Over 1 million tech questions and answers.

Trojan Virus? With option to block and delete. Should i just block it

Q: Trojan Virus? With option to block and delete. Should i just block it

Im using the Virus Protection program through AOL. Every week they do a weekly scan ,and recently it came back that a Trojan Virus was blocked with the option to delete.

Should i also delete the file or just keep it as blocked so that particular Virus will always stay blocked?

RELEVANCY SCORE 200
Preferred Solution: Trojan Virus? With option to block and delete. Should i just block it

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: Trojan Virus? With option to block and delete. Should i just block it

Read other 7 answers
RELEVANCY SCORE 85.2

Hi,I have used you guys before (and donated) and you were great! Now i'm back.My IP has been blacklisted by several spam databases (no, I'm not sending spam). It looks like I have some sort of trojan but I'm not sure which. Here is an email that was caught by a spam trap (from hxxp://psbl.surriel.com/evidence?ip=24.58....Check+evidence- I was hoping someone here would recognize how this might have been generated.And here's my HIJackThis (using WIN x64):Logfile of HijackThis v1.99.1Scan saved at 2:16:38 PM, on 10/25/2006Platform: Windows 2003 SP1 (WinNT 5.02.3790)MSIE: Internet Explorer v6.00 SP1 (6.00.3790.1830)Running processes:C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exeC:\WINDOWS\system32\spool\DRIVERS\x64\3\E_FATI9LA.EXEC:\Program Files (x86)\iPod\bin\iPodService.exeC:\WINDOWS\system32\mswinup.exeC:\WINDOWS\system32\winsvcup.exeC:\WINDOWS\system32\winupsvc.exeC:\Program Files (x86)\GetRight\GetRight.exeC:\Program Files (x86)\Mozilla Firefox\firefox.exeC:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXEC:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXEC:\Program Files (x86)\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exeC:\Documents and Settings\Administrator\Desktop\stng260.exeC:\Documents a... Read more

A:Spam Block List Due To Virus/trojan?

Hi dietcheese,

We're studying your log right now and will be back to you a.s.a.p.

Thanks for your patience.

Read other 11 answers
RELEVANCY SCORE 82.4

Dear Team,
Can you please suggest me how to block control + U button on IE

Thanks in Advance
Bhaskar G R

Read other answers
RELEVANCY SCORE 81.6

hi

am using ISA 2000 server.how to block the download
 

A:block the download option n ISA server

What do you mean and why do you want to change it?
 

Read other 1 answers
RELEVANCY SCORE 81.2

i cant view this site http://www.grabmotion.com/
ive tried using proxy sites ... i dont have my ip rereouting program on this computer use to let you into websites taht say you gotta be from there contry to view them i might give that a try later on cuz the ip is weird its 84.16.81.8 is there a region identifier any1 knows of website or outside program? otherwise ill look into that later, was just wondering if maby any1 else can view that page or might know what the deal is...
 

Read other answers
RELEVANCY SCORE 81.2

Well, just yesterday I discovered all my windows application thumbnails were replaced by the default windows application thumbnails. Applications like Hearts, Windows Media Player, Real Player, Notepad, Calculator have all been affected.

My spybot S&D has, since 2 hours ago, got on maniac mode blocking all the registry changes on my blacklist. Here's a screenshot:
http://67.18.37.14/23/128/upload/p1996620.gif

I have been using Adaware Pro and Spybot S&D. Did two full scans; Adaware came out null and S&D came out with CoolWWWsearch.WCADW, CoolWWWsearch and Nat.
Here's a screenshot: http://67.18.37.14/23/128/upload/p1996621.gif
Here's my list of running applications: http://67.18.37.14/23/128/upload/p1996619.jpg

Any help is greatly, greatly appreciated. =)
 

A:Solved: Block...block...block...block

Read other 15 answers
RELEVANCY SCORE 79.6

Hello W10Forums;

We are thinking about releasing the Windows 10 upgrade into the wild on the machines of our customers. However, since we are using specific management software e.t.c., we do not wish the users to perform a clean install of Windows 10, only the in-place upgrade.

Is there a way to remove the 2 other options in the upgrade screen?

A:Windows 10 upgrade - block the clean install option

Talking about a reset without keeping anything is one way without a Windows 10 Media.

Read other 4 answers
RELEVANCY SCORE 79.2

Hi, after we do a spyware scan and a list of results comes up, is it best to select the 'Block All' or 'Delete' option?
I mean, why not just delete them to hell?

A:Block or delete?

