMy DocumentsMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileNetHoodNetHoodMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofilePrintHoodPrintHoodMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32configsystemprofileRecentRecentMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32dhcpdhcpMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32driversdisdndisdnMount point destination : Device__max++>^Cannot access: C:WINDOWSsystem32eventlog.dll[1] 2004-08-04 01:56:44 55808 C:WINDOWS$NtServicePackUninstall$eventlog.dll (Microsoft Corporation)[1] 2008-04-13 18:11:53 56320 C:WINDOWSServicePackFilesi386eventlog.dll (Microsoft Corporation)[1] 2008-04-13 18:11:53 56320 C:WINDOWSsystem32dllcacheeventlog.dll (Microsoft Corporation)[1] 2008-04-13 18:11:53 62464 C:WINDOWSsystem32eventlog.dll ()[2] 2008-04-13 18:11:53 56320 C:WINDOWSsystem32logevent.dll (Microsoft Corporation)Found mount point : C:WINDOWSsystem32exportexportMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32IMECINTLGNTCINTLGNTMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32IMEPINTLGNTPINTLGNTMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32IMETINTLGNTTINTLGNTMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32inetsrvinetsrvMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32MacromedupdateupdateMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32muidispspecdispspecMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32oobehtmlispsgnupispsgnupMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32oobehtmloemcustoemcustMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32oobehtmloemhwoemhwMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32oobehtmloemregoemregMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32oobesamplesampleMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32ShellExtShellExtMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32spooldriversw32x863temptempMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32spooldriversw32x86__SKIP_0203__SKIP_0203Mount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32spoolPRINTERSPRINTERSMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32wbemmofbadbadMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32wbemsnmpsnmpMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32winswinsMount point destination : Device__max++>^Found mount point : C:WINDOWSsystem32xircomxircomMount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00000MCE00000Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00001MCE00001Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00002MCE00002Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00003MCE00003Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00004MCE00004Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00005MCE00005Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00006MCE00006Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00007MCE00007Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00008MCE00008Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE00009MCE00009Mount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE0000aMCE0000aMount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE0000bMCE0000bMount point destination : Device__max++>^Found mount point : C:WINDOWSTempMCE0000cMCE0000cMount point destination : Device__max++>^Found mount point : C:WINDOWSWinSxSInstallTempInstallTempMount point destination : Device__max++>^Found mount point : C:WINDOWSWinSxSx86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2Mount point destination : Device__max++>^Finished!Here's the Rootrepeal driver logROOTREPEAL ? AD, 2007-2009==================================================Scan Start Time: 2009/08/30 08:50Program Version: Version 1.3.5.0Windows Version: Windows XP SP3==================================================Drivers-------------------Name: ACPI.sysImage Path: ACPI.sysAddress: 0xBA779000 Size: 187776 File Visible: - Signed: -Status: -Name: ACPI_HALImage Path: DriverACPI_HALAddress: 0x804D7000 Size: 2066048 File Visible: - Signed: -Status: -Name: afd.sysImage Path: C:WINDOWSSystem32driversafd.sysAddress: 0xA13EF000 Size: 138496 File Visible: - Signed: -Status: -Name: ALCXSENS.SYSImage Path: C:WINDOWSsystem32driversALCXSENS.SYSAddress: 0xB968D000 Size: 391424 File Visible: - Signed: -Status: -Name: ALCXWDM.SYSImage Path: C:WINDOWSsystem32driversALCXWDM.SYSAddress: 0xB9711000 Size: 591552 File Visible: - Signed: -Status: -Name: atapi.sysImage Path: atapi.sysAddress: 0xBA731000 Size: 96512 File Visible: - Signed: -Status: -Name: ati2cqag.dllImage Path: C:WINDOWSSystem32ati2cqag.dllAddress: 0xBFA0D000 Size: 233472 File Visible: - Signed: -Status: -Name: ati2dvag.dllImage Path: C:WINDOWSSystem32ati2dvag.dllAddress: 0xBF9D5000 Size: 229376 File Visible: - Signed: -Status: -Name: ati2mtag.sysImage Path: C:WINDOWSsystem32DRIVERSati2mtag.sysAddress: 0xB97FD000 Size: 880640 File Visible: - Signed: -Status: -Name: ati3duag.dllImage Path: C:WINDOWSSystem32ati3duag.dllAddress: 0xBFA46000 Size: 2179072 File Visible: - Signed: -Status: -Name: ativvaxx.dllImage Path: C:WINDOWSSystem32ativvaxx.dllAddress: 0xBFC5A000 Size: 487424 File Visible: - Signed: -Status: -Name: ATMFD.DLLImage Path: C:WINDOWSSystem32ATMFD.DLLAddress: 0xBFFA0000 Size: 286720 File Visible: - Signed: -Status: -Name: ATMhelpr.SYSImage Path: C:WINDOWSSystem32DriversATMhelpr.SYSAddress: 0xBAF01000 Size: 4064 File Visible: - Signed: -Status: -Name: audstub.sysImage Path: C:WINDOWSSystem32DRIVERSaudstub.sysAddress: 0xBAF7C000 Size: 3072 File Visible: - Signed: -Status: -Name: Beep.SYSImage Path: C:WINDOWSSystem32DriversBeep.SYSAddress: 0xBAE0E000 Size: 4224 File Visible: - Signed: -Status: -Name: BOOTVID.dllImage Path: C:WINDOWSsystem32BOOTVID.dllAddress: 0xBACB8000 Size: 12288 File Visible: - Signed: -Status: -Name: CDAC15BA.SYSImage Path: C:WINDOWSsystem32driversCDAC15BA.SYSAddress: 0xA0D60000 Size: 11200 File Visible: - Signed: -Status: -Name: Cdfs.SYSImage Path: C:WINDOWSSystem32DriversCdfs.SYSAddress: 0xBAA28000 Size: 63744 File Visible: - Signed: -Status: -Name: cdrom.sysImage Path: C:WINDOWSSystem32DRIVERScdrom.sysAddress: 0xB9914000 Size: 62976 File Visible: - Signed: -Status: -Name: CLASSPNP.SYSImage Path: C:WINDOWSSystem32DRIVERSCLASSPNP.SYSAddress: 0xBA8E8000 Size: 53248 File Visible: - Signed: -Status: -Name: disk.sysImage Path: disk.sysAddress: 0xBA8D8000 Size: 36352 File Visible: - Signed: -Status: -Name: drmk.sysImage Path: C:WINDOWSsystem32driversdrmk.sysAddress: 0xB98E4000 Size: 61440 File Visible: - Signed: -Status: -Name: dump_atapi.sysImage Path: C:WINDOWSSystem32Driversdump_atapi.sysAddress: 0xA1090000 Size: 98304 File Visible: No Signed: -Status: -Name: dump_WMILIB.SYSImage Path: C:WINDOWSSystem32Driversdump_WMILIB.SYSAddress: 0xBAE18000 Size: 8192 File Visible: No Signed: -Status: -Name: dvd43llh.sysImage Path: C:WINDOWSSystem32DRIVERSdvd43llh.sysAddress: 0xBAB58000 Size: 18816 File Visible: - Signed: -Status: -Name: Dxapi.sysImage Path: C:WINDOWSSystem32driversDxapi.sysAddress: 0xA11BB000 Size: 12288 File Visible: - Signed: -Status: -Name: dxg.sysImage Path: C:WINDOWSSystem32driversdxg.sysAddress: 0xBF9C3000 Size: 73728 File Visible: - Signed: -Status: -Name: dxgthk.sysImage Path: C:WINDOWSSystem32driversdxgthk.sysAddress: 0xBAEBF000 Size: 4096 File Visible: - Signed: -Status: -Name: Fastfat.SYSImage Path: C:WINDOWSSystem32DriversFastfat.SYSAddress: 0xA0E8C000 Size: 143744 File Visible: - Signed: -Status: -Name: fdc.sysImage Path: C:WINDOWSSystem32DRIVERSfdc.sysAddress: 0xBAB70000 Size: 27392 File Visible: - Signed: -Status: -Name: Fips.SYSImage Path: C:WINDOWSSystem32DriversFips.SYSAddress: 0xBAA08000 Size: 44544 File Visible: - Signed: -Status: -Name: flpydisk.sysImage Path: C:WINDOWSSystem32DRIVERSflpydisk.sysAddress: 0xBABA8000 Size: 20480 File Visible: - Signed: -Status: -Name: fltmgr.sysImage Path: fltmgr.sysAddress: 0xBA711000 Size: 129792 File Visible: - Signed: -Status: -Name: Fs_Rec.SYSImage Path: C:WINDOWSSystem32DriversFs_Rec.SYSAddress: 0xBAE0C000 Size: 7936 File Visible: - Signed: -Status: -Name: ftdisk.sysImage Path: ftdisk.sysAddress: 0xBA749000 Size: 125056 File Visible: - Signed: -Status: -Name: gameenum.sysImage Path: C:WINDOWSSystem32DRIVERSgameenum.sysAddress: 0xBA5C3000 Size: 10624 File Visible: - Signed: -Status: -Name: GEARAspiWDM.sysImage Path: C:WINDOWSSystem32DriversGEARAspiWDM.sysAddress: 0xBA5CF000 Size: 9984 File Visible: - Signed: -Status: -Name: hal.dllImage Path: C:WINDOWSsystem32hal.dllAddress: 0x806D0000 Size: 131840 File Visible: - Signed: -Status: -Name: HIDPARSE.SYSImage Path: C:WINDOWSsystem32DRIVERSHIDPARSE.SYSAddress: 0xBABB8000 Size: 28672 File Visible: - Signed: -Status: -Name: HPZid412.sysImage Path: C:WINDOWSsystem32DRIVERSHPZid412.sysAddress: 0xBAA48000 Size: 50848 File Visible: - Signed: -Status: -Name: HPZipr12.sysImage Path: C:WINDOWSsystem32DRIVERSHPZipr12.sysAddress: 0xA11F6000 Size: 16224 File Visible: - Signed: -Status: -Name: HPZius12.sysImage Path: C:WINDOWSsystem32DRIVERSHPZius12.sysAddress: 0xBAC08000 Size: 21472 File Visible: - Signed: -Status: -Name: HTTP.sysImage Path: C:WINDOWSSystem32DriversHTTP.sysAddress: 0xA00F6000 Size: 264832 File Visible: - Signed: -Status: -Name: i8042prt.sysImage Path: C:WINDOWSSystem32DRIVERSi8042prt.sysAddress: 0xBAA98000 Size: 52480 File Visible: - Signed: -Status: -Name: imapi.sysImage Path: C:WINDOWSSystem32DRIVERSimapi.sysAddress: 0xB9924000 Size: 42112 File Visible: - Signed: -Status: -Name: ipfltdrv.sysImage Path: C:WINDOWSSystem32DRIVERSipfltdrv.sysAddress: 0xBA9C8000 Size: 32896 File Visible: - Signed: -Status: -Name: ipsec.sysImage Path: C:WINDOWSSystem32DRIVERSipsec.sysAddress: 0xA14B9000 Size: 75264 File Visible: - Signed: -Status: -Name: isapnp.sysImage Path: isapnp.sysAddress: 0xBA8A8000 Size: 37248 File Visible: - Signed: -Status: -Name: kbdclass.sysImage Path: C:WINDOWSSystem32DRIVERSkbdclass.sysAddress: 0xBAB80000 Size: 24576 File Visible: - Signed: -Status: -Name: KDCOM.DLLImage Path: C:WINDOWSsystem32KDCOM.DLLAddress: 0xBADA8000 Size: 8192 File Visible: - Signed: -Status: -Name: kmixer.sysImage Path: C:WINDOWSsystem32driverskmixer.sysAddress: 0x9FAE8000 Size: 172416 File Visible: - Signed: -Status: -Name: ks.sysImage Path: C:WINDOWSSystem32DRIVERSks.sysAddress: 0xB97C6000 Size: 143360 File Visible: - Signed: -Status: -Name: KSecDD.sysImage Path: KSecDD.sysAddress: 0xBA6E8000 Size: 92928 File Visible: - Signed: -Status: -Name: LVPrcMon.sysImage Path: C:WINDOWSsystem32driversLVPrcMon.sysAddress: 0xBAC78000 Size: 16768 File Visible: - Signed: -Status: -Name: mfeavfk.sysImage Path: C:WINDOWSsystem32driversmfeavfk.sysAddress: 0xA033F000 Size: 73152 File Visible: - Signed: -Status: -Name: mfebopk.sysImage Path: C:WINDOWSsystem32driversmfebopk.sysAddress: 0xBAC68000 Size: 28544 File Visible: - Signed: -Status: -Name: mfehidk.sysImage Path: C:WINDOWSsystem32driversmfehidk.sysAddress: 0xA10F8000 Size: 207296 File Visible: - Signed: -Status: -Name: mnmdd.SYSImage Path: C:WINDOWSSystem32Driversmnmdd.SYSAddress: 0xBAE10000 Size: 4224 File Visible: - Signed: -Status: -Name: mouclass.sysImage Path: C:WINDOWSSystem32DRIVERSmouclass.sysAddress: 0xBAB78000 Size: 23040 File Visible: - Signed: -Status: -Name: MountMgr.sysImage Path: MountMgr.sysAddress: 0xBA8B8000 Size: 42368 File Visible: - Signed: -Status: -Name: Mpfp.sysImage Path: C:WINDOWSSystem32DriversMpfp.sysAddress: 0xA1439000 Size: 159744 File Visible: - Signed: -Status: -Name: MrFilter.sysImage Path: MrFilter.sysAddress: 0xBACBC000 Size: 11776 File Visible: - Signed: -Status: -Name: mrxdav.sysImage Path: C:WINDOWSSystem32DRIVERSmrxdav.sysAddress: 0xA0A4B000 Size: 180608 File Visible: - Signed: -Status: -Name: mrxsmb.sysImage Path: C:WINDOWSSystem32DRIVERSmrxsmb.sysAddress: 0xA112B000 Size: 455296 File Visible: - Signed: -Status: -Name: Msfs.SYSImage Path: C:WINDOWSSystem32DriversMsfs.SYSAddress: 0xBABC8000 Size: 19072 File Visible: - Signed: -Status: -Name: msgpc.sysImage Path: C:WINDOWSSystem32DRIVERSmsgpc.sysAddress: 0xBA938000 Size: 35072 File Visible: - Signed: -Status: -Name: mssmbios.sysImage Path: C:WINDOWSSystem32DRIVERSmssmbios.sysAddress: 0xBAD3C000 Size: 15488 File Visible: - Signed: -Status: -Name: Mup.sysImage Path: Mup.sysAddress: 0xBA5FF000 Size: 105344 File Visible: - Signed: -Status: -Name: NDIS.sysImage Path: NDIS.sysAddress: 0xBA619000 Size: 182656 File Visible: - Signed: -Status: -Name: ndistapi.sysImage Path: C:WINDOWSSystem32DRIVERSndistapi.sysAddress: 0xBA5BF000 Size: 10112 File Visible: - Signed: -Status: -Name: ndisuio.sysImage Path: C:WINDOWSSystem32DRIVERSndisuio.sysAddress: 0xA132B000 Size: 14592 File Visible: - Signed: -Status: -Name: ndiswan.sysImage Path: C:WINDOWSSystem32DRIVERSndiswan.sysAddress: 0xB960C000 Size: 91520 File Visible: - Signed: -Status: -Name: NDProxy.SYSImage Path: C:WINDOWSSystem32DriversNDProxy.SYSAddress: 0xBA998000 Size: 40576 File Visible: - Signed: -Status: -Name: netbios.sysImage Path: C:WINDOWSSystem32DRIVERSnetbios.sysAddress: 0xBA9D8000 Size: 34688 File Visible: - Signed: -Status: -Name: netbt.sysImage Path: C:WINDOWSSystem32DRIVERSnetbt.sysAddress: 0xA1411000 Size: 162816 File Visible: - Signed: -Status: -Name: Npfs.SYSImage Path: C:WINDOWSSystem32DriversNpfs.SYSAddress: 0xBABD0000 Size: 30848 File Visible: - Signed: -Status: -Name: npptNT2.sysImage Path: C:WINDOWSsystem32npptNT2.sysAddress: 0xBABE0000 Size: 24576 File Visible: - Signed: -Status: -Name: Ntfs.sysImage Path: Ntfs.sysAddress: 0xBA646000 Size: 574976 File Visible: - Signed: -Status: -Name: ntkrnlpa.exeImage Path: C:WINDOWSsystem32ntkrnlpa.exeAddress: 0x804D7000 Size: 2066048 File Visible: - Signed: -Status: -Name: Null.SYSImage Path: C:WINDOWSSystem32DriversNull.SYSAddress: 0xBAF00000 Size: 2944 File Visible: - Signed: -Status: -Name: parport.sysImage Path: C:WINDOWSSystem32DRIVERSparport.sysAddress: 0xB9679000 Size: 80128 File Visible: - Signed: -Status: -Name: PartMgr.sysImage Path: PartMgr.sysAddress: 0xBAB30000 Size: 19712 File Visible: - Signed: -Status: -Name: ParVdm.SYSImage Path: C:WINDOWSSystem32DriversParVdm.SYSAddress: 0xBADFA000 Size: 6784 File Visible: - Signed: -Status: -Name: pci.sysImage Path: pci.sysAddress: 0xBA768000 Size: 68224 File Visible: - Signed: -Status: -Name: PCIIDEX.SYSImage Path: C:WINDOWSSystem32DRIVERSPCIIDEX.SYSAddress: 0xBAB28000 Size: 28672 File Visible: - Signed: -Status: -Name: Pcouffin.sysImage Path: