Windows Support Forum

"Your System Is Infected" Background + "Internet Security 2010" virus/malware problem

Q: "Your System Is Infected" Background + "Internet Security 2010" virus/malware problem

Got my computer back today "Your Security + Infected" "Internet 2010" problem System Is virus/malware Background Windows XP and my background is now all green with a black box in the middle saying quot Your System Is Infected etc quot Also a red circle with a white X in the task bar I can t open the task manager Can Anyone Help Downloaded HiJackThis My log "Your System Is Infected" Background + "Internet Security 2010" virus/malware problem Logfile of Trend Micro HijackThis v Scan saved at "Your System Is Infected" Background + "Internet Security 2010" virus/malware problem AM on Platform Windows XP "Your System Is Infected" Background + "Internet Security 2010" virus/malware problem SP WinNT MSIE Internet Explorer v Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C Program Files Intel Wireless Bin EvtEng exe C Program Files Intel Wireless Bin S EvMon exe C WINDOWS system spoolsv exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C PROGRA AVG AVG avgwdsvc exe C Program Files Bonjour mDNSResponder exe C Program Files TOSHIBA ConfigFree CFSvcs exe C WINDOWS system dlcqcoms exe C PROGRA AVG AVG avgrsx exe C WINDOWS system DVDRAMSV exe C PROGRA AVG AVG avgnsx exe C WINDOWS eHome ehRecvr exe C WINDOWS eHome ehSched exe C WINDOWS Explorer EXE C WINDOWS system ctfmon exe C Program Files TOSHIBA TOSHIBA Controls TFncKy exe C WINDOWS system TDispVol exe C Program Files Synaptics SynTP SynTPEnh exe C WINDOWS system igfxtray exe C WINDOWS system hkcmd exe C WINDOWS system igfxpers exe C WINDOWS ehome ehtray exe C Program Files Toshiba Toshiba Applet thotkey exe C Program Files Synaptics SynTP Toshiba exe C Program Files Synaptics SynTP SynTPLpr exe C Program Files ltmoh Ltmoh exe C WINDOWS AGRSMMSG exe C Program Files TOSHIBA ConfigFree NDSTray exe C Program Files Toshiba Tvs TvsTray exe C Program Files Intel Wireless Bin RegSrvc exe C Program Files TOSHIBA TOSHIBA Zooming Utility SmoothView exe C WINDOWS system dla DLACTRLW exe C Program Files Intel Wireless bin ZCfgSvc exe C Program Files Intel Wireless Bin ifrmewrk exe C Program Files Dell Photo AIO Printer dlcqmon exe C Program Files Dell Photo AIO Printer memcard exe C Program Files Common Files InstallShield UpdateService issch exe C WINDOWS system TPSBattM exe C WINDOWS system svchost exe C Program Files TOSHIBA ConfigFree CFSServ exe c TOSHIBA IVP swupdate swupdtmr exe C Program Files TOSHIBA TOSHIBA Applet TAPPSRV exe C Program Files QuickTime QTTask exe C WINDOWS system winupdate exe C PROGRA AVG AVG avgtray exe C Program Files Viewpoint Common ViewpointService exe C Program Files iTunes iTunesHelper exe C Program Files Corel Corel Photo Album MediaDetect exe C Program Files TOSHIBA TOSCDSPD toscdspd exe C Program Files AIM aim exe C Program Files MP Player mp Player exe C Program Files Yahoo SoftwareUpdate YahooAUService exe C Program Files InternetSecurity IS exe C Program Files Adobe Acrobat Reader reader sl exe C Program Files McAfee Security Scan SSScheduler exe C WINDOWS system wuauclt exe C WINDOWS system RAMASST exe C Program Files Cisco Systems Clean Access Agent CCAAgent exe C Program Files Internet Explorer iexplore exe C WINDOWS system dllhost exe C WINDOWS eHome ehmsas exe C Program Files iPod bin iPodService exe C Program Files Internet Explorer iexplore exe C PROGRA Intel Wireless Bin Dot XCfg exe C Program Files AIM aolsoftware exe C PROGRA Yahoo Messenger ymsgr tray exe C Program Files Internet Explorer iexplore exe C Program Files Trend Micro HijackThis HijackThis exe R - HKCU Software Microsoft Internet Explorer Main Default Page URL http www yahoo com fr fp-yie R - HKCU Software Microsoft Internet Explorer Main Start Page http www yahoo com fr fp-yie R - HKLM Software Microsoft Internet Explorer Main Default Page URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Default Search URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Search Page http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Start Page http go microsoft com fwlink LinkId R - HKCU Software Microsoft Internet Connection Wizard ShellNext http www toshibadirect com dpdstart R - HKCU Software Microsoft Internet Explorer Main Window Title Windows Internet Explorer provided by Yahoo R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyOverride local R - URLSearchHook