I would delete all then scan again and block all. Which tool is that as it seems a bit of an odd request to me.

Read other 3 answers
RELEVANCY SCORE 79.2

Hi, after we do a spyware scan and a list of results comes up, is it best to select the 'Block All' or 'Delete' option?
I mean, why not just delete them to hell?
 

A:Block or delete?

Read other 8 answers
RELEVANCY SCORE 78.4

Hello Guys,


I find this to be quite embarrassing, having an issue like this that I can't figure out.

Here's what I can't do.

1. Ping DG (Default Gateway)
2. Ping my IP (96.46.29.108)
3. Can't access my router via remote, even though its setup to allow it.

What I can do.

1. Access any web page.
2. Ping any website but my own IP/DG.
3. Play games & use the internet like usual.

I've forwarded the ports I use, and allowed all the programs to roll through the Firewall without issues. I'm not sure if my ICMP was disabled on my router, my family currently shut down my computer, so I can't remote in, and work on it.

I installed TeamViewer because LogMeIn isn't going to accept any "Free" connections anymore, and will require a paid subscription. I've got an older version of RealVNC installed, but I couldn't remember my serial key.


Sincerely,
Thomas

A:Ping DG, ftp block/httpd block

Is this from a remote location or from within the local LAN of the router? If remote, when you mean Default Gateway, is that the remote router you are trying to access or the default gateway used to access the internet?

Have you checked that the public IP address is current? Unless you have paid for a static IP address it is very possible for a different one to be assigned via DHCP by the ISP.

Josh

Read other 9 answers
RELEVANCY SCORE 77.2

I was surfing the net, and Norton popped up a program control window telling me that "pndsregs.exe is attempting to connect to a DNS server." It recommended blocking on all ports. I hit OK. Three seconds later the same message popped up. After blocking the same thing several times, I manually configured the blocking rule. It still pops up every few seconds asking me to block the program.

I asked a friend at school about it, and he said to google the application. I typed it in and found a site similar to this one, and they were telling someone to locate and delete "C:\windows\system32\pndsregs.exe". So I went and searched up the file name. I found the file right away, but when I tried to delete it, I got the following message "cannot delete pndsregs: access is denied make sure the disk is not full or write-protected and that the file is not currntly in use"

How do I delete this pain-in-the-neck program?

A:Pesky Program Won't Let Me Delete It Or Block It

I found a good reference to this here, which describes it as being a adware.ZenoSearch. I did a search on that and found an article at Symantic Securities, which if you are not falliliar makes Norton, which has more information, and can be seen here.

Read other 1 answers
RELEVANCY SCORE 77.2

Hi!

I'm wondering if someone know how I can block so that no one can delete a file I have.

I don't want anybody(from another account) to be able to delete it.

I have Windows XP.

Please help
Thanks in advance.
 

A:Solved: Help me to block a file delete

Read other 12 answers
RELEVANCY SCORE 77.2

what programs are there so certain people are blocked from deleting files. like you need a password and such. thanks.
 

A:Block access to delete files??

Read other 8 answers
RELEVANCY SCORE 76.4

In windows XP Home, how do you clear the block sender list?
 

A:Solved: Delete Block Sender List

If it's Outlook Express, Tools>Messages>Block Senders.
Highlight the names and click Remove.
 

Read other 3 answers
RELEVANCY SCORE 75.6

Over the last few months my msn has been blocking and deleteing people at random and for no reason. These are people I would never dream of blocking and deleteing. I really need this problem fixed as soon as possiable, my msn contacts list is getting so small now and i'm loosing most of my contacts off msn. It has been doing the same thing on my two old msn accounts I hardly ever use and my mums msn account aswell. It's really really annoying that whenever I go online I will have to scroll down unblocking everyone who it's decided to block at random. My msn deletes about 10 people on adverage per week. Sometimes it will also change my status for me just very slightly by like putting the odd word or two in it thats not supposed to be there. On all of the accounts i've mentioned I changed the password twice and the security question so it shouldn't be someone else going into my account.

Last problem is that I have to send some of my messages more than once to friends as they think i'm not replying or ignoring them when i'm not it's actually because my messages aren't all going through. How can I fix this also?

Please help as soon as possiable!!