C:WINDOWSSystem32DriversPcouffin.sysAddress: 0xBA958000 Size: 39488 File Visible: - Signed: -Status: -Name: pfc.sysImage Path: C:WINDOWSsystem32driverspfc.sysAddress: 0xBA5D3000 Size: 10368 File Visible: - Signed: -Status: -Name: PnpManagerImage Path: DriverPnpManagerAddress: 0x804D7000 Size: 2066048 File Visible: - Signed: -Status: -Name: portcls.sysImage Path: C:WINDOWSsystem32driversportcls.sysAddress: 0xB96ED000 Size: 147456 File Visible: - Signed: -Status: -Name: processr.sysImage Path: C:WINDOWSSystem32DRIVERSprocessr.sysAddress: 0xB9934000 Size: 35840 File Visible: - Signed: -Status: -Name: psched.sysImage Path: C:WINDOWSSystem32DRIVERSpsched.sysAddress: 0xB95FB000 Size: 69120 File Visible: - Signed: -Status: -Name: ptilink.sysImage Path: C:WINDOWSSystem32DRIVERSptilink.sysAddress: 0xBAB90000 Size: 17792 File Visible: - Signed: -Status: -Name: PxHelp20.sysImage Path: PxHelp20.sysAddress: 0xBA8F8000 Size: 35712 File Visible: - Signed: -Status: -Name: rasacd.sysImage Path: C:WINDOWSSystem32DRIVERSrasacd.sysAddress: 0xBAD78000 Size: 8832 File Visible: - Signed: -Status: -Name: rasl2tp.sysImage Path: C:WINDOWSSystem32DRIVERSrasl2tp.sysAddress: 0xBAB08000 Size: 51328 File Visible: - Signed: -Status: -Name: raspppoe.sysImage Path: C:WINDOWSSystem32DRIVERSraspppoe.sysAddress: 0xBAB18000 Size: 41472 File Visible: - Signed: -Status: -Name: raspptp.sysImage Path: C:WINDOWSSystem32DRIVERSraspptp.sysAddress: 0xBA928000 Size: 48384 File Visible: - Signed: -Status: -Name: raspti.sysImage Path: C:WINDOWSSystem32DRIVERSraspti.sysAddress: 0xBAB98000 Size: 16512 File Visible: - Signed: -Status: -Name: RAWImage Path: FileSystemRAWAddress: 0x804D7000 Size: 2066048 File Visible: - Signed: -Status: -Name: rdbss.sysImage Path: C:WINDOWSSystem32DRIVERSrdbss.sysAddress: 0xA11C3000 Size: 175744 File Visible: - Signed: -Status: -Name: RDPCDD.sysImage Path: C:WINDOWSSystem32DRIVERSRDPCDD.sysAddress: 0xBAE12000 Size: 4224 File Visible: - Signed: -Status: -Name: redbook.sysImage Path: C:WINDOWSSystem32DRIVERSredbook.sysAddress: 0xB9904000 Size: 57600 File Visible: - Signed: -Status: -Name: rootrepeal3.sysImage Path: C:WINDOWSsystem32driversrootrepeal3.sysAddress: 0xA0729000 Size: 49152 File Visible: No Signed: -Status: -Name: Rtlnic51.sysImage Path: C:WINDOWSSystem32DRIVERSRtlnic51.sysAddress: 0xB98D4000 Size: 65280 File Visible: - Signed: -Status: -Name: SASDIFSV.SYSImage Path: C:Program FilesSUPERAntiSpywareSASDIFSV.SYSAddress: 0xBABD8000 Size: 28672 File Visible: - Signed: -Status: -Name: SASKUTIL.sysImage Path: C:Program FilesSUPERAntiSpywareSASKUTIL.sysAddress: 0xA1306000 Size: 135168 File Visible: - Signed: -Status: -Name: SCDEmu.SYSImage Path: C:WINDOWSSystem32DriversSCDEmu.SYSAddress: 0xBA9E8000 Size: 52768 File Visible: - Signed: -Status: -Name: serenum.sysImage Path: C:WINDOWSSystem32DRIVERSserenum.sysAddress: 0xBA5C7000 Size: 15744 File Visible: - Signed: -Status: -Name: serial.sysImage Path: C:WINDOWSSystem32DRIVERSserial.sysAddress: 0xBAA88000 Size: 64512 File Visible: - Signed: -Status: -Name: sr.sysImage Path: sr.sysAddress: 0xBA6FF000 Size: 73472 File Visible: - Signed: -Status: -Name: srv.sysImage Path: C:WINDOWSSystem32DRIVERSsrv.sysAddress: 0xA07F1000 Size: 333952 File Visible: - Signed: -Status: -Name: swenum.sysImage Path: C:WINDOWSSystem32DRIVERSswenum.sysAddress: 0xBADFE000 Size: 4352 File Visible: - Signed: -Status: -Name: sysaudio.sysImage Path: C:WINDOWSsystem32driverssysaudio.sysAddress: 0xA0ED0000 Size: 60800 File Visible: - Signed: -Status: -Name: tap0901.sysImage Path: C:WINDOWSsystem32DRIVERStap0901.sysAddress: 0xBABA0000 Size: 25472 File Visible: - Signed: -Status: -Name: tapvpn.sysImage Path: C:WINDOWSsystem32DRIVERStapvpn.sysAddress: 0xBA948000 Size: 45056 File Visible: - Signed: -Status: -Name: tcpip.sysImage Path: C:WINDOWSSystem32DRIVERStcpip.sysAddress: 0xA1460000 Size: 361600 File Visible: - Signed: -Status: -Name: TDI.SYSImage Path: C:WINDOWSSystem32DRIVERSTDI.SYSAddress: 0xBAB88000 Size: 20480 File Visible: - Signed: -Status: -Name: termdd.sysImage Path: C:WINDOWSSystem32DRIVERStermdd.sysAddress: 0xBA968000 Size: 40704 File Visible: - Signed: -Status: -Name: tmcomm.sysImage Path: C:WINDOWSsystem32driverstmcomm.sysAddress: 0xA0491000 Size: 97280 File Visible: - Signed: -Status: -Name: update.sysImage Path: C:WINDOWSSystem32DRIVERSupdate.sysAddress: 0xB9575000 Size: 384768 File Visible: - Signed: -Status: -Name: usbccgp.sysImage Path: C:WINDOWSsystem32DRIVERSusbccgp.sysAddress: 0xBABF0000 Size: 32128 File Visible: - Signed: -Status: -Name: USBD.SYSImage Path: C:WINDOWSSystem32DRIVERSUSBD.SYSAddress: 0xBAE06000 Size: 8192 File Visible: - Signed: -Status: -Name: usbehci.sysImage Path: C:WINDOWSSystem32DRIVERSusbehci.sysAddress: 0xBAB68000 Size: 30208 File Visible: - Signed: -Status: -Name: usbhub.sysImage Path: C:WINDOWSSystem32DRIVERSusbhub.sysAddress: 0xBA9A8000 Size: 59520 File Visible: - Signed: -Status: -Name: USBPORT.SYSImage Path: C:WINDOWSSystem32DRIVERSUSBPORT.SYSAddress: 0xB97A2000 Size: 147456 File Visible: - Signed: -Status: -Name: usbprint.sysImage Path: C:WINDOWSsystem32DRIVERSusbprint.sysAddress: 0xBAC00000 Size: 25856 File Visible: - Signed: -Status: -Name: USBSTOR.SYSImage Path: C:WINDOWSsystem32DRIVERSUSBSTOR.SYSAddress: 0xBABF8000 Size: 26368 File Visible: - Signed: -Status: -Name: usbuhci.sysImage Path: C:WINDOWSSystem32DRIVERSusbuhci.sysAddress: 0xBAB60000 Size: 20608 File Visible: - Signed: -Status: -Name: vga.sysImage Path: C:WINDOWSSystem32driversvga.sysAddress: 0xBABC0000 Size: 20992 File Visible: - Signed: -Status: -Name: viaagp1.sysImage Path: viaagp1.sysAddress: 0xBAB38000 Size: 27904 File Visible: - Signed: -Status: -Name: viaide.sysImage Path: viaide.sysAddress: 0xBADAC000 Size: 5376 File Visible: - Signed: -Status: -Name: VIDEOPRT.SYSImage Path: C:WINDOWSsystem32DRIVERSVIDEOPRT.SYSAddress: 0xB97E9000 Size: 81920 File Visible: - Signed: -Status: -Name: VolSnap.sysImage Path: VolSnap.sysAddress: 0xBA8C8000 Size: 52352 File Visible: - Signed: -Status: -Name: wanarp.sysImage Path: C:WINDOWSSystem32DRIVERSwanarp.sysAddress: 0xBA9F8000 Size: 34560 File Visible: - Signed: -Status: -Name: watchdog.sysImage Path: C:WINDOWSSystem32watchdog.sysAddress: 0xBAC18000 Size: 20480 File Visible: - Signed: -Status: -Name: wdmaud.sysImage Path: C:WINDOWSsystem32driverswdmaud.sysAddress: 0xA0C6F000 Size: 83072 File Visible: - Signed: -Status: -Name: Win32kImage Path: DriverWin32kAddress: 0xBF800000 Size: 1847296 File Visible: - Signed: -Status: -Name: win32k.sysImage Path: C:WINDOWSSystem32win32k.sysAddress: 0xBF800000 Size: 1847296 File Visible: - Signed: -Status: -Name: win32k.sys:1Image Path: C:WINDOWSwin32k.sys:1Address: 0xBAC28000 Size: 20480 File Visible: No Signed: -Status: -Name: win32k.sys:2Image Path: C:WINDOWSwin32k.sys:2Address: 0xA138F000 Size: 61440 File Visible: No Signed: -Status: -Name: WMILIB.SYSImage Path: C:WINDOWSSystem32DRIVERSWMILIB.SYSAddress: 0xBADAA000 Size: 8192 File Visible: - Signed: -Status: -Name: WMIxWDMImage Path: DriverWMIxWDMAddress: 0x804D7000 Size: 2066048 File Visible: - Signed: -Status: -Name: WudfPf.sysImage Path: WudfPf.sysAddress: 0xBA6D3000 Size: 82944 File Visible: - Signed: -Status: -Merged posts. ~ OB