AVG Security Toolbar BHO - A BC A - F - -AA - D C - C Program Files AVG AVG Toolbar IEToolbar dll F - REG system ini UserInit C WINDOWS system winlogon exe O - BHO amp Yahoo Toolbar Helper - D -C F - efb- B - ECA - C Program Files Yahoo Companion Installs cpn yt dll O - BHO Adobe PDF Reader Link Helper - E F-C D - D -B D- B D BE B - C Program Files Adobe Acrobat ActiveX AcroIEHelper dll file missing O - BHO Skype add-on mastermind - BF B-C D - d - A -A F BA C - C Program Files Skype Toolbars Internet Explorer SkypeIEPlugin dll O - BHO WormRadar com IESiteBlocker NavFilter - CA F - F E- B -A E- E E C C - C Program Files AVG AVG avgssie dll O - BHO DriveLetterAccess - CA D E- - CF- E - - C WINDOWS System DLA DLASHX W DLL O - BHO AVG Security Toolbar BHO - A BC A - F - -AA - D C - C Program Files AVG AVG Toolbar IEToolbar dll O - BHO Google Toolbar Helper - AA ED - DD- d - -CF F - C Program Files Google Google Toolbar GoogleToolbar dll O - BHO Google Toolbar Notifier BHO - AF DE - D - -B FA-CE B AD D - C Program Files Google GoogleToolbarNotifier swg dll O - BHO Google Dictionary Compression sdch - C D FE-E D- -BB - C E E C E - C Program Files Google Google Toolbar Component fastsearch A FB BD dll O - BHO SingleInstance Class - FDAD DA - A - FD - C - F AC - C Program Files Yahoo Companion Installs cpn YTSingleInstance dll O - Toolbar Yahoo Toolbar - EF BD -C FB- D - F- D F - C Program Files Yahoo Companion Installs cpn yt dll O - Toolbar Google Toolbar - C B - - d - B - A CD F - C Program Files Google Google Toolbar GoogleToolbar dll O - Toolbar AVG Security Toolbar - CCC A -B CA- -B A - F DD - C Program Files AVG AVG Toolbar IEToolbar dll O - HKLM Run TFncKy TFncKy exe O - HKLM Run TDispVol TDispVol exe O - HKLM Run SynTPEnh C Program Files Synaptics SynTP SynTPEnh exe O - HKLM Run igfxtray C WINDOWS system igfxtray exe O - HKLM Run igfxhkcmd C WINDOWS system hkcmd exe O - HKLM Run igfxpers C WINDOWS system igfxpers exe O - HKLM Run ehTray C WINDOWS ehome ehtray exe O - HKLM Run THotkey C Program Files Toshiba Toshiba Applet thotkey exe O - HKLM Run SynTPLpr C Program Files Synaptics SynTP SynTPLpr exe O - HKLM Run LtMoh C Program Files ltmoh Ltmoh exe O - HKLM Run AGRSMMSG AGRSMMSG exe O - HKLM Run NDSTray exe NDSTray exe O - HKLM Run Tvs C Program Files Toshiba Tvs TvsTray exe O - HKLM Run TPSMain TPSMain exe O - HKLM Run PadTouch C Program Files TOSHIBA Touch and Launch PadExe exe O - HKLM Run SmoothView C Program Files TOSHIBA TOSHIBA Zooming Utility SmoothView exe O - HKLM Run dla C WINDOWS system dla DLACTRLW exe O - HKLM Run Pinger c toshiba ivp ism pinger exe run O - HKLM Run IntelZeroConfig quot C Program Files Intel Wireless bin ZCfgSvc exe quot O - HKLM Run IntelWireless quot C Program Files Intel Wireless Bin ifrmewrk exe quot tf Intel PROSet Wireless O - HKLM Run FaxCenterServer quot C Program Files Dell PC Fax fm exe quot s O - HKLM Run dlcqmon exe quot C Program Files Dell Photo AIO Printer dlcqmon exe quot O - HKLM Run MemoryCardManager quot C Program Files Dell Photo AIO Printer memcard exe quot O - HKLM Run ISUSScheduler quot C Program Files Common Files InstallShield UpdateService issch exe quot -start O - HKLM Run DLCQCATS rundll C WINDOWS System spool DRIVERS W X DLCQtime dll email protected O - HKLM Run Windows Defender quot C Program Files Windows Defender MSASCui exe quot -hide O - HKLM Run CFSServ exe CFSServ exe -NoClient O - HKLM Run QuickTime Task quot C Program Files QuickTime QTTask exe quot -atboottime O - HKLM Run ISUSPM Startup quot C Program Files Common Files InstallShield UpdateService isuspm exe quot -startup O - HKLM Run AVG TRAY C PROGRA AVG AVG avgtray exe O - HKLM Run iTunesHelper quot C Program Files iTunes iTunesHelper exe quot O - HKLM Run Corel Photo Downloader C Program Files Corel Corel Photo Album MediaDetect exe O - HKLM Run gabivopop Rundll exe quot c windows system dewezuwa dll quot a O - HKLM Run winupdate exe C WINDOWS system winupdate exe O - HKCU Run ctfmon exe C WINDOWS system ctfmon exe O - HKCU Run TOSCDSPD C Program Files TOSHIBA TOSCDSPD toscdspd exe O - HKCU Run swg C Program Files Google GoogleToolbarNotifier GoogleToolbarNotifier exe O - HKCU Run Aim quot C Program Files AIM aim exe quot d locale en-US ee aol imApp O - HKCU Run MP Player quot C Program Files MP Player mp Player exe quot hmw O - HKCU Run Messenger Yahoo quot C PROGRA Yahoo Messenger YahooMessenger exe quot -quiet O - HKCU Run Skype quot C Program Files Skype Phone Skype exe quot