Thank you

A:My msn is randomly blocking and deleteing people I would never block or delete

Even though you've changed passwords, it still sounds as though you've been hacked. A new MSN account might be the answer. Also:

You might be infected. Go to our site:
NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help - Tech Support Forum
and follow the instructions

Read other 3 answers
RELEVANCY SCORE 75.6

Hi all,

I installed this software and it wont let me delete it. by an accident i let it access the internet when norton asked me if i wanted to allow this programe. when go to add or remove programes it only gives me the option to re direct to a web page. Does anyone know how i can stop the notification popups and stop this programe accessing the net by norton or anyother means??

Thank you for your time

Scottline
 

A:I cannot delete or remove programe, and dont know how to get norton to block it from

Read other 7 answers
RELEVANCY SCORE 74.8

Hi,

I create a Public Folder (Task Items) in Outlook 2003 and then attach one Excel Sheet in it.

I am the OWNER of the folder.

If I just click on the attachment and press the DEL button then the file gets DELETED.

I don't want that to happen. I want to BLOCK my rights of DELETING THE attachment.

How should I go about it?

Regards,

Yps
 

A:Outlook 2003 - Public Folders - Block DELETE Permission

If you are indeed the owner of this folder then you should be able to right-click on i and go to permissions. From here you can give users certain rights and permissions. I would give the users reviewer rights if you just want them to read the e-mails and attached items as well.
 

Read other 3 answers
RELEVANCY SCORE 73.2

This Vundo trojan seems to be real "popular" right now. How do I keep this off of my families computers in the future? Is there a good program that will block malware such as this?
 

A:How to block the Vundo trojan

Make sure your anti-virus and anti-spyware programs are up to date. Also an active firewall helps. And most importantly, be sure that Java is the latest version.
 

Read other 3 answers
RELEVANCY SCORE 72.4

Just installed Norton Firewall and that is the first thing that popped up

Sounds awful, what do I need to do?
 

A:Default Block Rat Trojan Alert

Read other 6 answers
RELEVANCY SCORE 72.4

I hear blocking popups is not a good practice. I also hear blocking popups is not a bad idea. Which is it, which is correct? why or why not? Why do you block it or why you do not block popups?? thank you. YOYO.

A:To Block Or Not Block Popups

Popups are the leprosy of the internet.
I use Firefox, which blocks almost every one of them.
Regards,
John

Read other 12 answers
RELEVANCY SCORE 72

I need to block/hide/disable in the control panel the option "Change Adapter Settings". I have a DHCP server and I dont want my users configure a network adapter with a fixed ip.

I am looking for registry section or a directive that makes the trick.

Thanks in advance.

A:How can I block in Control Panel the option "Change Adapter Settings"

I found this software, but I wonder how it is made the trick.

I need to apply "it" throw an in-house application.

Edit Windows 7 Registry Software, Customize Windows XP Registry Settings, Tweak Registry Editor

Read other 2 answers
RELEVANCY SCORE 71.6

Hi Everyone.

I own a Computer Support Shop. I'm always Re-installing Windows, and downloading neccessary drivers for each client, but, I know that there are Viruses that can spread through the network.

And every computer I fix here, connects to the internet to install updates, but I want to know how can I give access to that computer to the internet, but not to the other computers.

I know that one fix could be Firewalls and stuff, but still, I wish that computers could be in totally seperate Networks. And some computer that are part of different workgroups can still see each other.

Any ideas?

Thanks everyone.
 

A:How to block this Virus

Read other 6 answers
RELEVANCY SCORE 70.8

About ever week when Yahoo messager is running and I get an Norton AntiVirus alert about it stoping a worm intrusuin attempt:

Security rule: Default Block Back Orifice 200 Trojan horse
Date: 4/6/2005
Time: 3:23 PM
Path: N/A
File name: Inbound
Local address: 69.170.173.76
Local port: Back-Orifice (31337)
Remote address: 200.42.210.178
Remote post: 4043
Protocol: TCP
Why and how is a worm trying to get to my computer? Is it from Yahoo? How can I stop this from happening again? What could it do if Norton didn't stop it? Should I scan my computer with other virus protection programs too see if they could find the file in my comp thats cause this (if it is from my own computer)? Please help.
 

Read other answers
RELEVANCY SCORE 70.4

I clicked on a bad link from a friend in Facebook and got the hacker virus that won't let me download any new or existing virus/malware software..Been working on it for two days now and am getting frustrated. I changed my password and that seemed to stop all of the erroneous messages going out to my address book with the same BS links. HELP!

I'm on vista 5000+ DUAL CORE
 

Read other answers
RELEVANCY SCORE 70

Hello I've noticed firefox just freezing and closing and constantly getting pop-ups from kaspersky regarding trojan.bazon.a, I researched but was unable to find anything. Not sure if it's a false positive and want to be sure.
 