RELEVANCY SCORE 200
Preferred Solution: > Malware byte's Anti Malware software, Malware byte's Anti Malware Not working

I recommend downloading and running DAP. It can help sort out any driver and firmware related issues on your system

It's worked out well for many of us in the past.

You can download it direct from this link http://downloaddap.org. (This link will open the download page of DAP so you can save a copy to your computer.)

A: > Malware byte's Anti Malware software, Malware byte's Anti Malware Not working

Hello smartjock99,You got a Rootkit on this computer. We will need to take this cleanup in phases. You are not clean until I tell you so - even if it appears that everything is running fine!Let's begin....==========Step 1Please save this file to your desktop. Click on Start->Run, and copy-paste the following command (the bolded text) into the "Open" box, and click OK. When it's finished, there will be a log called Win32kDiag.txt on your desktop. Please open it with notepad and post the contents here. "%userprofile%\desktop\win32kdiag.exe" -f -r==========Step 2Please do this: Click on the Start button, then click on Run... In the empty "Open:" box provided, type cmd and press EnterThis will launch a Command Prompt window (looks like DOS). Copy the entire blue text below to the clipboard by highlighting all of it and pressing Ctrl+C (or after highlighting, right-click and select Copy).

copy C:\WINDOWS\ServicePackFiles\i386\eventlog.dll C:\ /y
In the Command Prompt window, paste the copied text by right-clicking and selecting Paste. Press Enter.When successfully, you should get this message within the Command Prompt: "1 file(s) copied"
NOTE[: If you didn't get this message, stop and tell me first. Executing The Avenger script (step #3) won't work if the file copy was not successful. Exit the Command Prompt window.==========Step 3 Warning to others reading this thread!: The Avenger is a VERY POWERFUL program, and can easily be misused.Certain misuses of this program can prevent your system from ever starting again.For this reason, it is strongly recommended to use The Avenger only as directed and under qualified supervision.We can accept no responsibility for damage caused by misuse of the program. Download The Avenger by Swandog46 from here.Unzip/extract it to a folder on your desktop.Double click on avenger.exe to run The Avenger.Click OK.Make sure that the box next to Scan for rootkits has a tick in it and that the box next to Automatically disable any rootkits found does not have a tick in it.Copy all of the text in the below code box to the clipboard by highlighting it and then pressing Ctrl+C.
Files to move:C:\eventlog.dll | C:\WINDOWS\system32\eventlog.dllIn the avenger window, click the Paste Script from Clipboard, button.Click the Execute button.You will be asked Are you sure you want to execute the current script?.Click Yes.You will now be asked First step completed --- The Avenger has been successfully set up to run on next boot. Reboot now?.Click Yes.Your PC will now be rebooted.Note: If the above script contains Drivers to delete: or Drivers to disable:, then The Avenger will require two reboots to complete its operation.After your PC has completed the necessary reboots, a log should automatically open. If it does not automatically open, then the log can be found at %systemdrive%\avenger.txt (typically C:\avenger.txt).Please post this log in your next reply.==========With your next post please provide:* Win32kDiag.txt* Avenger.txt

Read other 44 answers
RELEVANCY SCORE 214.8

My google requests are being redirected to other sites. As a first step to correcting this, I started to run Malware byte's Anti Malware software. After I updated it, I started the scan when all of a sudden it stopped working. When I tried to reconnect, I got a message

"Windows cannot access the specified device, path or file. You may not have the appropriate permissions to access the item"

I re-installed the software, updated it, and tried to run it again, and got the same message.

I suspect malware or spyware. What do I do?

A:Malware byte's Anti Malware software

Hello,
If you still need help reply back.

Read other 15 answers
RELEVANCY SCORE 184

Hello, I was trying to update the Flash, when the following program "ByTe Fence Anti Malware" was downloaded in the computer and it is trying to scan my computer. I did not install it but now anytime I try to log off a warning appears on exit (that the program is not shut properly and the background is still running) . Also the volume icon on the desktop has disappeared. This happens every time my computer is infected. Can you please help me?

A:ByTe Fence Anti Malware (Protected)

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===Download Malwarebytes' Anti-Malware from HereDouble-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).The scan may take some time to finish,so please be patient.If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Log... Read more

Read other 2 answers
RELEVANCY SCORE 148

Should I install Malwarebytes Anti-Malware beside Emsisoft Anti-Malware for extra protection? Will it slow down my computer?
 

A:Should I install Malwarebytes Anti-Malware beside Emsisoft Anti-Malware?

Emsisoft is more than enough by itself.
 

Read other 61 answers
RELEVANCY SCORE 148

Donna over at Calendar of Updates has posted a second test regarding the viability of free anti-malware and free anti-spyware programs - Malware Detections of Free Anti-Malware/Anti-Spyware

see Malware Detections of Free Anti-Malware/Anti-Spyware - Calendar Of Updates

For those who don't know, Donna also previously posted another test, Rogue Detections: Old, Not So Old and New Threats
see Rogue Detections (old, not so old, new threats) by malware scanners - Calendar Of Updates

A:Malware Detections of Free Anti-Malware/Anti-Spyware

Hi John

Looks like a fairly good test, unfortunately it's on an XP box. Do you know if they plan on running one on a Vista system, since the way that many malware works will affect it's viability on Vista systems?

Thanx for the link! Still lots of good info there for our members.

Read other 7 answers
RELEVANCY SCORE 148

Based on your opinions and reasoning which is the better product.
I will still be using both products regardless of the votes.
 

A:Malwarebytes Anti-Malware 2.x vs Zemana Anti-Malware 2.x (Premium only)

This is difficult. I use both as on-demand scanners. I've been using Malwarebytes for years and it's saved my butt on numerous occasions. For that simple fact alone, I'm going with Malwarebytes, but do not shy away from Zemana (in fairness to Zemana, it's a fairly new program). If anything I'd say Zemana AntiMalware feels a bit lighter, but that's really the only fault I can provide. I'll be interested to see what others think.
 

Read other 5 answers
RELEVANCY SCORE 148

Hello. I am working on a friends machine that seems to have a nasty infection. This machine is a dedicated server running Windows Server 2003 Web. Everything I am doing to it is via remote desktop which is making it a little more of a challenge. Web browsing on the server was incredibly slow when he asked me to take a look at it. I figured he was infected with something so I was going to try and install a few things on it and run a few scans, only to find that all of the sites that I found to use are blocked or disable by whatever is infecting the server. Any attempt to access an anti-virus or anti-malware website results in a message stating server cannot be found. Any other website can be accessed though.

There is an FTP server running on this machine, so I do have that availability to FTP to the server to get any file or program to it that I need to. Please just let me know what you need from me and I will get it up here as soon as I can. I am a fairly experienced user and can grasp things pretty easily. Thanks for your time, I greatly appreciate it.


Jamie

A:Malware Blocking all Anti-Malware/Anti Virus websites

If it doesn't block you from softpedia or download.com, the get the anti virus software from their sites instead. Hopefully it won't block them. When they are downloaded, rename the file names.

Read other 2 answers
RELEVANCY SCORE 142.8

My desktop just got attacked. The shield looking icon popped and asking me to update. I did not installed any anti-virus myself, except the malware bytes. I cannot open any sites now on the desktop; now can I use the Backup function. I am using my laptop to write this now. I don't want to format the desktop, for there are too many important files in the desktop. Plus I don't have any disks (HP did not include any software in the package).

Do you think that the Anti-virus action would get rid of the infections? Or is it going to trigger me to more infections?

What should I do now?

Thanks
 

Read other answers
RELEVANCY SCORE 142.8

I've been dealing with a potential malware situation for the past few days and decided that I'm beyond my realm of understanding. The symptoms are as follows:

Malware bytes stalls at 2 seconds leading to a "not responding"
I am unable to download anything from the web.
Malware bytes runs in safe mode but does not find anything
tried running Rkill and still have the same issues.

HELP!

A:malware byte stall?

Hello and welcome.Please click Start > Run, type inetcpl.cpl in the runbox and press enter.Click the Connections tab and click the LAN settings option.Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.IfWIN7.. Please Download this file, Click Me Right-click on winsockfix.bat and click on Run as Administrator.Now try uninstall/reinstall Malwarebytes' Anti-Malware as follows: First uninstall Malwarebytes' Anti-Malware using Add/Remove Programs in the Control Panel.Restart the computer.Download the mbam-clean.exe (MBAM Cleanup Utility) and save it to your Desktop.Double-click on mbamclean.exe to start the utility.When the cleanup routine has finished, it will ask to reboot your computer. Please allow the reboot.After the computer restarts, temporarily disable your Anti-Virus, then download and install the latest version of Malwarebytes' Anti-Malware (v1.46) from here.For Windows Vista and Windows 7:First uninstall Malwarebytes' Anti-Malware using Programs and Features in Control Panel.Restart the computer.Download the mbam-clean.exe (MBAM Cleanup Utility) and save it to your Desktop.Double-click on mbamclean.exe to start the utility.When the cleanup routine has finished, it will ask to reboot your computer. Please allow the reboot.After the computer restarts, temporarily disable your Anti-Virus, then download and install the latest version of Malwarebytes' Anti-Malware (v1.46) from here.-- If using the Pro version, ... Read more

Read other 1 answers
RELEVANCY SCORE 142.8

Hi
 
I just bought my first ever smartphone (yes, I've been living under a rock) - the iphone 5s. I'm after recommendations for good software to protect it, free if possible.
 
I've looked in the itunes store and the options for anti-virus seem limited. The Mcafee app gets bad reviews and the others I've never heard of, and/or have no reviews. any suggestions would be great.
 
On the anti-malware front, i can't seem to find anything in itunes store when i try to search. I like the Malwarebytes anti-Malware program for my laptop, but unless I'm mistaken the only mobile app they have is for Androids, not iphones. Again, any recommendations would be much appreciated.
 
This novice appreciates your time and ideas...

A:Good anti-virus and anti-malware software for iphone 5s

The reason they have more anti-virus apps for Android is because the Android platform is more vulnerable to malware. On Android, you are able to download and install a variety of things from unknown sources.
 
For the iPhone, however, anti-virus isn't really needed unless you have jailbroken your device.
 
Hope this helped.

Read other 10 answers
RELEVANCY SCORE 142.8

Hi
 
I just bought my first ever smartphone (yes, I've been living under a rock) - the iphone 5s. I'm after recommendations for good software to protect it, free if possible.
 
I've looked in the itunes store and the options for anti-virus seem limited. The Mcafee app gets bad reviews and the others I've never heard of, and/or have no reviews. any suggestions would be great.
 
On the anti-malware front, i can't seem to find anything in itunes store when i try to search. I like the Malwarebytes anti-Malware program for my laptop, but unless I'm mistaken the only mobile app they have is for Androids, not iphones. Again, any recommendations would be much appreciated.
 
This novice appreciates your time and ideas...

A:Good anti-virus and anti-malware software for iphone 5s

The reason they have more anti-virus apps for Android is because the Android platform is more vulnerable to malware. On Android, you are able to download and install a variety of things from unknown sources.
 
For the iPhone, however, anti-virus isn't really needed unless you have jailbroken your device.
 
Hope this helped.

Read other 14 answers
RELEVANCY SCORE 142.8
A:What is a good Free Anti-Virus, Anti-Malware software?

Hello Rawkfist, and welcome to Vista Forums.

If you like, Avast is a good free option.

AVAST 2014 | Download Free Antivirus Software for Virus Protection

Read other 11 answers
RELEVANCY SCORE 141.2

Malwarebytes detected the following trojan again and again, after I selected it to be removed. Every time Malwarebytes says the trojan was removed successfully, yet it is not.