nosplash minimized O - HKCU Run Internet Security C Program Files InternetSecurity IS exe O - HKUS S- - - Run DWQueuedReporting quot C PROGRA COMMON MICROS DW dwtrig exe quot -t User SYSTEM O - HKUS DEFAULT Run DWQueuedReporting quot C PROGRA COMMON MICROS DW dwtrig exe quot -t User Default user O - Global Startup Adobe Reader Speed Launch lnk C Program Files Adobe Acrobat Reader reader sl exe O - Global Startup Clean Access Agent lnk C Program Files Cisco Systems Clean Access Agent CCAAgentLauncher exe O - Global Startup McAfee Security Scan lnk O - Global Startup RAMASST lnk C WINDOWS system RAMASST exe O - Extra context menu item E amp xport to Microsoft Excel - res C PROGRA MICROS OFFICE EXCEL EXE O - Extra button no name - B E C - FCB- CF-AAA - C - C Program Files Java jre bin npjpi dll O - Extra Tools menuitem Sun Java Console - B E C - FCB- CF-AAA - C - C Program Files Java jre bin npjpi dll O - Extra button no name - A B- - - AFE-EE C DA F - C Program Files Skype Toolbars Internet Explorer SkypeIEPlugin dll O - Extra Tools menuitem Skype add-on for Internet Explorer - A B- - - AFE-EE C DA F - C Program Files Skype Toolbars Internet Explorer SkypeIEPlugin dll O - Extra button Skype - BF - - EC - -D B E B - C Program Files Skype Toolbars Internet Explorer SkypeIEPlugin dll O - Extra button Research - B - CC- C -B BE- C C A - C PROGRA MICROS Office REFIEBAR DLL O - Extra button Real com - CD F -D E - d - FE- C F AFE - C WINDOWS system Shdocvw dll O - Extra button no name - e e dd -d - - b -f ba - C WINDOWS Network Diagnostic xpnetdiag exe O - Extra Tools menuitem xpsp res dll - - e e dd -d - - b -f ba - C WINDOWS Network Diagnostic xpnetdiag exe O - Extra button Messenger - FB F -F - d -BB E- C F - C Program Files Messenger msmsgs exe O - Extra Tools menuitem Windows Messenger - FB F -F - d -BB E- C F - C Program Files Messenger msmsgs exe O - IERESET INF START PAGE URL http www toshibadirect com dpdstart O - DPF CCA D- A - E -B - DEE D Facebook Photo Uploader Control - http upload facebook com controls v FacebookPhotoUploader cab O - HKLM System CCS Services Tcpip E FED -FA - B D- F- AB F FB NameServer O - HKLM System CCS Services Tcpip FE B BE-A - B-B A- D FFD A NameServer O - Protocol linkscanner - F C- F - D -A D -FBDDE F D - C Program Files AVG AVG avgpp dll O - Protocol skype com - FFC B - B - DFF- - C DD F D - C PROGRA COMMON Skype SKYPE DLL O - Filter x-sdch - B - EEC- C E-B F -B FE E - C Program Files Google Google Toolbar Component fastsearch A FB BD dll O - Winlogon Notify avgrsstarter - C WINDOWS SYSTEM avgrsstx dll O - SSODL zowiyajey - fae - ef - b -a - dbd - c windows system dewezuwa dll file missing O - SharedTaskScheduler jugezatag - fae - ef - b -a - dbd - c windows system dewezuwa dll file missing O - Service Apple Mobile Device - Apple Inc - C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe O - Service AVG Free WatchDog avg wd - AVG Technologies CZ s r o - C PROGRA AVG AVG avgwdsvc exe O - Service Bonjour Service - Apple Inc - C Program Files Bonjour mDNSResponder exe O - Service ConfigFree Service CFSvcs - TOSHIBA CORPORATION - C Program Files TOSHIBA ConfigFree CFSvcs exe O - Service dlcq device - - C WINDOWS system dlcqcoms exe O - Service DVD-RAM Service - Matsu a Electric Industrial Co Ltd - C WINDOWS system DVDRAMSV exe O - Service Intel R PROSet Wireless Event Log EvtEng - Intel Corporation - C Program Files Intel Wireless Bin EvtEng exe O - Service Google Software Updater gusvc - Google - C Program Files Google Common Google Updater GoogleUpdaterService exe O - Service Intuit Update Service IntuitUpdateService - Intuit Inc - C Program Files Common Files Intuit Update Service IntuitUpdateService exe O - Service iPod Service - Apple Inc - C Program Files iPod bin iPodService exe O - Service Intel R PROSet Wireless Registry Service RegSrvc - Intel Corporation - C Program Files Intel Wireless Bin RegSrvc exe O - Service Intel R PROSet Wireless Service S EventMonitor - Intel Corporation - C Program Files Intel Wireless Bin S EvMon exe O - Service Swupdtmr - Unknown owner - c TOSHIBA IVP swupdate swupdtmr exe O - Service TOSHIBA Application Service TAPPSRV - TOSHIBA Corp - C Program Files TOSHIBA TOSHIBA Applet TAPPSRV exe O - Service Viewpoint Manager Service - Viewpoint Corporation - C Program Files Viewpoint Common ViewpointService exe O - Service Yahoo Updater YahooAUService - Yahoo Inc - C Program Files Yahoo SoftwareUpdate YahooAUService exe -- End of file - bytes nbsp

