Over 1 million tech questions and answers.

Computer is infected with computer crime and intellectual property section virus

Q: Computer is infected with computer crime and intellectual property section virus

my emachines desktop running windows 8 recently became infected with the greendot moneypak  virus, I have visited many sites claiming to have the fix but none so far have worked.  
 
I try to boot in safe mode but because I have windows 8 I must boot from the advanced options, when I try to boot in safe mode my pc automatically restarts and its back to square one
 
any help would be appreciated.
 

RELEVANCY SCORE 200
Preferred Solution: Computer is infected with computer crime and intellectual property section virus

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: Computer is infected with computer crime and intellectual property section virus

Welcome aboard
 
I'll report this topic to appropriate helpers.
Hold on....

Read other 27 answers
RELEVANCY SCORE 200.8

I have the virus and am unable to boot safe mode. I have run the FRST scan and gotten a log. Below is the log, but I am not sure what do do next. 
 
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-05-2013
Ran by SYSTEM on 15-05-2013 12:24:27
Running from H:\
Windows 7 Home Premium (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Recovery
The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2480936 2010-12-16] (Synaptics Incorporated)
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [1281512 2013-01-27] (Microsoft Corporation)
HKLM-x32\...\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: []  [x]
HKLM-x32\...\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" [1573576 2012-12-10] (Ask)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [NACAgentUI] C:\Program Files (x86)\Cisco\C... Read more

A:Computer is infected with computer crime and intellectual property section virus

Hello njyoung2 I would like to welcome you to the Malware Removal section of the forum.Around here they call me Gringo and I will be glad to help you with your malware problems.Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!Please do not run any tools unless instructed to do so.We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.Please do not attach logs or use code boxes, just copy and paste the text.Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.Please read every post completely before doing anything.Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.Please provide feedback about your experience as we go.A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same"... Read more

Read other 10 answers
RELEVANCY SCORE 178.4

Hi there, my computer was infected today with the virus, and I don't really know how to remove it. Other sites didn't help as much. Any advice or help?

A:Computer Crime and intellectual property section

Welcome aboard
 
Is the computer bootable in any mode?

Read other 11 answers
RELEVANCY SCORE 172.8

I am working on my Aunt's computer (which I configured) with Windows XP SP3 that is completely up to date with Windows Update (Microsoft Update). Before this problem occurred, this was a relatively "clean and spare" computer, with very little software installed other than Microsoft Office (for Outlook) and the usual utility programs (like Adobe Reader). She allowed some of her grandchildren to run amok (against my advice) and they downloaded some "games," with the result that the PC was recently infected with the so-called: 
Computer Crime and Intellectual Property Section Ransomware
malware. I manually removed most of it (it appears) before I discovered this piece of work had a name and its removal process was well-described here, but odd parts of it remained (particularly a DLL that could not be killed or deleted).
 
Eventually I found this web page: http://www.bleepingcomputer.com/virus-removal/remove-computer-crime-intellectual-property-section and followed all of the instructions there, with the result that all remaining "visible" (at least to me) parts of it are gone.
 
However, all is not well. For example, although the computer will now boot to the Windows desktop apparently normally, it cannot be booted in Safe Mode. Other "funny" stuff happens, which, despite my experience, is difficult to describe other than things "hanging up" or being greatly delayed, as if the computer (or the internet) were unresponsive and extremely slow.
 
I've run all of ... Read more

A:Computer Crime and Intellectual Property Section Ransomware - Partially Removed

Hi there,my name is Marius and I will be assisting you with your Malware related problems.Before we move on, please read the following points carefully. First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding. Perform everything in the correct order. Sometimes one step requires the previous one. If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem. Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me. Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts. If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed. Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean. My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.   Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)Run FRST. Don´t change one of the checkboxes and hit Scan. Logfiles are created on your desktop. Poste the FR... Read more

Read other 9 answers
RELEVANCY SCORE 172.8

If it helps, my computer repair shop just got this bug in. Just now manually removing it.This is what I discovered about this strain:
8-char name can be found on vista/7/8 under:
C:\ProgramData\
C:\Users\%Username%\AppData\Local\
C:\Users\%Username%\AppData\Roaming\
 
Load points at:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
To run the 8-char.exe from the infected users My Documents folder.
 
Also located the re-infect mechanism at:
HKEY_Users\S-long string but not the Class one\Software\Microsoft\Command Processor
"Autorun"="\C:\\Users\\%username%\\Documents\\8-char.exe"
 
After removing these files and registry entries, the system starts up without an explorer shell, but does spawn a command prompt, so you can simply type "explorer". Obviously this is not completely fixed.
 
Still trying to trace down removing the command prompt from spawning instead of an explorer shell.

A:Newest Moneypak Strain: Computer Crime And Intellectual Property Section

seems modifying the original autorun value to explorer.exe works to get a shell, but still cant get rid of this blasted prompt....and of course, autorun isnt there normally on any un-infected systems i have here in house
 
SWEET!
 
Shell had been hijacked at:
HKey_Users\S-long one not classes\Software\Microsoft\Windows NT\CurrentVersion\WinLogon
Shell = cmd.exe should have value of explorer.exe
 
Also found additional non-exe file at C:\Users\%UserName%\AppData\Roaming\Microsoft\Windows\Templates
 
Hope this helps someone. Used hirens 15.2 to access file system and load registry hive. Now onward with the rootkit scanning!

Read other 2 answers
RELEVANCY SCORE 157.2

am on lap top with xp and am stuck with this virus and am trying to follow a video to remove, unable to enter safemode but was able to enter ThinkVantage, need to locate the virust.

Is help available?

A:computer crime and intellectual property virus

Has anyone had success removing from xp?

Read other 1 answers
RELEVANCY SCORE 143.6

Update: Sorry I posted an old HJT log. Newest one is up.

My friend's computer had this infected on her computer. It would show a page saying illegal activity has been found. I took her tower home to clean the virus. However, when I booted the computer there was no sign of the virus anywhere. The desktop screen was normal. The computer was still a mess though. Tons of toolbars installed, no anti-virus, malware, or spyware software installed. It was extremely overloaded with startup programs and would boot/shut down slow.

So I started cleaning it using the following tools:

TuneUp Utilities 2013
CCleaner
Malwarebytes Anti Malware
Spybot S&D

I had trouble installing MSE. It would keep giving me an error and would not finish installation. I noticed there were files left from Norton and McAfee Anti Virus that came with the computer. So I downloaded the Removal Utilities for each of those previous anti-virus. I was able to install MSE fine after that and it detected 3 trojans which were cleaned.