I tried to delete the registry manually, yet I could not find the exact path and name where this trojan is.

I turned the Restore function off and ran Malwarebytes one more time; still did not work. Then, I downloaded and installed TrojanKiller. It detected the same thing and said that it was removed. Then, I ran Malwarebytes one last time, yet this trojan is still nicely present in my system.

Please help.......

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Hijack.Shell.Gen) -> Data: explorer.exe,C:\Users\User\AppData\Roaming\yrvjm.exe -> Quarantined and deleted successfully.
 

A:Anti-malware and Anti-trojan software cannot kill it?

Read other 16 answers
RELEVANCY SCORE 141.2

Hello, My apologies if this is posted in the wrong forum. I'm looking for what the professionals here would consider to be the best protection at a business level. The company I currently work for is using GFI Vipre and its terrible. We are looking at the business version of Malwarebytes but not sure its the best. Would you kindly give some input as to what you believe would give the best protection? Thanks for your time.Edit: Moved topic from Virus, Trojan, Spyware, and Malware Removal Logs to the more appropriate forum.~ Animal

A:Best business anti-malware / anti-virus software

As is the case for home users, there is no universal "one size fits all" solution that works for all organizations and there is no single best anti-virus.Anti-virus Enterprise Software for Business and Corporate EnvironmentsKaspersky Anti-Virus for Windows Servers Enterprise EditionESET Endpoint Security for BusinessEmsisoft Business ProductsEmsisoft Anti-Malware for serveravast! Endpoint Protection SuiteAVG Small Business SecurityAVG Business Anti-virus with Endpoint Protection & Server SecuritySymantec Endpoint Protection Small Business EditionSymantec Anti-virus Corporate EditionCOMODO Business and EntepriseSOPHOS Enduser Protection SuiteVIPRE Business & Enterprise Anti-virusMicrosoft Security Essentials for small businesses with up to 10 PCsThese articles may be helpful in making your choice:How to Evaluate, Compare and Implement Enterprise AntivirusChoosing an Antivirus Solution for your OrganizationGuidelines for choosing antivirus software to run on the computers that are running SQL ServerFive enterprise-ready Anti-virus systemsWhat is Enterprise Architecture (EA)Anti-malware Software for Schools and Business:Emsisoft Business ProductsEmsisoft Anti-Malware for serverMalwarebytes Anti-Malware for BusinessMicrosoft has a number of articles offering guidance on how to configure and use anti-malware on servers...Anti-malware software on Windows Servers

Read other 4 answers
RELEVANCY SCORE 141.2

I have a default Yoog Search in my Search Engines, i try to remove it and set it as google but it would again default to Yoog. Next thing is I just cannot run 'sybot search & destroy' and doesnt let me open any anti-malware related sites. I cant download any anti malware apps. I am just stuck. I saw a post " Win 2K hijack issue - unable to run malware apps!". I have exactly the same case on my system.

 

Read other answers
RELEVANCY SCORE 141.2

Hi all,My dad has asked me to take a look at his computer after it's been acting odd, and it looks like he's got a doozy of something running on the system. He's been getting some pop ups advertising various programs, the desktop is changed to text reading "Your system is infected! System has been stopped due to a serious malfunction. Spyware activity has been detected" (which is not something any program that should be running would display", Task Manager is blocked from opening and a fake piece of anti-spyware has taken up residence (don't have the name off hand).Looking at the log, I found a couple of things that I'm not a fan of - batmeter16.dll, for starters. There's a couple others I don't recognize, but I am not sure if they are bad or not.Unfortunately, my attempts to fix it have been thwarted - an AVG scan said it cleared it up, but more pop ups came. I tried to run Malware Bytes, but when I download the latest update through the program, I get a nice warning message saying "The database you are using is not supported by this version of Malwarebytes' Anti-Malware. Download the latest version of the program."Additionally, this came about because I tried to start into Safe Mode to get this cleaned up. I couldn't get my keyboard to register keystrokes before Windows started, which kept me from accessing the dialogue allowing Safe Mode to be entered, so I modified boot.ini to force a safe mode boot. Unfortunately, this brought about a blue sc... Read more

A:Malware blocking MalwareBytes (post-update), fake anti-malware program

Hello, my name is fenzodahl512 and welcome to the forum.. Please do the following....Please download The Comedian.exe by Rorschach112 to your desktopPlease disable all of your antivirus/firewall before doing this step. Please visit HERE if you don't know how..Double click the program to run it. It will only take around several minutes to run.It will do a series of tasks and tell you when each one is finished.You will be prompted to press any key after each stepWhen it is done it will close and exit itself automatically.You can delete The_Comedian.exe once it is finishedSTOP! if you can't complete this step.. Tell me more about it..NEXTPlease download OTL by OldTimer and save it to your desktop.Under the Custom Scans/Fixes box paste this innetsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\*. /mp /s
CREATERESTOREPOINTDon't change any setting... Just click on the Run Scan button.. Let it scan till finish..Then a log will pop-up at your Desktop. Post the content of the log hereNEXTWe need to scan for Rootkits with GMERPlease download GMER from one of the following locations, and save it to your desktop:Main Mirror
This version will download a randomly named file (Recomm... Read more

Read other 3 answers
RELEVANCY SCORE 141.2

these are the instructions I followed:Uninstall itclick on this link ? and then select run.http://www.malwarebytes.org/affiliates/2...INSTALL IT TO YOUR DESKTOP, update it, then run a full scan and remove everything it finds.some viruses will try to disable it so if malwarebytes will not start up then go into the folder it is in and rename the mbam file to XXX then double click on the file you just renamed to start it up.after you have used malwarebytes then do this on-line scan.to make sure you have nothing else hiding away.http://www.bitdefender.com/scan8/ie.htmlpreferably in safe mode with networking.it's important you install it on your desktop so you can easily get into the folder and change the name of the mbam file.and viruses do not always look on the desktop for it.OR you can try the on-line scan first.This seemed to have helped but I still can't run Malware bytes and my computer redirects websites I try to get into sometimes. I installed Norman Malware cleaner is this is what it said:Removed 5 of these ( deleted file:C:/windows\system.32\UACqfqboedxvctjti.dat)in red appeared- To many infections/an unexpected error (Please contact support):C\Windows\system32\UACqfqboedxvctjtit.dat (infected with Text/Td.ss.A)File marked for defered cleaning (reboot required) c:\windows\Temp\UAC314c.tmp(infected with W32\FakeAlert.NEUI clicked quit afer it finished scanning and it prompted me to reboot computer automatically. I ... Read more

A:The computer at work is infested with PAV. I downloaded Malware bytes anti-Malware but it still won't scan

Hello it appears you are heavily infected with rootkits. They are interfereing with removal.You need to run HJT/DDS.Please follow this guide. go and do steps 6 and 7 ,, Preparation Guide For Use Before Using Hijackthis. Then go here HijackThis Logs and Virus/Trojan/Spyware/Malware Removal ,click New Topic,give it a relevant Title and post that complete log.Let me know if it went OK.

Read other 1 answers
RELEVANCY SCORE 140.8

Yesterday, I had troubles with Windows live messenger where it (still) says:

"Windows Live Communications Platform has encountered a problem and needs to close. We are sorry for the inconvenience. "

although, the problem isnt about MSN. I found out that this problem was caused by having Malware on your computer. Hence, i decided to run a scan using Malwarebytes Anti-Malware (MBAM).

I noticed that my Avast was disabled and if i try enable it, it comes up with a window saying: the operation could not be completed.

My google searches also SOMETIMES get redirected to links that is clearly out of topic.
like if i google search the terms "malware wikipedia" and i click on the wikipedia link but i get redirected to some Myspace/Anz credit card crap.

Then this happened.
MBAM CRASHED after 2 mins of scanning -> tried to re-run MBAM but a window came up saying:
"Windows cannot access the specified device, path or file. You may not have the appropriate permissions to access the item."
I ran several other programs such as:
HJT -> scanned for 2 mins, then crashed (no logs were made)
SUPERAntiSpyware (SAS) -> scanned for 2 mins, then crashed
and same goes for any other programs that searched for any malware.
The only program that worked was TROJANHUNTER and came up with a couple of false positives
I also tried using Avira's Rescue CD (the one where you boot up with it and it does a scan)
A scan using Avira was also successful but failed to... Read more

A:Malware/Anti-virus tools wont run due to a rootkit/trojan/malware

i am having the exact same problem!
i have no clue what to do, any help would be amazing!

Read other 2 answers
RELEVANCY SCORE 140.8

Have been using Win 7 Ultimate x64 for quite a while but tonight ran into a small problem. I like to keep the titles for links very short and want to rename "Malwarebytes Anti-Malware" (I am a registered, paid user) to simply "Malwarebytes". I am listed as an Administrator and I used LockHunter to unlock the file but it still does not allow me to shorten the description. When I shorten the name and hit OK I am told "You'll need to provide administrator permission to rename this file" Since I am the administrator on this machine I do not know what to do. Continuing does nothing. Anyone have any suggestions? /* Philip */

A:Changing File Decription for link to Malware Bytes Anti-Malware

Not sure but I think Malwarebytes is trying to protect itself.
That is one of the first things a virus would try to do is change the name/link and get it out of the infection way.

I can change the name of the desktop Icon to MBAM.

Read other 9 answers
RELEVANCY SCORE 140.8

I can not do the prework because my browsers are incapacitated, so I can't download anything.The PC indicates that my web connection - DSL - is functioning properly. I don't know if it is safe to insert a flashdrive in order to bring the required programs to my pc, and post the results using my relative's pc. Is there a way to prevent malware from infecting the flashdrive?
 