FRST.txt
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:03-05-2016
Ran by Otaku (administrator) on OTAKU-PC (03-05-2016 21:25:32)
Running from C:\Users\Otaku\Desktop
Loaded Profiles: Otaku (Available Profiles: Otaku)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Pro... Read more

A:Getting repeated block and termination attempts by Kaspersky for trojan.bazon.a

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===Press the windows key + r on your keyboard at the same time. This will open the RUN BOX.Type Notepad and and click the OK key.Please copy the entire contents of the code box below to the a new file. start
CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2789770682-650711170-1363533497-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2789770682-650711170-1363533497-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=COSP&ptag=D043016-AD42D1DB7E9&form=CONMHP&conlogo=CT3334497
SearchScopes: HKU\S-1-5-21-2789770682-650711170-1363533497-1000 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin HKU\S-1-5-21-2789770682-650711170-1363533497-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [No File]
CHR HKU\S-1-5-21-2789770682-650711170-1363533497-1000\SOFTWARE\Google\Chrome\Extensions\...\Ch... Read more

Read other 2 answers
RELEVANCY SCORE 70

Hello all - my first post and I'm afriad it's to ask for help! I've picked up a virus which redirects my google links to ads or other searches. My windows defender picks up a TrojanDownloader:win32/renos.io but can't seem to get rid of it. also, I don't seem to be able to load any anti-malware software onto my computer as I think it is basically blocking all .exe files from running - could this be unconnected? Not sure. any suggestions. My log's pasted below and other scans attached.
Thanks in advance for your help!
DDS (Ver_09-07-30.01) - NTFSx86
Run by Martin at 17:25:23.21 on 18/08/2009
Internet Explorer: 8.0.6001.18783 BrowserJavaVersion: 1.6.0_11
Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.44.1033.18.1982.970 [GMT 1:00]

AV: Norton Internet Security *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: Norton Internet Security *enabled* (Updated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A}
FW: Norton Internet Security *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetw... Read more

A:Google redirect virus & .exe block

Hello Shpies,Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version Java components and update. Please download Java Version 6 Update 15
Click the "Free Java Download" button.
Click "Free Java Download" again
Save the file jxpiinstall.exe to your desktop
Close any programs you may have running - especially your web browser.
Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
Examples of older versions in Add or Remove Programs:
Java™ 6 Update 11
Java™ 6 Update 2

Check any item with Java Runtime Environment (JRE or J2SE) in the name.
Click the Remove or Change/Remove button.
Repeat as many times as necessary to remove each Java versions.
Reboot your computer once all Java components are removed.
Then from your desktop double-click on jxpiinstall.exe to install the newest version.**********************We need to disable your Windows Defender Real-time Protection as it may interfere with the fixes that we need to make. Open Windows Defender. Click on Tools, General Settings. Scroll down and uncheck Turn on real-time protection (recommended). After you uncheck this, click on the Save button and close Windows Defender.After all of the fixes are... Read more

Read other 6 answers
RELEVANCY SCORE 70

Hi, my sister has been downloading alot of stuff through p2p on my laptop and now i believe it has the host block virus. i am able to use the net just not sighn into many sites like ebay. i also cant update adaware or anyother antivirus. the computer had nortans antivirus and web security 2004 but at the same time the virus came in the subscription ran out 4 both and with host block blocking me from their update server i am unable 2 renew it. Does anyone know a fix maybe a patch or sumthing 2 kill this virus? i am trying to avoid formating the hdd if i can as i have alot of work saved and programs.

Any help will be apresciated/

>>>WIRE<<<
 

A:Trying to rid computer of host block virus

Read other 7 answers
RELEVANCY SCORE 70

well i had block-checker and some other viruses, but i think i got them all, i just want to know if my computer is finally clean. a while ago i orphaned a virus in my registry(cause i couldnt get it with any of the free spyware or virus removers) and now my computer runs awsome, less than a minute to boot, counting selecting my user from the login screen. im kind of an idiot savant when it comes to computers. well i will post my hjt log now. what is the deal with the yahoo entries in the logfile and the nonames and browser helper objects, can i delete those? thanks alot in advance.

A:had block-checker virus and others, is it clean now?