It's running much better now but I think there still some nasty stuff leftover.

When I run 'dds.scr' the two log files that are supposed to show up on the desktop never do. I am not sure why. Also when I started scan the C drive with GMER halfway through BSOD popped up.

I will post the HiJackThis Log along with the error message from GMER.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:41:52 PM, on 5/25/2013
Platform: Windows Vista SP2 (WinNT 6.00... Read more

A:Computer Crime and Intellectual Property Screen

Read other 16 answers
RELEVANCY SCORE 141.2

Hello, I am infected with the CCIPS Ransomware. I have a Dell Demensions 8400 with 32 bit Windows Home Edition service pack 3. I purchased it in 2004. I have tried the deletevirus.net guide in safe mode with command prompt,but it did not work. I have Advanced System Optimizer 3 loaded on my infected computer,so I tried to call technical support we tried safe mode with networking to where they could connect and see if they could fix it, but everytime I would login to 1 of the 3 profiles on the computer it would automatically go to shutdown. The technician said I would have to take it in to a local repair shop to have Windows reloaded on my computer before he could help me. I found your site and tried the Hitman kickstart usb drive. When I start the computer and go into the boot menu and arrow down to usb drive and hit enter, I get a message at the bottom to hit F1 to continue or F2 for setup utilities. When I hit F1 to continue to get to the next step in the guide, I get a message below F1 to continue or F2 for setup utilities saying that the operating system is missing. Is there anything you can do to help me? I really don't want to lose everything that is on my computer. Please,Please tell me  there is a way to get this virus off my computer and recover everything that is on it. I haven't done any backups in years other than what the Advanced System Optimizer 3 does each time I run a scan and clean up the computer when it starts running slow. This actually all happ... Read more

A:Computer Crimes and Intellectual Property Section

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/495250 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

Read other 2 answers
RELEVANCY SCORE 89.6

Hello,
The virus I have hijacks my computer and demands a payment. It appears to be a new version of the virus, because the layout and graphics don't match any I've seen yet online, and it also mentions something about the police having signed an agreement on December 4th with anti-virus software companies, in an effort to fight crime. It also says that if I don't pay within the next 48 hours, I will no longer be able to pay the fine and will be the subject of criminal prosecution, etc. From what I understand, this is a recent development in this type of virus. My computer is able to start in Safe Mode, including Safe Mode with Networking, but when I start the computer in Safe Mode with Networking, I am not able to connect to the internet - it tells me that there are no networks available. I scanned the whole computer with Malwarebytes, but unfortunately it was out of date by 68 days, and it didn't find anything malicious. AVG doesn't even want to scan, and I don't have anything else with which I could scan the computer. I would be very grateful if you would help me with this problem. I won't mind it if a System Restore is necessary - even if all my documents and files were wiped, I would be happy just to be able to use the computer in normal mode again, frankly.
Thank you for your time.

EDIT: I'm using Windows 7, by the way.

A:My computer is infected with the Police Central e-Crime Unit virus

Hi, welcome to BC.These type of infections can be nasty. You will be better served by the Malware Resoponse Team.Please follow the instructions in ==>This Guide<== starting at Step 6. If you cannot complete a step, skip it and continue.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

Read other 4 answers
RELEVANCY SCORE 83.2

Hi - apologies if this is not in the right place; wasn't sure where else to put this.

Some of my intellectual property has been taken and upped to various sites w/o my permission, and made available for d/l. I am in the process of trying to get everything removed, with some luck so far.

Some sites have DMCA links you can click, and you are then directed to fill out a form. I actually have not had a problem with these sites. It's the sites that do not have a DMCA link - and have no contact info - that is the problem. One of the sites - a .net domain - I was able to find by doing a WHOIS on google. Sent the info to the hosting company, and the issue was resolved.

The real problem are the domains that have these newer domains, like .me and .js - where there is no WHOIS available, and finding out who the host is has proven impossible.

Was hoping someone around here might have a recommendation for me.

Thanks in advance.

A:Need help with getting intellectual property taken down/finding hosts

Try Robtex: https://www.robtex.com/

It will show some interesting server graphics info too.

Read other 1 answers
RELEVANCY SCORE 82.4

For a while we've been seeing IOBit logfiles posted on the forum that bear a striking resemblance to logs of another well respected diagnosis tool (Trend Micro's HijackThis). You can find a few of those here on this forum. This post is to let everyone know that it has been confirmed that their Security 360 application is using (read stealing) the database from Malwarebytes' Anti-Malware program. For a full explanation, with details, links and relevant info, read RubberDuckY's (Marcin Kleczinsky - owner and founder of MalwareBytes) post here:http://www.malwarebytes.org/forums/index.php?showtopic=29681That is quite simply theft. Shame on you IOBit. You're not making any friends in the security community with this.

A:IOBit Steals Malwarebytes' Intellectual Property

Thanks for posting this for me.

Read other 15 answers
RELEVANCY SCORE 82.4

hi !

IOBit Steals Malwarebytes' Intellectual Property !?

"Malwarebytes has recently uncovered evidence that a company called IOBit based in China is stealing and incorporating our proprietary database and intellectual property into their software. We know this will sound hard to believe, because it was hard for us to believe at first too. But after an indepth investigation, we became convinced it was true. Here is how we know.

We came across a post on the IOBit forums that showed IOBit Security 360 flagging a specific key generator for our Malwarebytes' Anti-Malware software using the exact naming scheme we use to flag such keygens: Don't.Steal.Our.Software.A.

Dont.Steal.Our.Software.A, File, G:\Nothing Much\Anti-Spyware\Malwarebytes' Anti-Malware v1.39\Key_Generator.exe, 9-30501

Why would IOBit detect a keygen for our software and refer to it using our database name? We quickly became suspicious. Either the forum post was fraudulent or IOBit was stealing our database."

the FULL story:

IOBit Steals Malwarebytes' Intellectual Property - Malwarebytes Forum

WOW !

A:IOBit Steals Malwarebytes' Intellectual Property !?

I just posted the same info here: IObit Security 360

Word is getting out!