I am using a relative's desktop PC in order to communicate here. I still have windows XP SP3 on my desktop pc and I finally got a virus despite what I thought was safe surfing, using a limited account. I have Avast free but it did not detect anything. My superantispyware is "locked" and my malwarebytes free stops responding.  So I don't know what infection I have. I use Online Armor firewall, but it did not prompt me about any new program. It is set to always notify me, even when running something I have allowed in the past. Whatever it is, also got passed K-9 web protection which filters all of my PC use. I am putting a lot of disjointed information that may be helpful into this post, simply because of my need to go back and forth between two houses in my particular situation. (About a 5 minute walk). I normally would not put all of this into one initial post. I understand that the system works better when one detail at a time is presented upon your request. Please understand that I won't be able to provide bits of information without returning home for each request!
 
My last action befor... Read more

A:unknown malware disabled my browsers, locked anti-malware programs

DON'T READ MY POST!
system restore worked!
how do I close this thread as solved??

Read other 2 answers
RELEVANCY SCORE 140.4

I did a hijackthis scan and here's what I got:Logfile of Trend Micro HijackThis v2.0.2Scan saved at 12:18:17 PM, on 4/20/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\SYSTEM32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exeC:\WINDOWS\System32\DVDRAMSV.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\WINDOWS\System32\nvsvc32.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exeC:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exeC:\WINDOWS\System32\00THotkey.exeC:\WINDOWS\system32\TFNF5.exeC:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exeC:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exeC:\WINDOWS\AGRSMMSG.exeC:\Program Files\Synaptics\SynTP\SynTPLpr.exeC:\Program Files\Synaptics\SynTP\SynT... Read more

A:Malware Blocking Acess to Spybot, Microsoft Malicious Removal Tool and other anti-malware programs

Hey guys I solved my own problem. I completely reinstalled windows. (It was about that time anyway)

Read other 2 answers
RELEVANCY SCORE 140.4

Hi all!
Recently while searching for new Anti-Malware tools to try subsequently in order to clean my computer for malware, I came across EMCO Malware Destroyer.
And hence, now I am wondering;What is your opinion on the Anti-Malware tool EMCO Malware Destroyer?
Thank you very much in advance!
Regards,
midimusicman79

A:What is your opinion on the Anti-Malware tool EMCO Malware Destroyer?

I have seen it advertised on Major Geeks and other third-party hosting sites but write ups and reviews never impressed me.EMCO Malware Destroyer by Softpedia...To start with, you should note that it does not provide active protection, heuristic scans or an active shield of some sort. This utility will only search for baddies currently loaded in the memory or running processes that are infected...Malware Destroyer is designed for manual virus checks and the fast scans recommend it, but bear in mind that it is mainly aimed at non-techy users and will only provide an occasional supplemental layer of protection.

Read other 10 answers
RELEVANCY SCORE 140.4

I tried to down load the now version, and the computer won't let me download it.

And there is something wrong with the version of Anti-Malware I have now. Every time I want to use it.
It downloads the setup and then it up dates. And today when I wanted to scan, it stopped and computer ran an error
report.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:03:38 PM, on 10/4/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\LSI SoftModem\agrsmsvc.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Secunia\PSI\PSIA.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Comodo\Firewall\CPF.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\G... Read more

A:Can't download the news version of Malware bytes Anti-Malware

Read other 16 answers
RELEVANCY SCORE 140.4

 
A trojan that's currently doing the rounds in Japan is using Windows itself to try to defeat security software on infected machines.
Trend Micro reports that the BKDR_VAWTRAK malware, which steals credentials used for online banking at some Japanese banks, is using a Windows feature called Software Restriction Policies (SRP) to prevent infected systems from running a wide range of security programs, including anti-virus software from Microsoft, Symantec, and Intel. A total of 53 different programs are blocked by the malware.

http://arstechnica.com/security/2014/06/banking-malware-using-windows-itself-to-block-anti-malware-apps/

A:Banking malware using Windows to block anti-malware apps

TrendLabs: Windows Security Feature Abused, Blocks Security SoftwareEdit: Your Trend Micro link initially did not work for me so I reposted it for the benefit of others. Checking a second time the page finally opened.

Read other 3 answers
RELEVANCY SCORE 140.4

Hi all!
Recently while searching for new Anti-Malware tools to try subsequently in order to clean my computer for malware, I came across EMCO Malware Destroyer.
And hence, now I am wondering;What is your opinion on the Anti-Malware tool EMCO Malware Destroyer?
Thank you very much in advance!
Regards,
midimusicman79

A:What is your opinion on the Anti-Malware tool EMCO Malware Destroyer?

I have seen it advertised on Major Geeks and other third-party hosting sites but write ups and reviews never impressed me.EMCO Malware Destroyer by Softpedia...To start with, you should note that it does not provide active protection, heuristic scans or an active shield of some sort. This utility will only search for baddies currently loaded in the memory or running processes that are infected...Malware Destroyer is designed for manual virus checks and the fast scans recommend it, but bear in mind that it is mainly aimed at non-techy users and will only provide an occasional supplemental layer of protection.

Read other 0 answers
RELEVANCY SCORE 140.4

Good afternoon,
 
  After 2 years of no problems, it seems I may have been infected with Malware.  The hard drive spins constantly, making my laptop nearly worthless.  I rebooted my computer in Safe Mode and ran several programs to try and find/remove the Malware.  Some programs run OK and find nothing, but at least 3 programs run for a short time, then freeze up and the hard drive spins constantly.
 
  Here is what I've tried so far:
- Norton Power Eraser - Finds no problems
- Panda Cloud Cleaner - Did find and quarantine a few issues
- Kaspersky - I ran a through scan on everything - it took several hours and did find 2 infections.  Cleaned or quarantined both
- Malwarebytes - Gets to a certain point, then freezes.   Hard drive spins constantly
- ESET - Gets to a certain point, then freezes.  Hard drive spins constantly
- House Call - Gets to a certain point, then freezes.  Hard drive spins constantly
 
- AdwCleaner - Ran this, log looks clean except for 1 Firefox and 1 Google Chrome file that are listed
- Junkware Removal Tool - Only tried to run in Safe Mode w/ Networking.  Shows a command prompt screen, but nothing happens
- ComboFix - I have run this, can produce the log file if needed.
 
Any help you can give would be greatly appreciated!!

A:Malware Infection - Freezes computer when Anti Malware Program is run

Hello having run ComboFix, you need to repos this with that ComboFix log in this forum...Virus, Trojan, Spyware, and Malware Removal Logs

Read other 4 answers
RELEVANCY SCORE 140.4

I've been seeing here that Emsisoft Anti-Malware is free for 30 days, after 30 days of use will be able to scan and remove malware that it finds?
I do not want to use it with real-time protection, I have ESET for it, I use it as I use Malwarebytes Anti-Malware Free, only for weekly scans!
Thank you
#Translator
 

A:Emsisoft Anti-Malware Free'll be able to scan and delete the malware?

Download emsisoft emergency kit

Emsisoft Free Emergency Kit: Portable malware scanner | Free removal of Viruses, Bots, Spyware, Keyloggers and Trojans

it's scanner without real time, full free
 

Read other 3 answers
RELEVANCY SCORE 140.4

Hi. There is something going on with my computer, can't get on internet and many pop up messages, and I have tried to run MBAm. When I click on "Remove Selected" it starts doing the removal but then a box pops up with "Malwarebytes Anti-Malware has encountered a problem and needs to close." There are three boxes to choose to click on...Debug, Send Error Report, or Don't Send. When I click on Debug I get a new pop up box with "DrWatson Postmortem Debugger has encountered a problem and needs to close". Same three boxes to choose to click. I click on Debug and then get a pop up box with "Microsoft Visual C++ Runtime Library. Runtime error. Program:C:\Windows\System32\svchost.exe.

I have multiple pop up boxes coming up when I just log on:

dsca.exe-Application error

27578134.exe has encountered a problem

Sysfader:IEXPLORE.EXE-application error. Instruction at "0x03a0bdd9" referenced memory at "0x03a0bdd9". The memory could not be written. When I click "OK" to terminate this it came up with multiple other boxes with different numbers...0x0403bdd9,0x03eabdd9,0x0455bdd9,0x053abdd9.

ctfmom.exe Application error

Data Execution Prevention-Microsoft Windows...to help protect your computer Windows has closed this program: Internet Explorer.

I am unable to get on the internet from my computer and am currently using my husbands laptop to post.

I would appreciate anyones advise or help.... Read more

A:Malwarebytes Anti-Malware unable to remove selected malware

I would try logging in to safemode with networking and then run the scanfrom there. To log in to safemode gently tap the F8 key as the computer reboots and then select safemode with networking from the list. If you are able to run the scan in safemode then there's probably some infection that was preventing it from runnig in the regular Windows mode. If not then there may be a problem with the Malwarebytes. I have had a similar problem and I had to un-install it and then re-install it. I emailed their tech support and was told it was possibly a conflict between it and AVG free though I'd never had that problem before... EVER.

I suspected it was something buggy with the update that had come through.

Read other 4 answers
RELEVANCY SCORE 140.4

Hi, I been trying to remove the searchinterneat-a.akamaihd.net malware for months. I looked over at least 10 different guides on how to remove the malware. I tried multiple antimalware programs to HitmanPro to Anti-Malware and it seems like none of them can detect the malware. Looking for help!

Read other answers
RELEVANCY SCORE 140.4

Hi, A suspicious SVCHOST.exe just popped into my startup list. I bet it's not the only one causing my sudden computer slowdwon. I attached my HijackThis log and I hope someone gets to help me. Thanks!

A:Malware. Unable to Update any Anti Virus/Malware Program

Hello and welcome to TSF.

We want all our members to perform the steps outlined in the link given below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

Please follow our pre-posting process outlined here:

http://www.techsupportforum.com/f50/...lp-305963.html

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Read other 1 answers
RELEVANCY SCORE 139.2

I'm about to pull my hair out here! I've been working this problem for 2 days now, and have Googled every which way to find out what's on this PC with WinXP Home + SP3.... there is some kind of trojan virus on it, that prevents anything from scanning the hard drives (ergo, I can install anti-malware software inclucing HiJackThis, Malwarebyte's anti-malware app, and even Microsoft's MRT.exe but as soon as ANY of them begin a scan of the system they are terminated and their exe file has it's permissions reset to Everyone ONLY (and apparently this thing has set the policy for the Everyone Group to NOBODY). Once this occurs, I can't run the program again as I no longer have permission to do so.... in Safe mode, I can reset the executable permissions back to Administrators Full Control and run the anti-malware exe again, only to have it terminated and it's permissions again reset... this thing's killing me!