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a description of your problem, along with any steps you may have performed so far.Upon completing the steps below a staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explanation about the tool. No input is needed, the scan is running.Notepad will open with the results, click no to the Optional_ScanFollow the instructions that pop up for posting the results.Close the program window, and delete the program from your desktop.Please note: You may have to disable a... Read more

Read other 2 answers
RELEVANCY SCORE 70

Thanks again Microsoft... Want to get rid of a malware and seems it can even block the reboot of my W10 !!!???? Tried 3 times and stop at 53%. My problem is a missing or corrupt dnsapi.dll file by the way....

Read other answers
RELEVANCY SCORE 70

I too have seen phishing attempts to infect my pc with an email subject something like

Order to Appear Federal Court.
It should be obvious this is a phishing attempt as court orders do not arrive via email, but rather using a legal process server delivering the document to you in person to your home or work address.

The subject is intentionally written to invoke panic in the reader (OMG!) and enough adrenaline to get to click and read. If you open the attachment - - you've been suckered and infected.

After seeing two or three of these, I automated the delete using an email filter like

sender contains lawyers.com action delete
How did I find the origin of the email? Using tools, I saved the email to disk without opening it in my email reader. Once on the disk, you can open with NOTEBOOK; Launch notebook and drag-n-drop the email into it.

reading raw email is - - arduous, but look for

To: <your-email-address>
From: [email protected]
Subject: the phishing email title ​
The from line always varies but always ends in lawyers.com
 

A:Use email filter to block DOJ Virus

You may man have went farther. Then I would venture. I just delete them.
 

Read other 1 answers
RELEVANCY SCORE 70

this virus question is by skrillexfan247 because i want to know, ok?

Read other answers
RELEVANCY SCORE 70

I tried to install Jing and the site appeared to be softsonic, and I was moving so fast that I didn't pay much attention. Upon the uninstall of Jing a lot of applications were added to my computer with a message that since I uninstalled I had agreed to them.

I could not access the internet due to it saying my proxy server isn't responding. It stated that I couldn't connect because the main proxy settings did not match the internet proxy settings. I looked around as I do not use a proxy and removed it. I was able to get online and I googled the error. I found a site where many users had the same issues and lots got the issue removed by following their instructions.

I followed these instructions and downloaded those programs as well. (changed to hxxp as suggested)
hxxp://malwaretips.com/blogs/the-proxy-server-isnt-responding-removal/

I no longer have the internet issues but pop ups still persist and on my main screen the darn proxy info is still there. I am including pics of what I speak of. I was able to run gmer once and including pics for the 2 errors I received when running it. I did not save the file correctly and when trying to run it again it gives another error about system being in use (including pic) and then it closes.















Here is the FRST info as I have windows 8.1



Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-02-2015
Ran by wonetta (administrator) on TAMIASKY on 16-02-2015 07:09:06
Running from... Read more

A:Obrona Block Ads/Proxy Virus?

Hi WPatton,

I am currently reviewing your logs and I will be back with further instructions as soon as possible.

Read other 12 answers
RELEVANCY SCORE 69.6

I have been told by one of our customers that they have used EMET 5 to help with blocking crypto locker and crypto wall virus. Although I have found it very useful I have not found anything that can help me with configuring or what I need to do . Is there
any documentation out there, that I have missed yet, that can help me.

Read other answers
RELEVANCY SCORE 69.6

OK, I was told to run dds.scr and gmer.exe. Here are the results.
I've attached ark.zip and attach.zip

I bought a laptop of ebay, at first I could access the internet OK by installing Mozilla firefox and Proxim wifi card, then 2 weeks later, I had problems. I think the previous owner sold it because he could not fix the virus problem. I did install and delete Comodo Firewall (browsing was so slow after Comodo install), then install FireZone alarm. This is HP Omnibook 900, no CD drive, no floppy drive. Windows XP Home, File system is FAT32, so every user account is an administrator.
I could get into yahoo.com, but when I click on a link, it open yahoo.com/8 inches of garbled text and displayed no page found. Same thing with gmail, cnn. I could get into the main page and then anything after that, link would be "page not found" error. I could get into ebay OK at first, but not anymore. If I delete all browsing history and type yahoo, it will find yahoo again, but it will display the same error when I click on a link. Spybot program cannot load and Malwarebytes full scan stated no virus found. I mainly surf and update websites, and I"m using the library computer right now. What to do?