Read other 8 answers
RELEVANCY SCORE 82.4

Malwarebytes has recently uncovered evidence that a company called IOBit based in China is stealing and incorporating our proprietary database and intellectual property into their software. We know this will sound hard to believe, because it was hard for us to believe at first too. But after an indepth investigation, we became convinced it was true. Here is how we know.








During the course of our investigation, we uncovered additional evidence that IOBit may have stolen the proprietary databases of other security vendors as well. We are in the process of contacting these vendors.



IOBit Steals Malwarebytes' Intellectual Property - Malwarebytes Forum
This is big news.

A:IOBit Steals Malwarebytes' Intellectual Property

Hi RedDawn,
If you have any more Security related articles to post I suggest they would be better posted in the Security - Security News section.
If you haven't visited check it out -

Security News - Vista Forums

Read other 2 answers
RELEVANCY SCORE 65.6

Hello,I started a topic in 'Am I infected? What do I do?' about a virus I have. Here's a link to the topic. A member who replied to that topic recommended that I start a topic here. Yesterday (9th January) at about 1 AM, I was browsing the web, a pop-up came up (which I closed - I can't remember what the pop-up was), and a few minutes later, my whole screen was filled with a fake message from a police unit asking for money. There was a countdown of 48 hours in which I needed to pay the fine. I haven't seen this particular layout or design in any of the screenshots of the virus that I've seen online, so I imagine it's quite a new version. It locked my computer - I was unable to perform any actions apart from interacting with the virus screen itself. I switched off my computer by holding down the power button, restarted in Safe Mode, and ran a full Malwarebytes scan. Unfortunately, my Malwarebytes was out of date by 68 days, and it didn't find anything malicious. AVG began to scan when I requested it to, but encountered an error very quickly and stopped (I can't recall the error exactly, but if you need the details, just ask). I also restarted the computer in Safe Mode with Networking, but I was (and still am) unable to access the internet - it tells me that no networks are available. I downloaded DDS on another computer, moved it over to the infected computer (while in Safe Mode), and performed a scan. I would be very grateful if you ... Read more

A:Infected with Police Central e-Crime Unit ransomware virus

Greetings and Welcome to The Forums!!My name is Gringo and I'll be glad to help you with your malware problems.I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of usPlease do not run any tools unless instructed to do so.
We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.Please do not attach logs or use code boxes, just copy and paste the text.
Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.Please read every post completely before doing anything.
Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.Please provide feedback about your experience as we go.
A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.NOTE: At the top o... Read more

Read other 21 answers
RELEVANCY SCORE 63.6

Hi,

About a month a go I installed kapersky anti-virus software as my norton trial had run out. 30 days have now gone and i found that i never had no antivirus software so i decided to download some free stuff online (avast) and (mcafee). To my horror i have noticed that although i can download this programmes, I am still unable to run them. I feel that an virus is preventing me to have antivirus software on my laptop and its really frustrating me!

I also was told by someone to download MalwareBytes (which i did). I run a full scan and was informed that i had 500 and something files that were infected (registry). When it came to me deleting these through the programme it was fine but there was 11 infected files that the programme was unable to delete and i think these are the files that are responisible for me not being able to download antivirus software on my laptop.

Additional info is:
When I browse on the internet and decide to click on a link from google, I sometimes get the message 'document moving' and it directs me to a suspiscious website.

My operating system is also windows vista.

Any help on how to get rid of these 11 infected files would be much appreciated!

Thanks x

Kacey

A:Virus on Computer wont allow me to delete 11 infected files on computer...PLZ HELP!!!

Hello and Welcome.

We want all our members to perform the steps outlined in the link I'll give you below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

---------------------------------------------------------------------------------------------

Please follow our pre-posting process outlined here:

http://www.techsupportforum.com/f50/...lp-305963.html

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Please note that the Virus/Trojan/Spyware Help forum is extremely busy, and it may take a while to receive a reply.

Read other 1 answers
RELEVANCY SCORE 62

Hi all, just wondering what that number is under computer properties where it says "Registered to"

Right click My Computer > select Properties ... under General TAB

I'm pretty sure that is not the windows Key, so I'm really not quite sure what it is. I have used this windows key before, but the number that showed up here was completely different.

Thanks in advance
 

A:Computer property question

The number is a Product ID. It identifies the windows version, license type, language, and other information specific to your CD key and hardware. 76487-OEM-XXXXXXX-XXXXX is Windows XP Pro, OEM, and is US English version.
 

Read other 3 answers
RELEVANCY SCORE 61.6

so when I right click my "my computer" icon, and select "properties," nothing happens.

I see the hour glass turn for a few moments, but after that....nothing comes up.........as if I didnt' do anything.

I then try to go there through the control panel, but same thing....

other icons work well.

and when I restart or shut down, it gives me a box w/ a "program that is not responding" message.

anybody know what is wrong? new virus? everything is already updated on my pc....

this is xp home
 

A:right click "my computer > property...nothing!

Are you logged in as Administrator?
 

Read other 2 answers
RELEVANCY SCORE 61.6

Hi,
 
I have got the Internet Crime stuff again.  I am using XP and cannot boot even in safe mode (computer reboots).  I just get the bogus "pay up or else" screen.  Tried to follow the http://www.bleepingcomputer.com/forums/t/526306/ice-cyber-crime-center-virus/?hl=+ice%20+virus directions and was not able to restore.  Tried 348 first then 313 restore points.  Hope I did that right.  Anyhow, this is what I have done. 
Got CD with XPud and USB with driver.sh
 
here is the report.txt
 
Thu Apr 3 17:31:39 UTC 2014
Driver report for /mnt/sda1/WINDOWS/system32/drivers
9859c0f6936e723e4892d7141b1327d5 acpiec.sys
Microsoft Corporation
8fd99680a539792a30e97944fdaecf17 acpi.sys
Microsoft Corporation
8bed39e3c35d6a489438b8141717a557 aec.sys
Microsoft Corporation
1e44bc1e83d8fd2305f8d452db109cf9 afd.sys
Microsoft Corporation
d7701d7e72243286cc88c9973d891057 amdk6.sys
Microsoft Corporation
8fce268cdbdd83b23419d1f35f42c7b1 amdk7.sys
Microsoft Corporation
b5b8a80875c1dededa8b02765642c32f arp1394.sys
Microsoft Corporation
b153affac761e7f5fcfa822b9c4e97bc asyncmac.sys
Microsoft Corporation
9f3a2f5aa6875c72bf062c712cfa2674 atapi.sys
Microsoft Corporation
c2b6f2161abd498d2b453050ffc81812 ati2mtag.sys
9859c0f6936e723e4892d7141b1327d5 acpiec.sys
Microsoft Corporation
8fd99680a539792a30e97944fdaecf17 acpi.sys
Microsoft Corporation
8bed39e3c35d6a489438b8141717a557 aec.sys
Microsoft Corporation
1e44bc1e83d8fd2305f8d452db109cf9 afd.sys
Mic... Read more

A:Internet crime FBI center has locked computer

Also did the bash rst.sh.  Here is that report.
 