I tried RKill to no effect either, whatever this thing is the most current RKill doesn't recognize it apparently.

I've read on these forms of others who've experienced similar problems, so I know I'm not alone... what nobody else on the internet seems to have figured out though is WHY their anti-malware app goes "Poof!" seconds after it starts scanning the system for malware. There is something, some virus in memory which I cannot locate, which is changing the security permissions of any program that ... Read more

A:Malware setting anti-malware app file permissions to nothing!

Well, I went and sat and thought about it for a few minutes... then came back to the PC, started up Safe mode with Command Prompt, and used the command window to manually launch System Restore and restored the computer back to a checkpoint it had made earlier today BEFORE the desktop went Poof!

To my immense relief, System Restore apparently tracks changes to file permissions as well and it reset the explorer.exe file permissions back and upon restarting the PC I had a desktop with all the trimmings again finally.

However, the virus or whatever it is still remains of course (there are no restore points beyond today, as the virus or 1 of it's many friends I already removed from this PC today had disabled System Restore and deleted all the restore points it might have had already).

I don't know where to go from this point with this PC... perhaps it's a dead horse and just needs to be reformatted, idk.

- Michael

Read other 15 answers
RELEVANCY SCORE 139.2

I am pulling my hair out. Please help. I have followed the instructions in your excellent forum at http://www.bleepingcomputer.com/virus-remo...-antivirus-plus but still no luck. Everytime Malware Bytes starts to run it dies. I have also been unable to get the RootRepeal Report. Same problem - it starts then apparently is killed by Antivirus Plus. I also had difficulty getting the DDS Tool to generate the log files but it finally worked. Here are the two files. At least it's a start. Can you tell me what I should do next? Thank You

A:Antivirus Plus Kills Malware Bytes Anti-Malware

Hello and welcome to Bleeping Computer! We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Fo... Read more

Read other 2 answers
RELEVANCY SCORE 139.2

Hello,

I have malware that prevents me from running anti-malware programs (unless their names are changed to aliases). It also makes its presence known when I am NOT connected to the Internet. In that instance, a message box informs me that "Generic Host Process for Win32 Services" is not working, and gives me the option of sending or not sending the relevant information.

I attach to this thread the "Attach" output from DDS and the .log file from GMER. Unfortunately, I was unable to save the Scan results from GMER in any format other than .log, and when I tried to use the "Copy" function within GMER, my machine froze.

I have also run (in safe mode) MBAM, SpybotSD, SUPERAntiSpyware and the Windows kb890830 malware-detection apps. The first three DID find infected files, which I removed/quarantined in each of the respective apps. Perhaps not surprisingly, the Windows malware detection scan did not pick up anything.

I apologise for the dreadful formatting of the GMER output; the .log file is (I hope) uploaded.

Kind regards,
Adam

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:58:53, on 04/10/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17080)
Boot mode: Safe mode

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINNT\Explo... Read more

A:Infected w/Malware that doesn't let you run anti-malware apps etc.

Read other 16 answers
RELEVANCY SCORE 139.2

I dowloaded AdwCleaner on BleepingComputer.com, the software it self looked to work fine & looked very legit.
In the software  Tools menu it is possible to add PUP/Hosts Anti-Malware. Since the main software looked OK i did it.
I made a scan with Hitman Pro & it was declared has "MALWARE". It had 3 bad files, 1 malwarrre ( the main process,
1 trojan & a suspuscious file, i condamned all.
 
Can someone tell me WTH is going on with ADWCleaner & maybe it would be a good idea to put a CLEAR notice on the download page.

A:PUP/Hosts Anti-Malware (ADWCleaner extension) =Malware

Hello -
The program is OK.
Did you First fully read the directions and follow the instructions ?
 
Many Antimalware programs are detected by other Antimalware programs, and this is usually a False Positive reading.
It shows up as your program may need to be disabled while you use another program.
 
Thank You -

Read other 10 answers
RELEVANCY SCORE 139.2

Hi Guys

hope you can help me. I have a windows Vista sony laptop where I tried to install a mcafee software from someone and i saw a strange pop up , when I closed it, i started to notice few strange things on my machine:

1. spyboy doesnt open anymore and unistalling it then trying to install it give me an error message
2. Malwarebyte anti-malware doesnt open as well.
3. Firefox google homepage doesn't load anymore
4. installing mcafee security software (clean version) doesnt load

I hope the log of hijackthis will shed some light on what's going on
thanks a lot

Karim
 

A:malware infection stopping spybot and anti-malware!

just want to update that the first 3 issues still in place but point 4 isn't a problem anymore. I successfully managed to install the mcafee 2008 security centre and I will be making a full scan, while waiting for any suggestion for points 1 to 3

thanks

Karim
 

Read other 2 answers
RELEVANCY SCORE 139.2

This is a follow up to my posting in the "Am I infected? What do I do?" section.Thank you extremeboy for answering my plea for help. Below is a paste from the infected computer's HijackThis log file:Logfile of Trend Micro HijackThis v2.0.2Scan saved at 2:02:33 PM, on 1/8/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16762)Boot mode: NormalRunning processes:H:\WINDOWS\System32\smss.exeH:\WINDOWS\system32\winlogon.exeH:\WINDOWS\system32\services.exeH:\WINDOWS\system32\lsass.exeH:\WINDOWS\system32\svchost.exeH:\WINDOWS\System32\svchost.exeH:\WINDOWS\system32\svchost.exeH:\WINDOWS\system32\spoolsv.exeH:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exeH:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exeH:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeH:\WINDOWS\System32\svchost.exeH:\Program Files\Java\jre6\bin\jqs.exeH:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exeH:\WINDOWS\system32\nvsvc32.exeH:\WINDOWS\system32\svchost.exeH:\WINDOWS\Explorer.EXEH:\Program Files\Java\jre6\bin\jusched.exeH:\WINDOWS\RTHDCPL.EXEH:\Program Files\QuickTime&... Read more

A:Malware Won't Let Anti-Malware Run, and Redirects to Malicious Websites

Title was: Browser Redirect - wdmaud? ~ OBTried to get help posting hijackthis file last week...no takers, so I started to do a little homework.My browser redirects to bogus websites (most of the time), and redirects to bogus websites when trying to go to anit-malware sites all of the time.Was able to get Avira AntiVir loaded, but doesn't detect the virus. Able to get a HijackThis log. McAfee won't launch, Malwarebytes won't launch, Spybot won't launch, etc.Reading up on the subject of recent browser redirection, there is a lot of people having trouble with the wdmaud file in their Windows/System32 directory. I tried to rename it and reboot, but it just came back. Tried to delete it, and it wouldn't let me. Then I loaded the Gibbon Gipo program, that forces the file to be deleted upon reboot. That works with every file except wdmaud! It keeps reappearing after reboot.This may or may not be the infected file...might be chasing a ghost here, but any help or suggestions would be appreciated.Thanks!

Read other 4 answers
RELEVANCY SCORE 139.2

Somehow I got redirected to a site that gave my a virus/malware, even though pop-up blocker was enabled. I knew somthing was up, so I decided to run Spybot, but it wouldn't launch. i rebooted and tried to launch again...no luck. I then uninstalled Spybot, and went to Safer-Networking website to redownload, but the site was blocked. Norton blocked. McAfee blocked. Trend Micro blocked.

To make things stranger, when I search for these using Google, then click on anti-virus websites, I get redirected to something strange...every time.

The only site I could go to was Microsoft One Care, which did a scan of my computer from the MS website, but it found nothing.

Using a different computer, I was able to download Stinger, burn it to a CD, then run it on my computer, but it found nothing.

I then burned another CD with HijackThis, but it wouldn't launch on my computer. When I renamed the file to banklogin.exe, it was able to install.

It seems that I was able to install Malwarebytes' Anti-Malware, but it doesn't seem to launch, no matter how many times I reboot the computer.

Because I can't log into this website from my infected computer, it would be difficult to transfer Hijackthis results to this forum.

My computer (when not running Stinger, HijackThis, or other programs) is utilizing the Ariva AntiVir Personal anti-virus software.

Any help/ideas would be greatly appreciated!

A:Malware Won't Let Anti-Malware Run, and Redirects to Malicious Websites

Hello cougkyle and welcome to BC!! Please do not post the Hijackthis log in this forum. Hijackthis logs are supposed to be posted in this forum. Experts there will help you deal with your Hijackthis log.Because I can't log into this website from my infected computer, it would be difficult to transfer Hijackthis results to this forum.Well you can burn that file onto a CD and transfer it to your clean machine. However, if you don't have a CD Burner on your infected machine then you can burn a CD Burner program from your clean machine and then transfer it to your infected machine. After that you can install it using your infected machine and burn the hijackthis log using your infected machine and transfer the file to your clean machine. Then you can post the logs in to the HJT-Malware removal forum I mentioned above.. Hope that helps you.With Regards,Extremeboy

Read other 3 answers
RELEVANCY SCORE 139.2

 Hi all,
 
 I am Pousoidis and I would like to thank you for the services you provide. I am pretty sure that I have a virus in my laptop. My system is an Ideapad U410 with Intel® core ™ i5-3317u 1.70ghz, 8gb ram memory, 64 operating, with windows 7.
 
 At some point I could not click on my start menu button without windows explorer notifying me that it had stopped working and that it was checking for a solution to the problem. I went online trying to read about what I could do. Eventually, I restarted my pc with the option of cheking for disk errors and that seemed to fix the start menu problem; now the windows explorer does not crash. But after that I noticed that I could not open certain programs such as skype and picasa 3 (and μtorrent which since then it has been uninstalled from my pc).
 