https://forums.techguy.org/threads/your-system-is-infected-background-internet-security-2010-virus-malware-problem.889124/
Relevancy 100%
Preferred Solution: "Your System Is Infected" Background + "Internet Security 2010" virus/malware problem

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/directdownload.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Relevancy 194.99%

Got my computer back today Windows XP and my background is now all green with a black box in the middle saying quot Your System Is Infected etc quot Also a red circle with a white X in the task bar I can't open the task manager Can Anyone Help Downloaded HiJackThis My log Logfile of Trend Micro HijackThis v Scan "Internet Security System virus/malware "Your Infected" problem Background 2010" + Is saved at AM on Platform Windows XP SP WinNT MSIE Internet Explorer v Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe "Your System Is Infected" Background + "Internet Security 2010" virus/malware problem C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C Program Files Intel Wireless Bin EvtEng exe C Program Files Intel Wireless Bin S EvMon exe C WINDOWS system spoolsv exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C PROGRA AVG AVG avgwdsvc exe C Program Files Bonjour mDNSResponder exe C Program Files TOSHIBA ConfigFree CFSvcs exe C WINDOWS system dlcqcoms exe C PROGRA AVG AVG avgrsx exe C WINDOWS system DVDRAMSV exe C PROGRA AVG AVG avgnsx exe C WINDOWS eHome ehRecvr exe C WINDOWS eHome ehSched exe C WINDOWS Explorer EXE C WINDOWS system ctfmon exe C Program Files TOSHIBA TOSHIBA Controls TFncKy exe C WINDOWS system TDispVol exe C Program Files Synaptics SynTP SynTPEnh exe C WINDOWS system igfxtray exe C WINDOWS system hkcmd exe C WINDOWS system igfxpers exe C WINDOWS ehome ehtray exe C Program Files Toshiba Toshiba Applet thotkey exe C Program Files Synaptics SynTP Toshiba exe C Program Files Synaptics SynTP SynTPLpr exe C Program Files ltmoh Ltmoh exe C WINDOWS AGRSMMSG exe C Program Files TOSHIBA ConfigFree NDSTray exe C Program Files Toshiba Tvs TvsTray exe C Program Files Intel Wireless Bin RegSrvc exe C Program Files TOSHIBA TOSHIBA Zooming Utility SmoothView exe C WINDOWS system dla DLACTRLW exe C Program Files Intel Wireless bin ZCfgSvc exe C Program Files Intel Wireless Bin ifrmewrk exe C Program Files Dell Photo AIO Printer dlcqmon exe C Program Files Dell Photo AIO Printer memcard exe C Program Files Common Files InstallShield UpdateService issch exe C WINDOWS system TPSBattM exe C WINDOWS system svchost exe C Program Files TOSHIBA ConfigFree CFSServ exe c TOSHIBA IVP swupdate swupdtmr exe C Program Files TOSHIBA TOSHIBA Applet TAPPSRV exe C Program Files QuickTime QTTask exe C WINDOWS system winupdate exe C PROGRA AVG AVG avgtray exe C Program Files Viewpoint Common ViewpointService exe C Program Files iTunes iTunesHelper exe C Program Files Corel Corel Photo Album MediaDetect exe C Program Files TOSHIBA TOSCDSPD toscdspd exe C Program Files AIM aim exe C Program Files MP Player mp Player exe C Program Files Yahoo SoftwareUpdate YahooAUService exe C Program Files InternetSecurity IS exe C Program Files Adobe Acrobat Reader reader sl exe C Program Files McAfee Security Scan SSScheduler exe C WINDOWS system wuauclt exe C WINDOWS system RAMASST exe C Program Files Cisco Systems Clean Access Agent CCAAgent exe C Program Files Internet Explorer iexplore exe C WINDOWS system dllhost exe C WINDOWS eHome ehmsas exe C Program Files iPod bin iPodService exe C Program Files Internet Explorer iexplore exe C PROGRA Intel Wireless Bin Dot XCfg exe C Program Files AIM aolsoftware exe C PROGRA Yahoo Messenger ymsgr tray exe C Program Files Internet Explorer iexplore exe C Program Files Trend Micro HijackThis HijackThis exe R - HKCU Software Microsoft Internet Explorer Main Default Page URL http www yahoo com fr fp-yie R - HKCU Software Microsoft Internet Explorer Main Start Page http www yahoo com fr fp-yie R - HKLM Software Microsoft Internet Explorer Main Default Page URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Default Search URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Intern... Read more

A:"Your System Is Infected" Background + "Internet Security 2010" virus/malware problem

Hi and welcome to TSF.

I'm afraid HijackThis no longer provides the information we require.

We want all our members to perform the steps outlined in the link given below, as far as they possibly can, before posting for assistance.

http://www.techsupportforum.com/f50/...lp-305963.html

If you have problems with any of the steps, simply move on to the next one and make a note of the problem in your reply.

Please note that the Security Forum is always busy, so I would ask for your patience while waiting for a reply - it may take a few days.

This thread will now be closed.

http://www.techsupportforum.com/forums/f50/your-system-is-infected-background-internet-security-2010-virus-malware-problem-445923.html
Relevancy 132.37%

The System Fix Virus amp Privacy Protection Virus hijacked and infected my system WinXP -bit They ve caused my & 64-bit "Privacy Virus" "System Fix Protection Virus" Infected with WinXP (Malware) default web browser to change frequently each time I reboot my PC So I ve been having trouble getting rid of all of this malware viruses from my system since Infected WinXP 64-bit with "System Fix Virus" & "Privacy Protection Virus" (Malware) I use Windows XP x ComboFix exe and TDSSKiller exe are not compatible with my Windows XP -bit system So how do I get rid of the malware viruses from this computer without those apps that were made to get rid of the following problems on other Windows OS s The latest version s of ComboFix and TDSSKiller don t work on the -bit version of Windows XP but they are compatible with other versions of Windows XP VISTA and Windows System Fix Virus the first virus that affected my Windows system days ago Privacy Protection Virus behaves almost exactly like the aforementioned virus Google-Redirect Malware redirects all my searches to this site Thanks in advance to ANY users for helping me and others with this malware virus problem I understand and read the previous pinned-thread about the revelant malware virus issue that Windows-users solved with the programs I ve been unable to install on my system The aforementioned malware viruses began to infect my PC on December since that day I haven t found a single anti-virus program that can detect the Google-redirect malware virus on my system nbsp

https://forums.techguy.org/threads/infected-winxp-64-bit-with-system-fix-virus-privacy-protection-virus-malware.1031497/
Relevancy 122.76%