19.0M Apr 3 2014 /mnt/sda1/WINDOWS/system32/config/software
4.8M Apr 3 2014 /mnt/sda1/WINDOWS/system32/config/system
18.8M Feb 25 09:22 /sda1/~/RP316/~SOFTWARE
18.8M Feb 26 12:04 /sda1/~/RP317/~SOFTWARE
18.8M Feb 27 11:04 /sda1/~/RP318/~SOFTWARE
18.8M Feb 27 21:33 /sda1/~/RP319/~SOFTWARE
18.8M Mar 1 10:09 /sda1/~/RP320/~SOFTWARE
18.8M Mar 2 11:38 /sda1/~/RP321/~SOFTWARE
18.8M Mar 3 21:12 /sda1/~/RP322/~SOFTWARE
18.8M Mar 5 00:35 /sda1/~/RP323/~SOFTWARE
18.8M Mar 6 08:05 /sda1/~/RP324/~SOFTWARE
18.8M Mar 7 21:04 /sda1/~/RP325/~SOFTWARE
18.8M Mar 9 14:01 /sda1/~/RP326/~SOFTWARE
18.8M Mar 10 20:17 /sda1/~/RP327/~SOFTWARE
18.8M Mar 11 20:20 /sda1/~/RP328/~SOFTWARE
18.8M Mar 12 21:09 /sda1/~/RP329/~SOFTWARE
18.8M Mar 14 06:00 /sda1/~/RP330/~SOFTWARE
18.8M Mar 14 16:06 /sda1/~/RP331/~SOFTWARE
18.8M Mar 16 00:30 /sda1/~/RP332/~SOFTWARE
18.8M Mar 17 12:38 /sda1/~/RP333/~SOFTWARE
18.8M Mar 18 15:48 /sda1/~/RP334/~SOFTWARE
18.8M Mar 19 06:04 /sda1/~/RP335/~SOFTWARE
18.8M Mar 19 19:56 /sda1/~/RP336/~SOFTWARE
18.8M Mar 21 00:35 /sda1/~/RP337/~SOFTWARE
18.8M Mar 21 19:18 /sda1/~/RP338/~SOFTWARE
18.8M Mar 23 18:40 /sda1/~/RP339/~SOFTWARE
18.8M Mar 25 04:37 /sda1/~/RP340/~SOFTWARE
18.8M Mar 27 03:23 /sda1/~/RP341/~SOFTWARE
18.8M Mar 27 03:50 /sda1/~/RP342/~SOFTWARE
18.8M Mar 28 10:17 /sda1/~/RP343/~SOFTWARE
18.8M Mar 29 13:42 /sda1/~/RP344/~SOFTWARE
18.8M Mar 30 06:28 /sda1/~/RP345/~SOFTWARE
18.8M Mar 31 12:18 /sda1/~/RP346/~SOFTWA... Read more

Read other 16 answers
RELEVANCY SCORE 60.8

This is a simple problem but annoying. On my 2 computers when I rt click on the my computer icon on the desk top & then on properties at the bottom, I get the system properties. I just installed XP with SP 2 on 2 computers of friends of mine and when I rt click on theirs & click properties all I get is my computer properties with a general tab & a shortcut tab. Is there a way I can get the system properties to come up on those 2 without going into the control panel? I'm sure they will probably never know the difference, but I do.
Thanks for any suggestions.
 

A:Can't find system property with rt click on my computer.

Seems you only have a shortcut to My computer.
Right click anywhere on the desktop, click properties, then click the Desktop tab. Now click customize d-top button, the click the Restore Default button. See if that works.

Scorp.
 

Read other 2 answers
RELEVANCY SCORE 60

When I right click on the computer icon on the desktop the properties tab is missing - can you show me how to fix this please
 

A:Solved: Property tab missing from My Computer system icon

Read other 16 answers
RELEVANCY SCORE 60

I purchased a new desktop computer installed with Vista Home Premium from Dell recently and it has some kind of internet connectivity problem out of the box. I have been in contact with Dell's "support" going on 3 weeks with no solutions. Today they wanted to charge $50.00 dollars to help me do a PC restore (which has already been done).

Okay the problem is that when I attempt to access websites the connectivity is very limited. Usually resulting in a time-out error or extremely slow connection time. In addition to working with Dell, I have contacted my ISP (Insight Broadband). They insured me that IP address and internet connection is fine. Their is no router, computer plugs directly into modem.

Internet connectivity is fine in safe mode. Dell technician had hard drive replaced which did not correct problem. After hard drive was replaced, Internet connection seem to be working good for short time until Windows auto updates were installed. When computer was restarted the internet connection problem returned. Attempted to restore computer to point prior to update installation, but when I restored computer to oldest restore point the connection problem persisted.

Myself and the Dell techs have attempted to disabling firewalls, unistalling Macifee Antivirus that came with system, ect. to no avail.

I'm trying unsuccessfully to convince Dell to provide skilled technician to look at computer but they haven't returned my messages.

If anyone ha... Read more

A:[SOLVED] Cannot get internet connection working property with new computer!

Hi -

If Internet fine in safemode then most likely cause is anti-virus/3rd party firewall. But Dell took care of that. .. Do you have same problems with IE7 & FireFox?

Please follow THESE instructions. Post the resulting zip file(s) to your next post.

I would prefer you to run that batch file in normal Vista rather than safemode. You can download the 2 files in safemode, download, then re-boot into normal Vista and run it there.

Regards. . .

jcgriff2

.