This is the DDS.txt content


DDS (Ver_09-07-30.01) - FAT32x86
Run by Joe at 18:42:01.84 on Mon 09/21/2009
Internet Explorer: 7.0.5730.11
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.191.55 [GMT -6:00]


============== Running Processes =============... Read more

A:Virus block access to internet - HP omnibook

Bumped topic, can somebody take a look at the log and tell me what to do next. Thanks

Read other 7 answers
RELEVANCY SCORE 69.6

Only 9 of 22 virus scanners block Java exploit - The H Security: News and Features

A:Only 9 of 22 virus scanners block Java exploit

Oracle is a dumb shit.They would release a patch after millions of PC gets affected.

Read other 5 answers
RELEVANCY SCORE 68.8

ive been having tons of outgoing emails i havent sent and symantec has brought scanning email popups by the hundreds trying to stop them
please help
this all started with dl from a site and at first i also had many popups please help

StartupList report, 6/7/2007, 12:49:23 PM
StartupList version: 1.52.2
Started from : C:\Documents and Settings\hiei\Desktop\HiJackThis_v2.EXE
Detected: Windows XP SP2 (WinNT 5.01.2600)
Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180)
* Using default options
==================================================

Running processes:

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\hie... Read more

A:virus that sends outgoing mail that symantec tries to block

1. Download this file -> http://download.bleepingcomputer.com...a/ComboFix.exe

2. Double click on combofix.exe & follow the prompts.

3. When finished, it shall produce a log for you. Post that log & a fresh HJT log in your next reply

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Read other 6 answers
RELEVANCY SCORE 68.8

my comp has been infected with a seemingly dangerous virus....SSVICHOSST thru a pendrive.........!!

saw a few forums here but cant post comments on them i dunno why??

i read cookiegal clear muhai's comp from a forum !!

i need help urgently. I am not very adept to using these softwares like FixMU and HijackThis........ saw there reference on these forums so downloaded them. plz give a step by step guidance to remove this prob !! PLZ

I'm a b-school student and need to make presentations in day after tomo. but the campus network wont connect me on coz of this virus prob !!

here's my HijackThis log text...........plz help !! I AM DESPERATE !!


Logfile of HijackThis v1.99.1
Scan saved at 7:53:41 PM, on 9/1/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5700.0006)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe
C:\WINDOWS\system32\spoolsv.exe
D:\Contents\INSTALLED SOFTWARES\Disk Keeper 10\DkService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe
C:\Program Files\Analog Devic... Read more

A:Solved: SSVICHOSST........HELP !! PLZZZZ HELP !! newest virus on the block !!

Read other 12 answers
RELEVANCY SCORE 68.8

every 24 hours Comodo Firewall window pops up asking if I want to allow IORRT.bat to make changes to my system. I ignore it because I don't know what it is. Googling IORRT.bat just brings up a bunch of Google deleted US Digital Millennium Copyright Act results (like 5 per page) and what is on Google are spam results. nothing on Google tells me what IORRT.bat is or if it is safe or virus!! it seems there is no information on it whatsoever!! Comodo blocks everything and asks me to allow but idk about this one

any suggestions?

A:Comodo finds IORRT.bat and asks me block or allow, is it a virus?

Comodo has a habit of blocking or sandboxing anything it doesn't trust. Example: I write my own batch file and run it. It will be sandboxed unless I create an exclusion rule for it.

What you might do:

Search for and locate the file. Right click and choose Edit or Open With > Notepad.

Copy and paste the text shown into a reply and someone will take a look at it.

Read other 2 answers
RELEVANCY SCORE 68.8

Microsoft Security Essentials has been blocked by the virus inducing the firewall.
Even if I type virus security into chrome the virus crashes the browser.
It gives warnings about the danger hardware damage.

A:Virus prevents internet access, block antivirus.

Hello ramendra and welcome to Seven Forums.

It sounds like you're going to have to use a malware scanner that can start its scan before Windows 7 boots. Microsoft has a free tool called Windows Defender Offline (not to be confused with the Windows Defender that might have been bundled with Windows 7.) It's suggested that the scan media be created on a computer that is malware free.

What is Windows Defender Offline?

Read other 1 answers
RELEVANCY SCORE 68.8

Hello -

I'm hoping that someone will be able to assist me with a recent intrusion that I am experience on my computer.
My next resort is attempting to reformat the entire computer, if this can not be resolved through your help.

But the level of expertise I have seen on this site seems promising

Thanks, in advance for any suggestions/assistance you can provide!