A few days ago the windows for quot Antivirus infected 2010" "Vista System with malware Vista Antivirus quot started popping up on my screen and in my sleep deprived state I had the genius idea of doing a system restore before anything else No idea what lasting damage may have been done by it but I suppose that'll show up in the logs At any rate my machine's still System infected with "Vista Antivirus 2010" malware mostly usable just much slower and with annoying pop-ups every time I open an application which opens anywhere between one and twenty quot av exe quot processes usually all shutting down after I end one I'm not the only one using this computer so System infected with "Vista Antivirus 2010" malware I couldn't tell you everything that's gone on in it but I do know that until I uninstalled them for this it had Bittorrent and Daemon Tools Lite I'm running Vista -bit on an HP machine It wasn't shipped with an installation disc All I actually have is a recovery disc I downloaded from Neosmart that seems to work but I have no idea how to actually use it Not sure what else there is to say so heeeeeeeere's a DDS report I noticed at the top it says some Norton features were enabled I've tried disabling every feature and it invariably says this after scanning Is this a problem If it is I'd guess it applies to the other logs aw well but I don't know how to fix it short of uninstalling Norton DDS Ver - - - NTFSx Run by Owner at on Sun Internet Explorer BrowserJavaVersion Microsoft Windows Vista Home Premium GMT - AV Norton Internet Security On-access scanning enabled Updated E A - - -B - C C F SP Spyware Doctor disabled Updated C EDD - E- ac- F -EFA E CBC SP Windows Defender disabled Updated D DDC A- F- FAE- E -DA C ACF SP Norton Internet Security enabled Updated CBB EE - - DAB- B -D C AA E A FW Norton Internet Security enabled C A C -F F- AC -B -A E C F Running Processes C Windows system wininit exe C Windows system lsm exe C Windows system svchost exe -k DcomLaunch C Windows system svchost exe -k rpcss C Windows System svchost exe -k LocalServiceNetworkRestricted C Windows System svchost exe -k LocalSystemNetworkRestricted C Windows system svchost exe -k netsvcs C Windows system SLsvc exe C Windows system svchost exe -k LocalService C Windows system svchost exe -k NetworkService C Windows System spoolsv exe C Windows system svchost exe -k LocalServiceNoNetwork C Windows system Dwm exe C Windows system taskeng exe C Windows Explorer EXE C Windows system taskeng exe C Program Files Google Update GoogleUpdate exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C Program Files Bonjour mDNSResponder exe c Program Files Common Files LightScribe LSSrvc exe C Program Files Norton Internet Security Engine ccSvcHst exe C Windows system svchost exe -k NetworkServiceNetworkRestricted C Windows system svchost exe -k imgsvc C Windows system SearchIndexer exe C Windows system DRIVERS xaudio exe C Windows system DllHost exe C Program Files Norton Internet Security Engine ccSvcHst exe C Windows system Taskmgr exe C Users Owner AppData Local av exe C Windows system wuauclt exe C Windows System rundll exe C hp support hpsysdrv exe C Program Files Java jre bin jusched exe C Program Files HP HP Software Update hpwuSchd exe C Program Files Hewlett-Packard On-Screen OSD Indicator OSD exe C Program Files Snapfish Media Detector SnapfishMediaDetector exe C Program Files Common Files Real Update OB realsched exe C Program Files Winamp winampa exe C Program Files Google GoogleToolbarNotifier GoogleToolbarNotifier exe C Program Files Vista amp XP Virtual Desktops Virtual Desktops exe C Program Files WinZip WZQKPICK EXE C Windows ehome ehtray exe C Program Files DAEMON Tools Lite DTLite exe C Windows System rundll exe C Program Files Windows Sidebar sidebar exe C Windows ehome ehmsas exe C Program Files OpenOffice org program soffice exe C Program Files Windows Sidebar sidebar exe C P... Read more

A:System infected with "Vista Antivirus 2010" malware

Hello, and welcome to TSF.

I am currently reviewing your log. I will be back with a fix for your problem as soon as possible.

Please subscribe to this thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant Notification, then click Subscribe.

Please be patient with me during this time.

http://www.techsupportforum.com/forums/f50/system-infected-with-vista-antivirus-2010-malware-467258.html
Relevancy 120.9%

About a month ago Computer Associates internet security suite free through my ISP told me it couldn t update Tried a couple of things and gave up Uninstalled CA and installed AVG Free Same thing AVG Free can t update Today I got a message quot attention trojan spm lx etc quot with a prompt for a web page but instead I closed the window from the top right corner Today I also got a background on my desktop that said quot your system is infected system has been stopped due to a serious and is spm/lx" "your indicates "trojan infected" Malware system malfunction quot I started through some of the threads on this site and was looking at a promising thread -trojan-spm-lx-infection that cybertech posted and instructing kramer to run malwarebytes I installed malwarebytes and it opens but self closes in a matter of seconds regardless if I hit quick scan or not Some additional symptoms Can t open computer in Safe Mode Can t use quot run quot from start menu Can t use volume on computer Malware is redirecting my url choice to its own choices This is the first virus that I can t seem to deal with myself Any help is appreciated nbsp

A:Malware indicates "trojan spm/lx" and "your system is infected"

Windows XP operating system
It has also disabled my Task Manager and is currently running something in the background
 

https://forums.techguy.org/threads/malware-indicates-trojan-spm-lx-and-your-system-is-infected.877939/
Relevancy 120.9%