Read other 19 answers
RELEVANCY SCORE 59.2

every time this computer get an internet connection in tries to send emails...lots of emails
symantec and zonealarm spot them but i cant make it stop
zone alarm say its trying to send 5 every 2 sec
from
windows/system32/services

here the hijackthis report

Logfile of HijackThis v1.99.1
Scan saved at 6:43:59 PM, on 12/9/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\PROGRA~1\ZONELA~1\ZONEAL~1\MAILFR~1\mantispm.exe
C:\WINDOWS\system32\ZoneLabs\UpdClient.exe
C:\Program F... Read more

A:computer keeps trying to send emails {Moved from XP section - Needs Help}

Read other 10 answers
RELEVANCY SCORE 58.4

When I restart my computer, it works well enough. I had a problem with my Kaspersky and it didn't work for a month or so and I just got it reinstalled to the latest version, so I probably got some sort of malware or something, just for background.

But after a while, say an hour, a section on the right side in the middle of my screen won't detect the mouse. It is occurring right now, so I can use my computer as long as I don't have to click in that 1/8 or whatever of my computer screen. When I restart my computer, it goes away again and the cycle continues.
 

Read other answers
RELEVANCY SCORE 58.4

Hi, I noticed something odd in my System settings, the Windows Edition section is empty: Screenshot by Lightshot
I did some research, and found out it could be some problem in the Windows Registry.. so I checked and in Product Name (in Microsoft\Windows NT\Current Version) says "Windows 8 Pro", so it isn't a registry problem..

Any suggestions how can I get it back to normal?

Read other answers
RELEVANCY SCORE 58

Hey guys, i'm new to this forum, obviously since this is only my first post. I don't know where to actually post this so if a forum mod would like to move this feel free.

But i'm looking for a way to crash a Windows 7 computer, using a batch file. I know a decent amount about DOS/Batch files, but i don't know exactly how to crash a windows 7 computer using a batch file, because there was only one way i really wanted to do it, but with Windows 7 security fail safe, i can't take control and delete my "c:\windows\system32" folder.

You're probably asking me why i would like to do this, and the reason is because it's a school project. My instructor would like us to crash one of this lab computers using a batch file, which all i can do is Right-click>Run As Administrator. He wants it done with a lot of stylish stuff, and etc. But i'm not here for that, all i'm curious about is some different, unique, cool ways to crash a Windows 7 computer.
Batch file will be copied to the desktop and run as administrator.(No files other than the batch file may be copied to desktop)
Additional files can be utilized either as a result of creation through the batch file, as a result of downloading from the Internet or files native to the lab workstations.
Additional files are only to be utilized through the batch file
Speakers are available on-demand
Damage must be contained within the local machine

Is everything i'm allowed to do, plus i can use hardware damage.
Feel free t... Read more

A:[Help] Crash Windows 7 Computer, Batch File [Wrong Section?]

Personally I don't think such things should be posted. We are here to help fix computers not dream up ways to destroy them.

Read other 4 answers
RELEVANCY SCORE 58

i just got my computer cleaned of virus's etc, and i have seen that some of my windows features is turned off, like my firewall... and prolly some other things too.

when click on "windows firewall" under controll panel, there is a message that pops up saying

"Due to an unidentified problem, windows cannot display windows firewall settings"

A:just got my computer cleaned in hijackths log section, firewall wont turn on...

i dont know what to do

Read other 6 answers
RELEVANCY SCORE 57.2

It all started when my classmate inserted a USB infected with the Nathquanglan virus. My computer got infected, so not it's plaguing my Yahoo messenger, not letting me open my task manager, and it's infected my flash disk too!!!
I don't have Norton, AVG, Avira or Avast, but the computer administrator of this computer installed "SuperAntiSpyware". It's not much help. I think there's also a Regrun running here or something like that. I'm not the computer administrator by the way, and they (the computer administrator) aren't doing anything to remove the virus.
I've tried running my computer on the safe mode and using SDFix, but RunThis.bat won't work. I've also tried to run taskmanager.reg but everytime I click it says it's not a valid win32 application. When I used the Deckard's System Scanner, the log showed that Nathquanglan is still plaguing my computer.
I don't know what to do, please help me! Every file on my computer and the USB as well is very important to me. Please, I need the help, ASAP!!!

PS

Please don't tell me to tell the administrator about it--they're really NOT DOING ANYTHING even if I'll tell them about it.
And how do you delete the Nathquanglan virus on your USB?
Thanks!!!

A:My Computer Is Infected With The Stubborn Nhatquanglan Virus, And Previous Posts From This Site About That Virus Is Not Helping...

Hi themadavenger and welcome to Bleeping Computer.Try this program:Please download Flash_Disinfector by sUBs and save it to your desktop: * Double-click Flash_Disinfector.exe to run it. * Follow any prompts that may appear. * The tool may ask you to insert your flash drive, or other removable drives. Please do so and allow the tool to clean it up as well. * Wait until the program has finished scanning, then please exit the program and reboot.Note: Flash_Disinfector will create a hidden folder named autorun.inf in each partition and every USB drive plugged in when you ran it. Don't delete this folder...it will help protect your drives from future infection.See if this helps.

Read other 3 answers
RELEVANCY SCORE 57.2

Here is my DDS log. Right now my desktop is pure white and I can't set a background image. Also I have a red X showing up in the tray saying "Your Computer is Infected - Click Here to Remove"

DDS (Ver_09-02-01.01) - NTFSx86
Run by Compaq_Administrator at 14:46:59.31 on Tue 02/10/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.958.606 [GMT -5:00]

AV: avast! antivirus 4.8.1296 [VPS 090210-0] *On-access scanning enabled* (Updated)
FW: Norton Internet Worm Protection *disabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\taskmgr.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\arservice.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\DNA\btdna.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSr... Read more

A:Infected with "Your computer is infected with a virus - Click Here"

Forgot to mention when I use google in Firefox, I have to open the link 6 or 7 times before it actually brings me to the link, other times it is redirected to a number of sites.