BlueGuardian

Symptoms:
1. Unable to open Internet Explorer Browser intermittently (Currently using Firefox as default browser)
2. Unable to access the Windows Update Site to check/download current updates - Windows update url is blocked
3. Intermittent tabs opening to various search sites when using Firefox
4. Re-direction to bogus search sites/links (mydealmatch [dot] com, asktofriends [dot] com], get-results-search [dot] com, etc.)
5. Have tried various Malware, and AntiVirus softwares (AVG currently running) - All report that no viruses are found
6. Search results page seems to only affect the first page of sites listed, If i go to the second or third page of search results
and select a link the url seems to be valid link.
7. Regular operation of the computer seems normal, but I do notice a slowness on initial start-up and during shutdown processes only.

Computer:
Windows XP Professional 2002 SP3, HP Compaq w/ 4GB Memory

Output from DDS Script Below (Also including as an attachment (attach.zip) and the output from the GMER request (ark.txt):

DDS (Ver_10-10-10.03) - N... Read more

A:Unknown Virus Causes Redirection and Windows Update Block

Hello BlueGuardianWelcome to BleepingComputer ==========================One or more of the identified infections is a backdoor trojan or rootkit.This type of infection has the capabilities to allows hacker to remotely control your computer, steal critical system information and download and execute files.I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.Though the trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:How Do I Handle Possible Identity Theft, Internet Fraud and CC Fraud?When Should I Format, How Should I ReinstallWe can still clean this machine but I can't guarantee that it will be 100% secure afterwards. Let me know what you decide to do.If you still want to clean it please do the following===================Download TDSSKiller and save it to your Desktop.Extract its contents to your desktop.Once ex... Read more

Read other 1 answers
RELEVANCY SCORE 68.8

Hi guys,

For some strange reason I can not upload videos on Youtube anymore from my laptop. I used to be able to do it without problems until one day I could not. I don't know why. I don't remember changing any settings on my computer or within the anti virus itself. Maybe I did something by mistake,because otherwise I have no explanation.
What happens is: I select my video from the computer ( the right MB size and format...avi. file) just like before and I click "upload video". the upload initializes and the blue percentage bar goes up fast up to a certain number ( x%) after which it freezes there and the upload wont proceed any further.

I thought that it might be a web site issue,so I tried uploading the same videos from a different computer and I was successful. Obviously there is nothing wrong with my clips nor with my you tube account. It must be something on my laptop. I use Vista Ultimate as operating system and Kaspersky 6.0

I even tried turning off the firewall but I still could not upload.

Can someone help me out on this one? Any ideas as to what might be wrong? I include here a screen shot so you might see what I'm talking about. It froze at 56% and good bye uploading....
 

A:> Does my anti virus program block uploading videos?

Well how about telling us what program you're using. A lot of stuff has Anti-Virus and Firewalls built in together. This type of behavior would not typically happen with an Anti-Virus program, but is totally possible if you're running a firewall you're not familiar with.
 

Read other 1 answers
RELEVANCY SCORE 68.8

Hi everybody,

I seem to be the second user having this problem : some when yesterday evening a file called "hunizeakezif.exe" made its way onto my system... now it's asking all the time for permission to modify settings on my computer (I'm on windows 7) and I always click "no".

But I cannot remove this file, just like Damien (see below).

Please help me remove the file. I have already tried to use File Assassin on it, and it didn't bring anything : /


Quote:




Hello,

I made the mistake of going to a website last night on a work computer that put a thing called hunizeakezif.exe on the computer.

I am worried that it will get traced back to me if I don't get it removed or at least quarantined.

I looked up the name of it (and that is spelled correctly hunizeakezif.exe) and nothing came up. Our work uses symantec anti-virus. This exe file icon looks like the cap from a bottle of Heineken beer. It is 98.9kb in size. Our computers run XP.

If anyone knows about how I can remove this file (It wouldn't allow me to drag to the recycle bin or delete or cut and paste to a flashdrive), I would appreciate their help.

If you need more to go on, I'll be more than happy to give more detail.
Thanks,
Damian




http://www.techsupportforum.com/foru...al-660001.html

A:hunizeakezif.exe : fresh new virus on the block? (another user infected) please help

Ok update : this is getting more and more interesting by the hour : now the file has vanished ?! I don't know if that's a good or bad sign... It's not in the directory where it was just a few minutes ago and I have searched the computer for it and it's nowhere to be found...

What do you suggest? Please, I'd really appreciate some help. Thank you

Read other 2 answers
RELEVANCY SCORE 68

**** BACKGROUND INFO ****

My e-mail client is Windows Live Mail Version 2009 (Build 14.0.8064.0206).

I've used various versions of this software for several years. I use it only to handle e-mail from four different hotmail.com e-mail accounts.