I think I am infected with Malware Spyware or some type of virus My desktop background has become a bright red screen with a toxic symbol on it and underneath it it says quot Your Privacy Is In Danger quot Red "Virus Bottom. on Desktop Says Alert!" Background! In "Your Is Danger!" Privacy On the bottom right in the Red Desktop Background! "Your Privacy Is In Danger!" Says "Virus Alert!" on Bottom. taskbar right next to the time and date it says quot Virus Alert quot My computer is also attempting to run anti-Spyware programs all by itself opening browsers with websites to Spy programs and pop-ups warning me of possible hackers Below is my HJT log Logfile of Trend Micro HijackThis v Scan saved Red Desktop Background! "Your Privacy Is In Danger!" Says "Virus Alert!" on Bottom. at VIRUS ALERT on Platform Windows XP SP WinNT Red Desktop Background! "Your Privacy Is In Danger!" Says "Virus Alert!" on Bottom. MSIE Internet Explorer v SP Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system LEXBCES EXE C WINDOWS system LEXPPS EXE C WINDOWS system spoolsv exe C WINDOWS Explorer EXE C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C Program Files AVPersonal AVWUPSRV EXE C Program Files Bonjour mDNSResponder exe C Program Files ewido anti-malware ewidoctrl exe C Program Files Common Files Microsoft Shared VS Debug mdm exe C WINDOWS System ezSP Px exe C WINDOWS System hkcmd exe C WINDOWS AGRSMMSG exe C Program Files AVPersonal AVGNT EXE C Program Files Common Files Real Update OB realsched exe C PROGRA VERIZO SMARTB MotiveSB exe D Program Files D-Tools daemon exe C WINDOWS Samsung ComSMMgr ssmmgr exe C Program Files Common Files AOL ee AOLSoftware exe C Program Files Java jre bin jusched exe C Program Files QuickTime QTTask exe C Program Files iTunes iTunesHelper exe C WINDOWS system ctfmon exe C Program Files AIM aim exe C Program Files FinePixViewer QuickDCF exe C WINDOWS System svchost exe C Program Files InterVideo Common Bin WinCinemaMgr exe C Program Files AIM aolsoftware exe C Program Files Viewpoint Common ViewpointService exe C Program Files Verizon Online bin mpbtn exe C Program Files iPod bin iPodService exe C WINDOWS system wscntfy exe C Program Files Viewpoint Viewpoint Manager ViewMgr exe C Program Files Mozilla Firefox firefox exe C Program Files Java jre bin jucheck exe C WINDOWS system rundll exe C WINDOWS system rundll exe C Program Files Trend Micro HijackThis HijackThis exe R - HKCU Software Microsoft Internet Explorer Main Start Page http softwarereferral com jump php wmid amp mid MjI Ojg amp lid R - HKLM Software Microsoft Internet Explorer Main Default Page URL http www yahoo com R - HKLM Software Microsoft Internet Explorer Main Default Search URL http us rd yahoo com customize ie defaults su msgr http www yahoo com R - HKLM Software Microsoft Internet Explorer Main Search Bar http us rd yahoo com customize ie defaults sb msgr http www yahoo com ext search search html R - HKLM Software Microsoft Internet Explorer Main Search Page http us rd yahoo com customize ie defaults sp msgr http www yahoo com R - HKLM Software Microsoft Internet Explorer Main Start Page http www yahoo com R - HKCU Software Microsoft Internet Explorer SearchURL Default http us rd yahoo com customize ie defaults su msgr http www yahoo com R - HKCU Software Microsoft Internet Connection Wizard ShellNext http www ddcd jp dd e sony cd faq html R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyServer gate temple edu R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyOverride local R - URLSearchHook Yahoo Toolbar - EF BD -C FB- D - F- D F - C Program Files Yahoo Companion Installs cpn yt dll O - Toolbar NewsStand Tool... Read more

https://forums.techguy.org/threads/red-desktop-background-your-privacy-is-in-danger-says-virus-alert-on-bottom.732146/
Relevancy 119.04%