Read other 12 answers
RELEVANCY SCORE 56.8

Hello,I really need some help! My computer had a virus that made the fake Windows XP antivirus popup appear where they want you to download the bogus antispyware program, and the desktop background changed to blue with a message that read " WARNING! Spyware detected on your computer. Please install an antispyware...." Blah, Blah Blah! And it would act like it was restarting and go to a blue screen, but if I pressed F8 it would go back. So I followed some steps I had read on here from other people, and that part of it is gone. I am now able to change my desktop background. Now the problem is that every time I try to go on to the internet, Google or whatever other search engine I use will come up, but then when you try to go to another site, it just says " Loading, internet browser redirecting." And I get redirected to another site, usally ADT (weird) or another antispyware site which I believe is just part of the virus. Also, the computer will freeze up completely to where I can't do ANYTHING. Even CTRL+ALT+Delete doesn't work. So we end up just unplugging it (I know that is probably REALLY bad!) I downloaded spybot S&D from my other computer and put it on the bad one, and it did find a couple things and I deleted them, but it didn't help. So I got hijackthis from my other computer also and dowloaded it to the messed up one and obtained my log. I had to do this in safe mode and allow networking to even get my computer to keep running, so... Read more

A:Computer Infected-internet Browser Redirects And Computer Freezes/ Computer 2

Hi Please Download Malwarebytes' Anti-Malware from Here :-http://www.majorgeeks.com/Malwarebytes_Ant...ware_d5756.htmlor here :-http://www.besttechie.net/tools/mbam-setup.exeDouble Click mbam-setup.exe to install the application.* Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.* If an update is found, it will download and install the latest version.* Once the program has loaded, select "Perform Quick Scan", then click Scan.* The scan may take some time to finish,so please be patient.* When the scan is complete, click OK, then Show Results to view the results.* Make sure that everything is checked, and click Remove Selected.* When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.* The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.* Copy and Paste the entire report in your next reply.This should do enough to enable you to boot your computer into normal mode THEN ...Please follow these directions to run Combofix & post a log.http://www.bleepingcomputer.com/combofix/how-to-use-combofixsteam

Read other 8 answers
RELEVANCY SCORE 56

I was downloading photoshop from utorrent but unfortunately i downloaded the file which has a virus in it, due to which my computer is not working properly and that file name is something 'sprn file'.due to which many unrecognised window are getting poped-up at side of my pc screen and many unrecognise sites are getting started.
tech guy my computer info is-
processor=intel(R) Core(TM)i3-4150 CPU @ 3.50GHz 3.50GHz
installed memory(RAM)=4.00 GB
system type=64-bit OS
 

Read other answers
RELEVANCY SCORE 56

My computer automatically opened up the porno.org website and then started popping up all of these AntiVirus windows. Each time I tried to open task manager or an internet window, an error about being infected popped up. I rebooted and then immediately brought up task manager and killed any processed that looked suspicious. I was able to open Firefox and get to your site without the virus popping up any windows. What do I do now?

Thanks!

A:My computer is infected with a virus

Hello and welcome Reboot into Safe Mode with Networking How to enter safe mode(XP/Vista)Using the F8 MethodRestart your computer. When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu. Select the option for Safe Mode with Networking using the arrow keys. Then press enter on your keyboard to boot into Safe Mode. >>>> Download this file and doubleclick on it to run it. Allow the information to be merged with the registry.RKill....Download and Run RKillPlease download RKill by Grinler from one of the 4 links below and save it to your desktop.

Link 1
Link 2
Link 3
Link 4

Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
If nothing happens or if the tool does not run, please let me know in your next replyDo not reboot your computer after running rkill as the malware programs w... Read more

Read other 8 answers
RELEVANCY SCORE 56

My computer is moving very slow when I try to open or close the browser. I have noticed that my yahoo email has been spoofed. Also the little shortcut to my browsers that used to be in the bottom menu tray arent there anymore.
here are the dds logs. It wont allow to me to attach them because it says theyre too large so Im pasting them in
hope thats ok.
DDS
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_31
Run by M at 8:58:47 on 2012-05-11
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.502.100 [GMT -7:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MSKSrvr.exe
svchost.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:&... Read more

A:Computer infected with virus

Ive tried to run the GMER 3 times now but it keeps closing on me. The 3rd try it was going for about 30 mins when it suddenly completely shut down my machine and gave me this blue screen saying an error was detected or something and it had to shut down the system. I ran it a 4th time and it went for 4 hours, when it finished it would not allow me to save down the log and then the system shutdown again.
I tried running it 1 more time and the 5th time it ran for about 30mins and then stopped and this time I was able to save down a log. Im pasting it in also because it wont allow me to attach it
please help
thank you

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-05-11 16:43:52
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e HDS728080PLA380 rev.PF2OA63A
Running: v4ewrm2n.exe; Driver: C:\DOCUME~1\MIUDIC~1\LOCALS~1\Temp\pwldapog.sys
---- Devices - GMER 1.0.15 ----

Device \FileSystem\Fastfat \Fat F74DBD20

AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\ControlSet001\Services\[email protected] ... Read more

Read other answers
RELEVANCY SCORE 56

I was told by my ISP today that they think i have a virus that is using up the allotted data bandwidth. They mention a specific virus name (i no longer remember the name) but i don't see a problem on my computer or notice any infection symptoms except very low memory after its been on too long.
 
I need to scan my system for possible hidden viruses or Trojans and eradicate them

A:Computer infected with virus

Hello there Please follow the instructions below. If you do not understand anything, feel free to stop and ask.MiniToolbox by FarbarPlease download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:Flush DNSReport IE Proxy SettingsReset IE Proxy SettingsReport FF Proxy SettingsReset FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList DevicesList Users, Partitions and Memory size.List Minidump FilesList Restore PointsClick Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.===Malwarebytes Anti-MalwareDownload Malwarebytes Anti-Malware from here.Double click on the file mbam-setup-2.x.x.xxxx.exe to install the application. (x.x.xxxx is the version)Follow the prompt. At the end place a checkmark in Launch Malwarebytes Anti-Malware, then choose Finish.When MBAM opens it will says Your database is out of date. Choose Fix Now.Click on the Scan tab at the top of the window, choose Threat Scan, then Scan Now.If you receive a message that updates are available, choose Update Now button (the scan will start after updates are completed).Please be patient as the scan will take some time.If MBAM detected threats, choose Quarantine for all items, then click Apply Actions.While still on the Scan tab, choose View detailed log. In the window that opens, click the Export button, choose Text file (*.txt) and save the log ... Read more

Read other 44 answers
RELEVANCY SCORE 56

Hi!

My computer seems to be infected with a virus which does not let me type correctly... For e.g. if i try to type 'windows', this is what shows up on the screen 'w5nd6ws'. The only reason that I am able to type is only if I hold down the fn key.

please find attached the hijackthis log as well as dds & attach files.
please help me resolve this...

thanks,
va_girl
 

A:computer infected with virus please help me!

Read other 12 answers
RELEVANCY SCORE 56

Hi again.