I have set the following safety options:

(1) Safe List Only

(2) Report junk e-mail to Microsoft and its partners

(3) Bounce the blocked messages back to the sender (when I click the "Delete and block" link on messages)

(4) If the e-mail is a mailing list, unsubscribe me from the mailing list (when I click the "Delete and block" link on messages)

My PC is a TOSHIBA laptop (P100-ST9612) running MS Windows XP Home Edition 2002 Service Pack 3, current with all critical updates. Intel Duo-Core CPU T2600 at 2.16GHz and 3GB RAM recognized out of 4GB RAM installed.

**** MY ISSUE ****

When I click the "Delete and block" link on an e-mail message, no e-mail address is added to the Blocked Senders list.

The Blocked Senders list remains empty.

I've discovered that I can manually add senders' e-mail addresses to the Blocked Senders list using the following menu selections.

Actions > Junk e-mail > Add sender to blocked senders list

**** MY TROUBLESHOOTING SO FAR ****

Security wipe of hard drive, followed by restoring known-good baseline image via Linux boot disk and drive-image software

Updating everything recommended from the Windows Update web site

Reinstalling... Read more

A:Windows Live Mail "Delete and block" Feature Seemingly Broken

Perhaps, this issue is a function of Microsoft's hotmail.com service versus a glitch in the Windows Live Mail software.

The "Delete and block" link has added e-mail addresses to the Blocked Senders list in the distant past.

Read other 1 answers
RELEVANCY SCORE 68

Hi,

I was on my browser one minute and the next thing i know, my computer was infected with a virus. It first closed programs i was running and then it hide all my files and made my computer slow. The first thing did was system restore, it didnt work. It worked after i restarted my computer and start up task manager to shut off some random letter/number exe. System restore didnt do much, i looked up my problem on another computer and follow those instruction to run unhide.exe then rkill.exe and run my malwarebyte and other programs. This some of the virus.

Right now, my browser have the re-direct thingy and avast keep blocking some malicious URL that is from either explorer.exe or scvhost.exe. My PC is running really slow everything takes forever to load up, start up takes long, every program takes very long to start up, explorer.exe is using a lot of memory. TDSSKiller wont start up.

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7600.16700 BrowserJavaVersion: 10.7.2
Run by AFD at 13:16:06 on 2012-11-23
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3895.1967 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
AV: Avira Desktop *Enabled/Outdated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Enabled/Outdated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Microsoft Security Essentials *Enabled/Updated... Read more

A:Virus block TDSSKiller, Make PC slow and Google Redirect

Please do the following:Download the appropriate version for your system of the Farbar Recovery Scan Tool and save it to a flash drive.Plug the flashdrive into the infected PC.Enter System Recovery Options. To enter System Recovery Options from the Advanced Boot Options:Restart the computer.As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.Use the arrow keys to select the Repair your computer menu item.Choose your language settings, and then click Next.Select the operating system you want to repair, and then click Next.Select your user account and click Next.To enter System Recovery Options by using Windows installation disc:Insert the installation disc.Restart your computer.If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.Click Repair your computer.Choose your language settings, and then click Next.Select the operating system you want to repair, and then click Next.Select your user account an click Next.On the System Recovery Options menu you will get the following options:Startup RepairSystem RestoreWindows Complete PC RestoreWindows Memory Diagnostic ToolCommand Prompt[*]Select Command Prompt[*]In the command window type in notepad and press Enter.[*]The notepad opens. Under File menu select Open.[*]Select "Computer" and find your flash drive letter and close the notepad.[*]In the command window type e:\frst.e... Read more

Read other 16 answers
RELEVANCY SCORE 68

All the info I have read on line talks about clicking the 'block andd delete' button. I don't have one! Can someone tell me where it is?

A:Windows Live Mail "Block and Delete"

  
Quote: Originally Posted by hornplayer


All the info I have read on line talks about clicking the 'block andd delete' button. I don't have one! Can someone tell me where it is?


I think you have to wait until you get a piece of junk email that was put in to the Junk email folder automatically by WLM. Then open it and choose that option which appears at the top.

Read other 9 answers
RELEVANCY SCORE 66

When I "delete and block" an email, I check the blocked list in WLM 2011 and it doesn't show up. If I add an email address to the block list, it just disappears. What's up? Thanks for your help.

A:"delete and block " in WLM 2011

This may be related to a bug in 2011 where the Junk Mail filter doesn't work properly until you do a "repair install" of 2011 via "Programs and Features".

Read other 2 answers