Hello I'm running Windows XP SP Alert" Center install Defense" popups, "Malware "Security self I have fake quot Security Center Alert quot popups and quot Security Center quot popups A program called quot Malware Defense quot has also seemed to installed itself onto my computer And I've just noticed porn icons appearing on my desktop It's also disabled my Avira software GMER doesn't seem to run I've clicked on it a couple of times but it doesn't seem to do anything The DDS logs are attached follows Thanks in advance DDS Ver - - - NTFSx Run by zili at on Wed Internet Explorer BrowserJavaVersion Microsoft Windows XP Professional GMT AV AntiVir Desktop On-access scanning disabled Updated AD - F - A-A -FDD C Running Processes C WINDOWS system Ati evxx exe C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS System svchost exe -k netsvcs C WINDOWS system svchost exe -k WudfServiceGroup svchost exe svchost exe C WINDOWS system Ati evxx exe C WINDOWS system spoolsv exe C WINDOWS "Security Center Alert" popups, "Malware Defense" self install Explorer EXE C WINDOWS stsystra exe C Program Files CyberLink PowerDVD DX PDVDDXSrv exe C Program Files Google Gmail Notifier gnotify exe C WINDOWS system rundll exe C Program Files ATI Technologies ATI ACE Core-Static MOM exe C Program Files Java jre bin jusched exe C Program Files iTunes iTunesHelper exe C "Security Center Alert" popups, "Malware Defense" self install WINDOWS system ctfmon exe C Program Files Skype Phone Skype exe C PROGRA PANICW POP-UP PSFree exe C DOCUME zili LOCALS Temp settdebugx exe C Program Files GetRight GetRight exe C Program Files ATI Technologies ATI ACE Core-Static ccc exe C DOCUME zili LOCALS Temp wscsvc exe C Program Files Skype Plugin Manager skypePM exe svchost exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C Program Files Bonjour mDNSResponder exe svchost exe C Program Files Java jre bin jqs exe C Program Files Common Files Microsoft Shared VS DEBUG MDM EXE C Program Files NetLimiter Monitor nlsvc exe C WINDOWS system svchost exe -k imgsvc C Program Files NetLimiter Monitor NLClient exe C Program Files iPod bin iPodService exe C WINDOWS system wuauclt exe C Program Files Internet Explorer Iexplore exe C Documents and Settings zili Desktop dds scr Pseudo HJT Report uStart Page hxxp www bom gov au products IDN shtml uInternet Connection Wizard ShellNext iexplore uInternet Settings ProxyOverride local BHO Adobe PDF Link Helper df c-e ad- -a -fa c ebdc - c program files common files adobe acrobat activex AcroIEHelperShim dll BHO Skype add-on mastermind bf b-c d - d - a -a f ba c - c program files skype toolbars internet explorer SkypeIEPlugin dll BHO IE to GetRight Helper ff d- a - a-a ef- ba a e - c program files getright xx gr dll BHO C C A-E - b - D - CECB - No File BHO Windows Live Sign-in Helper d - c - abf- ecc- c - c program files common files microsoft shared windows live WindowsLiveLogin dll BHO Google Toolbar Notifier BHO af de - d - -b fa-ce b ad d - c program files google googletoolbarnotifier swg dll BHO IeMonitorBho Class bf e - a - fd -b - b e c - c program files megaupload mega manager MegaIEMn dll BHO Java tm Plug-In SSV Helper dbc -a - b-bc - c c c a - c program files java jre bin jp ssv dll BHO JQSIEStartDetectorImpl Class e e f - ce- c -bc -eabfe f c - c program files java jre lib deploy jqs ie jqs plugin dll TB AAC-C - - E A- E A E - No File TB F ACBB- F- C -A -FF D D CC - No File uRun CTFMON EXE c windows system ctfmon exe uRun Google Update quot c documents and settings zili local settings application data google update GoogleUpdate exe quot c uRun PlayNC Launcher uRun Skype quot c program files skype phone Skype exe quot nosplash minimized uRun PopUpStopperFreeEdition quot c progra panicw pop-up PSFree exe quot uRun settdebugx exe c docume zili locals temp settdebugx exe mRun IMJPMIG quot c windows ime imjp IMJPMIG EXE quot Spoil... Read more

A:"Security Center Alert" popups, "Malware Defense" self install

Let's try this version of gmer.


Download GMER Rootkit Scanner from here to your desktop. Double click the exe file.
If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO, then use the following settings for a more complete scan.



Click the image to enlarge it


In the right panel, you will see several boxes that have been checked. Ensure the following are unchecked Sections
IAT/EAT
Drives/Partition other than Systemdrive (typically C:\)
Show All (don't miss this one)

Then click the Scan button & wait for it to finish.
Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file which cannot be uploaded to your post.
Save it where you can easily find it, such as your desktop, and attach it in reply.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

http://www.techsupportforum.com/forums/f284/security-center-alert-popups-malware-defense-self-install-448836.html
Relevancy 118.73%

Hi Despite Norton's usually good protection Norton just let a virus take over our little Toshiba Satellite bit laptop running Windows XP Media Center Edition It blocks access to internet so we can't download or get remote help It ... Security virus help!???? 2010" "Internet does not show up on the computer's list of installed programs so there is no entry on the list to delete or uninstall It blocks Task Master "Internet Security 2010" virus ... help!???? so we can't use TM to stop it It is happy to let us run full comprehensive scans with Norton -- which reports that it finds no "Internet Security 2010" virus ... help!???? infections whatsoever "Internet Security 2010" virus ... help!???? so it is invisible to Norton Although the norton events log did note a quot medium security quot violation from outside when this all started -- meaning Norton did realize an infection was entering the computer But Norton did not block it and the log entry says there is no user action to be taken Meanwhile it pops up nunerous at one time I got a bit behind and wound up counting of them quot error messages quot of various types all consistently saying that it had found various serious security infections or problems and that we need to click to purchase their program to fix them Of course the only security infection we really need to fix is this quot internet security quot virus itself We spent a day on the phone with a nice Microsoft lady who ran us through dozens of tries to remove the infection This failed to work however and they are going to try further in a couple days after they have chance to study it more Norton's phone lines are backlogged apparently in major part with this problem And their email intake won't ingest you write the problem and push the button to send the form to them and their webpage just sits with it and tells you to wait We waited hours and Norton's website still won't accept emails reporting problems with their quot protection quot program Meanwhile we are being shaken down by this quot internet security quot virus' protection racket to pay them off to remove their infection or else our little computer is fit only for the junquepile We cannot use internet and we cannot do much else with the computer due to all the fake warning messages popping up all the time Even these are tricky you have to read them because they keep switching back and forth which button you have to click on to delete them you make one mistake and they will switch you over to their purchase department We would very very much appreciate a simple means of fixing getting rid of this pesty infection And if we can find out who is doing this to innocent people I for one will be happy to file a criminal complaint with the proper authorities Thanks for any help MuchoAppreciato TGIF though we will probably be up all night again trying to fix this poor little laptop since it has medical records on it that are really really needed

A:"Internet Security 2010" virus ... help!????