I happened to run windows without firewall or antivirus software. I knew that that windows would be doomed soon but I was going to install a new one after a while. When I finally installed new Windows I got this same problem with the new one that I had with the old one. I think explorer.exe crashes when I start the OS and then starts up again. Also bug reporting software (some Dr Watson software) crashes. When I try to use internet to find answers for my question I have to click one link about 100 times to get it loading the site. I fear that my bootsector or BIOS is infected. Should I try to run Hijack on my Windows?

I just need right now something to start with. Maybe a software which would show me the problem or a new way to format hard drive so the boot sector would reset too.

Im getting fed up with this comp right now. Two problems in one week. Also I just bought new 720gb WD hard drive, so Im not going to buy a new one just to get it working (saying this because some people do use this method to get hardware working).

Thanks to everyone who bothers to help :)

A:Computer infected by a very odd virus

You may or may not be infected with something... Really can't tell. It could also be failing hardware (memory for example) or overheating or underpowered power supply (maybe that new drive is sucking out all the voltage needed to run everything else stable?)
Anyhow, after you get a clean install of Windows, the first thing to do is always to grab the latest service packs and updates via Windows update. That protects you from known vulnerabilities and security holes (the ones that hit you while you're surfing the net without you doing anything).
You should at least turn that XP firewall back on, and enable DEP (data execution prevention).

Read other 3 answers
RELEVANCY SCORE 56

Hello, I have posted on this site a couple of times, but have not received help for a couple weeks now. My computer is still infected I believe and need someone to walk me through the de-bugging process. When I go on google to search for a website and click on their search results, it leads me to very suspicous websites that are not what google says they are. I think I may still have a virus and hope to get rid of it so I can transfer all of my data on to an external hard drive. Please help, thanks!

-Macilvaine33

A:computer may be infected with a virus

Hello, sorry that they (roadclosed) abandoned you.I see the potential of a dangerous malware there.Rerun MBAM (MalwareBytes) like this:Open MBAM in normal mode and click Update tab, select Check for Updates,when doneclick Scanner tab,select FULL scan and scan (normal mode).After scan click Remove Selected, Post new scan log and Reboot into normal mode.Next run DrWeb-CureIt This can take a couple hours.Before we start fixing anything you should print out these instructions or copy them to a NotePad file so they will be accessible. Some steps will require you to disconnect from the Internet or use Safe Mode and you will not have access to this page.Please download Dr.Web CureIt and save it to your desktop. DO NOT perform a scan yet.alternate download linkNote: The file will be randomly named (i.e. 5mkuvc4z.exe).Reboot your computer in "Safe Mode" using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".Scan with Dr.Web CureIt as follows:Double-click on the randomly named file to open the program and click Start. (There is no need to update if you just downloaded the most current versionRead the Virus check by DrWeb scanner prompt and click Ok where asked to Start scan now? Allow the setup.exe to load if asked by any ... Read more

Read other 9 answers
RELEVANCY SCORE 56

Hi

I just got hit with the FBI moneypak virus and I have tried several times with Malwarebytes to get rid of it, but it comes back everytime. Help please?

Thanks in advanced!

A:FBI virus infected computer

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Please take note:If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available.If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply'... Read more

Read other 43 answers
RELEVANCY SCORE 56

I am quite certain I have a virus on my computer. The following problems have been going on:- my sound card is no longer working...no longer get any sound- two iexplorer.exe processes are always running, one of them consumes a significant portion of the processor- iexplorer windows with ads keep popping up for no reasonI have tried several antivirus and malware programs with no luck.DDS.txtDDS (Ver_10-03-17.01) - NTFSx86 Run by Thomas Moore at 13:07:26.25 on Tue 07/13/2010Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_13Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1023.318 [GMT -4:00]AV: avast! antivirus 4.8.1335 [VPS 100713-0] *On-access scanning enabled* (Updated) /colorc4AV: Emsisoft Anti-Malware *On-access scanning disabled* (Updated) /colorc3============== Running Processes ===============svchost.exe 4C:\WINDOWS\system32\svchost -k DcomLaunchC:\WINDOWS\system32\svchost -k rpcssC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\Program Files\Intel\Wireless\Bin\WLKeeper.exeC:\WINDOWS\system32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k NetworkServiceC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\Program Files\Alwil Software\Avast4\aswUpdSv.exe... Read more

A:Infected computer - not sure with what virus

Hi,Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.Please subscribe to this topic, if you haven't already. You can subscribe by clicking the Options box to the right of your topic title and selecting Track This Topic.Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.Please reply to this post so I know you are there.The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.Once I receive a reply then I will return with your first instructions.Thanks

Read other 14 answers
RELEVANCY SCORE 56

Hello!

My computer got infected with a virus? or Trojan !. It is infected but I am not sure with what.
The symptoms are as following:
- all the files and folders pre-existing in the computer before it got infected are not acting and looking like hidden files
- I cannot send any email or download anything on the computer, however I can surf internet. On the other hand, once in a while I hear the sound of a finished downloaded file (even of I did not initiate a download, and sometime I am not even on the computer)
- I try cleaning the computer using Malwarebytes, Microsoft Essentials, TrendMicro. Everytime the cleaning programs are finding Trojans and Spyware, however if I run the antivirus programs in safe mode, as soon as I exit from Safe Mode, and I run the antivirus programs again I find new viruses (and I will have the computer disconnected from the internet).
The computer is running a Windows XP- Media Center

I followed the instruction from preparation guide and here are the attached files and info:

DDS.txt content:
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by HP Media Center at 11:54:36 on 2011-12-26
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3582.2953 [GMT -5:00]
.
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaun... Read more

A:Computer infected with a virus!