 It is then that I became more suspicious and decided to download and run anti-malware programs such as mabm and spybot. None of these can install itself on my pc, always some error message such as "privileged instruction". Was not sure how to proceed from that, so i searched online and came across your site. Thank you again for your help. I apologize in advance, I am not really well versed in the ways of technology. I did run 1 system restore before I visited this site.
 
so I am copy pasting my dds files: 
 
Run by Pousoidis at 13:46:22 on 2014-02-20
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.8053.5... Read more

A:Infected with some malware. Not allowed to install and run anti-malware.

Hello Pousoidis I would like to welcome you to the Malware Removal section of the forum.Around here they call me Gringo and I will be glad to help you with your malware problems.Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!Please do not run any tools unless instructed to do so.We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.Please do not attach logs or use code boxes, just copy and paste the text.Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.Please read every post completely before doing anything.Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.Please provide feedback about your experience as we go.A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same... Read more

Read other 16 answers
RELEVANCY SCORE 138.8

I have about 40-50 PCs running Windows XP Professional and XP Home. The current Anti-Virus software we are using is Norton Internet Security 2010. We want to look at other options. Some of the options we are considering are: staying with Norton, McAfee, Trend Micro, Kaspersky, Microsoft Security Essentials. I am looking for some guidance in selecting the best program for our situation. Can anybody help??

A:Best Anti-Virus/Anti-Malware Software

With that many machines, it would be considerably cheaper for you to look into some of the corporate software versions rather than the retail offerings.Symantec's store 3 for 2 promotionFixed tags to make link. ~rigel

Read other 12 answers
RELEVANCY SCORE 138.8

I have Avira Antivir Free addition. I was wondering do I also need an anti malware protection? Which would be a good and cheap anti malware?

A:Anti Malware, Anti Spyware Software

Well, I do not run any anti-spyware/malware protection in real time but I do scan with it often. All the products I use to do this are free and easy. My favorite ones are SuperAntiSpyware, Malwarebytes and Spybot Search and Destroy. Since getting the first two, I rarely use Spybot for scanning as it is much slower than the others and I feel the others do a better job.

However, I like Spybot because it has an immunize feature for immunizing you system against known bad threats and also has a feature called SD Helper which is bad site blocker, anyways I think that is the name of the feature that does that. Also it can help you control what programs are allowed to start on bootup. Do not use that last feature unless you are an advanced computer user and know the difference between what does and doesn't need to start up when the system does. For most items, Spybot will give its recommendation on keeping that program running if you open the side panel and click on the item. Good rule of thumb on that one is, if it is a Windows program, leave it running, if it is for a program you just installed, you can decide if you want it to run or not when the system starts up. Other than the windows programs, the only things I allow to run on start up are my keyboard (as I use its customized features) and my anitvirus/firewall program.

Read other 11 answers
RELEVANCY SCORE 138

I m not sure what the "security center alerts" said about the name of this but I had something that wouldn't allow me to run any other programs without telling me they were infected, I went into safemode and to msconfig and disabled 16683754 and something titled just b. I am now able to use my computer but when using google, any time i click a link it opens a new window called windowclick and the page opens something else that wasn't searched for. Also when I first start my computer and go to crtl alt del and check processes it says iexplore is running and when i open internet explorer it asks me if I want to restore previous session if i click yes a bunch of windows pop up. i have tried combo fix and the malware byte both say they are running in processes but nothing happens on the screen or show up in applications with ctrl alt del. Any help would be much appreciated.
DDS (Ver_09-07-30.01) - NTFSx86
Run by Jake at 14:03:09.62 on Mon 08/10/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2038.1320 [GMT -4:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: F-Secure Anti-Virus 2006 6.10 *disabled* {D4747503-0346-49EB-9262-997542F79BF4}
FW: McAfee Personal Firewall *enabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\... Read more

A:Infected with something that won't let me run combofix or malware byte, also hijacks google

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

Read other 41 answers
RELEVANCY SCORE 138

Hey there. My issue is that my computer, after doing a malware byte scan and having to restart, now doesn't seem to find my monitor. The computer sounds like its booting up normally yet it won't display anything on my monitor. I've tried changing monitors and cables yet it still doesn't work. Help would be appreciated.

I'm using Windows 8.
 

Read other answers
RELEVANCY SCORE 136.8

I started posting here
http://www.bleepingcomputer.com/forums/topic455506.html/page__gopid__2718896#entry2718896
but have been asked to start a new thread here.

Per my instructions I have run the DSS text as seen below.

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by Keith Roehner at 23:49:31 on 2012-06-02
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3046.1844 [GMT -4:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServ... Read more

A:google redirect Malware byte and Avast do not detect problem

Here is the attach.txt

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 9/28/2010 8:03:27 AM
System Uptime: 6/2/2012 11:30:22 PM (0 hours ago)
.
Motherboard: LENOVO | | 76693HU
Processor: Intel® Core™2 Duo CPU L7500 @ 1.60GHz | None | 1601/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 88 GiB total, 39.553 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP271: 5/29/2012 3:17:19 AM - Windows Update
RP272: 6/1/2012 4:48:08 PM - Windows Update
.
==== Installed Programs ======================
.
32 Bit HP BiDi Channel Components Installer
Access Help
Adobe AIR
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Reader 9.5.1
Adobe Stock Photos 1.0
Ask Toolbar
avast! Free Antivirus
BERNINA ARTlink
BERNINA ARTlink 6.0D
BlackBerry Device Manager 6.1
BlackBerry USB Drivers
Canon RAW Image Task for ZoomBrowser EX
Canon Utilities Digital Photo Professional 3.0
Canon Utilities EOS Utility
Canon Utilities Original Data Security Tools
Canon Utilities PhotoStitch
Canon Utilities WFT-E1/E2 Utility
Canon Utilities ZoomBrowser EX
CCleaner
Compatibility Pack for the 2007 Office system
Convert
Coupon Printer for Windo... Read more

Read other 9 answers
RELEVANCY SCORE 136.8

Dear Forum,

My great investment in a subscription to Norton - three years - they recently did an upgrade on their software and now after four hours - removing various items from my registry and also several SFC scans - my computer is running relatively smoothly - all except Windows Explorer.

Anyway I really preferred the option of MalwareBytes and the full scan and options. But apparently the kind person from Norton informed me that they have better software for scans.

Other than throwing my lap top out the window - has anyone come across any other programs that are Windows safe that do similar?

I was quite surprised that CC Cleaner was not booted off too by the program.

I also have uninstalled a few programs whilst waiting. Back to basics for me.

My brain surgery did not work so well. So stuck in hospital - the nurses just hear me cursing about all the stuff that happens to me.

Melissa

A:Is there another program similiar to Malware Byte - Norton scan error

I prefer ditch Norton use MSE for antivirus and malwarebytes for on demand Trojan etc scanning

Read other 9 answers
RELEVANCY SCORE 136.4

I have followed the instructions to remove Malware defender 2009 and done all the rebooting etc. I have dowloaded and installed HijackThis (log below) and also followed the guide and done a DDS log (below) and also attached the "attach.txt" file as directed.DDS (Ver_09-03-16.01) - NTFSx86 Run by Administrator at 10:23:22.82 on 03/05/2009Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_13Microsoft Windows XP Professional 5.1.2600.2.1252.44.1033.18.2047.1438 [GMT 1:00]============== Running Processes ===============C:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost -k DcomLaunchC:\WINDOWS\system32\svchost -k rpcssC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k NetworkServiceC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\WINDOWS\system32\userinit.exeC:\Program Files\Common Files\AOL\ACS\AOLAcsd.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXEC:\WINDOWS\Explorer.EXEc:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exeC:\Program Files\Spyware Doctor\pctsAuxs.exeC:&... Read more

A:Malware defender after running anti-malware

Hello Johncarter28.You will want to print out or copy these instructions to Notepad for Safe Mode/offline reference!These steps are for member Johncarter28 only. If you are a lurker, do NOT try this on your system! If you are not Johncarter28 and have a similar problem, do NOT post here; start your own topicDo not run or start any other programs while these utilities and tools are in use! Do NOT run any other tools on your own or do any fixes other than what is listed here.If you have questions, please ask before you do something on your own.But it is important that you get going on these following steps.=Close any of your open programs while you run these tools.Let's have you start with the following:Set Windows to show all files and all folders. On your Desktop, double click My Computer, from the menu options, select tools, then Folder Options, and then select VIEW Tab and look at all of settings listed. "CHECK" (turn on) Display the contents of system folders. Under column, Hidden files and folders----choose ( *select* ) Show hidden files and folders. Next, un-check Hide extensions for known file types. Next un-check Hide protected operating system files. Take out the trash (temporary files & temporary internet files) Please download ATF Cleaner by Atribune, saving it to your desktop. It is used to cleanout temporary files & temp areas used by internet browsers.Start ATF-Cleaner.exe to run the program. Under Main choose: Select All Click th... Read more

Read other 2 answers
RELEVANCY SCORE 136.4

ok theres one of those fake antiviruses on my computer. its locked my access to Documents and settings and there are also files in WINDOWS that when i looked them up on google i find they are viruses such as APPPatch and BDOscan8. whenever i run Malwarebytes it's suddenly killed and unrunable. same with Hijackthis. they cant even be run in safe mode because the same thing happens: they get killed. i even tried BitDefender's online scanner and that made firefox unrunable.

avg cant scan for viruses in documents and settings because its locked so it cant access it.

how the heck can i fix my computer!?

EDIT: just to add: Previx gets killed as does spybot S&D. renaming HJT doesnt help either

A:Malware on my computer, kills all anti-malware

I have the same problem and I was hoping an answer had come up here. I tried downloading rkill from this site and I still can't run mbam or spybot. You might try downloading rkill from this site. Maybe it will work for you.

Read other 3 answers