Hello and welcome. Please follow these guidelines while we work on your PC:Malware removal is a sometimes lengthy and tedious process. Please stick with the thread until I?ve given you the ?All clear.? Absence of symptoms does not mean your machine is clean! Please do not run any scans or install/uninstall any applications without being directed to do so.Please note that the forum is very busy and if I don't hear from you within five days this thread will be closed. Download ComboFix from one of the following locations:Link 1 Link 2 VERY IMPORTANT !!! Save ComboFix.exe to your Desktop * IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this linkDouble click on ComboFix.exe & follow the prompts.As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agr... Read more

Read other 12 answers
RELEVANCY SCORE 56

My computer somehow managed to get infected by a virus. I did not have my anti-virus software upto date, but do now. I was able to delete most of the virus off my computer, but now I have annoying little pop-ups that show up when ever they want. Its very frustrating and I can't seem to get rid of them. Everytime I reboot and run Ad-Aware, it finds more junk. Please help!!!!I have read other threads on this site and have seen people using HiJackThis, so I figured I would throw my logfile on here to see if it helps...........Logfile of HijackThis v1.99.1Scan saved at 7:52:41 PM, on 6/22/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\ibmpmsvc.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\SNDSrvc.exeC:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\WINDOWS\system32\spoolsv.exeC:�... Read more

A:Help, Computer Infected By Virus

Hi and welcome to Bleeping Computer! My name is Sam and I will be helping you. First download ewido anti-spyware from HERE and save that file to your desktop.This is a 30 day trial of the programOnce you have downloaded ewido anti-spyware, locate the icon on the desktop and double-click it to launch the set up program.Once the setup is complete you will need run ewido and update the definition files.On the main screen select the icon "Update" then select the "Update now" link.Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.Once in the Settings screen click on "Recommended actions" and then select "Quarantine".Under "Reports"Select "Automatically generate report after every scan"Un-Select "Only if threats were found"Close ewido anti-spyware, Do Not run a scan just yet, we will shortly.Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter.
IMPORTANT: Do not open any other windows or programs while ewido is scanning, it may interfere with the scanning proccess:Lauch ewido-anti-spyware by double-clicking the icon on your desktop.Select the "Scanner"... Read more

Read other 2 answers
RELEVANCY SCORE 56

Hi,I've been infected by the about:blank virus. I've tried to fix the problem on my own, but no luck. I'm pretty much a beginner, I guess.Anyway, this is the log file...Logfile of HijackThis v1.97.7Scan saved at 2:53:15 PM, on 4/13/05Platform: Windows 98 Gold (Win9x 4.10.1998)MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)Running processes:C:\WINDOWS\SYSTEM\KERNEL32.DLLC:\WINDOWS\SYSTEM\MSGSRV32.EXEC:\WINDOWS\SYSTEM\SPOOL32.EXEC:\WINDOWS\SYSTEM\mmtask.tskC:\WINDOWS\SYSTEM\MPREXE.EXEC:\WINDOWS\SYSTEM\MSTASK.EXEC:\WINDOWS\EXPLORER.EXEC:\OPLIMIT\OCRAWARE.EXEC:\OPLIMIT\OCRAWR32.EXEC:\Program Files\HP OfficeJet Series 600\register\remind.exeC:\WINDOWS\TASKMON.EXEC:\WINDOWS\SYSTEM\SYSTRAY.EXEC:\WINDOWS\SYSTEM\ATICWD32.EXEC:\WINDOWS\SYSTEM\ATITASK.EXEC:\WINDOWS\LOADQM.EXEC:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXEC:\WINDOWS\RUNDLL32.EXEC:\LOTUS\SMARTCTR\SUITEST.EXEC:\LOTUS\WORDPRO\LTSSTART.EXEC:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\OSA.EXEC:\PROGRAM FILES\HP OFFICEJET SERIES 600\BIN\HPOSTART.EXEC:\PROGRAM FILES\AMERICA ONLINE 7.0\AOLTRAY.EXEC:\WINDOWS\SYSTEM\RNAAPP.EXEC:\PROGRAM FILES\HP OFFICEJET SERIES 600\BIN&#... Read more

A:Infected By Computer Virus

You are using an outdated version of hijackthis. Please download the newer version.Download HijackThis from:HijackThis Download SiteThen post a new log

Read other 1 answers
RELEVANCY SCORE 56

I was downloading photoshop from utorrent but unfortunately i downloaded the file which has a virus in it, due to which my computer is not working properly and that file name is something 'sprn file'.due to which many unrecognised window are getting poped-up at side of my pc screen and many unrecognise sites are getting started.
tech guy my computer info is-
processor=intel(R) Core(TM)i3-4150 CPU @ 3.50GHz 3.50GHz
installed memory(RAM)=4.00 GB
system type=64-bit OS
window-7 ultimate
and i scanned my pc by using programm 'FRST64'
which was suggested by 'askey127' to 'holly' who has also a problem of system malware and below are the two file which is given as a output after scanning my pc.
 

Read other answers
RELEVANCY SCORE 56

everytime i used microsoft office word or excel the internet connection will lost..so i redial it again...plz help me sir
 

A:is my computer infected with the virus?

Run a thorough virus scan with your anti-virus application, which I trust you have and is up to date.

{redoak}
 

Read other 2 answers
RELEVANCY SCORE 56

My computer has never been the same after I went on a trip to LA. I have a Acer Aspire, Windows 7. A lot of times when I am doing something on the internet the following window will pop up: Close programs to prevent information loss. Your computer is low on memory. Save your files and close these programs: Firefox. It appears as a yellow triangle with an exclamation point at the bottom of my screen. I have run an anti-virus scan but haven't been able to solve the problem.

Here is the DDS log:

DDS (Ver_2011-05-26.01) - NTFS_AMD64
Internet Explorer: 8.0.7600.16385
Run by LING at 17:56:20 on 2011-05-26
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.1978.375 [GMT -4:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\sv... Read more

A:Virus infected my computer

Hi,

Sorry for delayed response. Forums have been really busy. If you still need help with this post fresh dds logs, please.

Read other 1 answers
RELEVANCY SCORE 56

when i try to open any drive from My Computer it is opening in new Window
It doesn't opens in same window instead a new window is opened every time
is my computer virus infected ?
please help.........
 

A:Is my computer virus infected

Read other 8 answers
RELEVANCY SCORE 56

I received an email from a known person last week but when I clicked on the link to access what I thought was a fax, it would not open. My Microsoft security alerted me that something had downloaded and I removed it but ever since I have been having problems with my computer. Today I tried to burn a disk after making a DVD and it told me there was a DLL initialization error.

Here is my system information:

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz, Intel64 Family 6 Model 42 Stepping 7
Processor Count: 4
RAM: 6126 Mb
Graphics Card: ATI Radeon HD 5450, 1024 Mb
Hard Drives: C: Total - 941285 MB, Free - 99550 MB; L: Total - 476268 MB, Free - 127400 MB;
Motherboard: Dell Inc., 0Y2MRG
Antivirus: Microsoft Security Essentials, Updated and Enabled
 

A:Virus has infected my computer

Read other 16 answers