If you can save you files to cds or a usb stick or externel hard drive.
That is the most important thing to do first.
Then if you can boot the computer in safe mode with networking and
see if you can get on the net. Download Maleware bytes (a free program)
install it update it run it.
If that does not work you may have to redo windows.
Some times the effort you put in to removing that crap you would be better off
just to wipe it.
That is why I wanted you to save your files right away.

I know I was not much help but I tried.

Jimmy

http://www.vistax64.com/system-security/266507-internet-security-2010-virus-help.html
Relevancy 118.42%

Hi I ve got the flashing yellow icon in the taskbar the popups saying I m infected all Security :-( Fake Alerts, Virus Malware, "Infected" notices.. Spyware, the dodgy internet shortcuts on the desktop it s the typical malware situation Attached are HJT logs Thanks lots -D I had a bit of a stab at cleaning it last night using SmitFraudfix I think it s called but looks like it s all reinfected it self I m not totally stupid so I was able to manually fix some of the stuff like the HOSTS file redirecting all the antivirus and antispyware sites to dodgy IPS But one particular thing thats getting to me are all the Restrictions Win E is restricted System Properties is restricted Display properties is restricted I can t find anything in the registry all the common restriction keys like NoDispCPL or NoDispBackgroundPage are all set to Anyway heres Malware, Fake Security Alerts, "Infected" notices.. Spyware, Virus :-( the HJT log help is much appreciated Thanks -D Logfile of Trend Micro HijackThis v BETA Scan saved at on Platform Windows XP SP WinNT Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system csrss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system Ati evxx exe C Malware, Fake Security Alerts, "Infected" notices.. Spyware, Virus :-( WINDOWS system svchost exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system svchost exe C WINDOWS system svchost exe C Program Files Common Files Symantec Shared ccSetMgr exe C Program Files Common Files Symantec Shared ccEvtMgr exe C Program Files Common Files Symantec Shared SNDSrvc exe C Program Files Common Files Symantec Shared SPBBC SPBBCSvc exe C Program Files Common Files Malware, Fake Security Alerts, "Infected" notices.. Spyware, Virus :-( Symantec Shared CCPD-LC symlcsvc exe C WINDOWS system LEXBCES EXE C WINDOWS system spoolsv exe C Program Files Apache Software Foundation Apache bin httpd exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C Program Files Symantec LiveUpdate ALUSchedulerSvc exe C Program Files TOSHIBA ConfigFree CFSvcs exe C WINDOWS system DVDRAMSV exe C Program Files Apache Software Foundation Apache bin httpd exe C Program Files Norton AntiVirus navapsvc exe C Program Files Norton AntiVirus IWP NPFMntor exe C WINDOWS system svchost exe C Program Files TOSHIBA TOSHIBA Applet TAPPSRV exe C WINDOWS system wdfmgr exe C WINDOWS System alg exe C Program Files iPod bin iPodService exe C Program Files Common Files Symantec Shared Security Console NSCSRVCE EXE C WINDOWS system Ati evxx exe C WINDOWS Explorer EXE C Program Files ATI Technologies ATI Control Panel atiptaxx exe C Program Files Synaptics SynTP SynTPLpr exe C Program Files Synaptics SynTP SynTPEnh exe C Program Files TOSHIBA ConfigFree NDSTray exe C WINDOWS System DLA DLACTRLW EXE C Program Files TOSHIBA TOSHIBA Zooming Utility SmoothView exe C Program Files Toshiba Tvs TvsTray exe C Program Files TOSHIBA Touch and Launch PadExe exe C Program Files Toshiba Toshiba Applet thotkey exe C WINDOWS system TPSMain exe C Program Files Common Files Symantec Shared ccApp exe C Program Files Lexmark X Series lxbfbmgr exe C Program Files iTunes iTunesHelper exe C Program Files SecCenter scprot exe C Program Files Lexmark X Series lxbfbmon exe C WINDOWS system lexpps exe C Program Files TOSHIBA TOSCDSPD toscdspd exe C Program Files MSN Messenger msnmsgr exe C WINDOWS system ctfmon exe C Documents and Settings Jacobsellenger Start Menu Programs Startup findfast exe C WINDOWS system TPSBattM exe C WINDOWS system jjpgglew exe C WINDOWS system utilman exe C WINDOWS system rundll exe C WINDOWS system sfmecawn exe C Program Files Mozilla Firefox firefox exe C WINDOWS system notepad exe C brokies HiJackThis v exe C WINDOWS system wbem wmiprvse exe R - HKCU Software Microsoft Internet Connection Wizard ShellNext http go microsoft com fwlink LinkId ... Read more

https://forums.techguy.org/threads/malware-fake-security-alerts-infected-notices-spyware-virus.654131/
Relevancy 117.8%

In Windows XP, fully updated, I have several folders full of mp3's and want to see the bit rate and duration. I right click on a column heading and select "Bit rate". I then click on "More..." so I can get to "Duration", and I select that one too.

But all the figures in the "Duration" column appear to be in "hours" and "minutes", so I see "00:04" or "00:03", but what I want is "minutes" and "seconds".

Any thoughts as to how to change this?
 

A:Solved: Windows Explorer "Duration" Column - no "Seconds", just "Hours" and "Minutes"

https://forums.techguy.org/threads/solved-windows-explorer-duration-column-no-seconds-just-hours-and-minutes.693037/
Relevancy 117.8%

This began after dumbly going to some non-commercial website NAV auto-protect did initially detect Internet Alert" popup activity", IE "Security crash after "Insecure Center an infection but indicated it could not quarantine or delete Now when launching IE it attempts to redirect to a fake virus software website When I choose the quot not recommended quot link IE crashes shortly afterward Also I get a fake quot Security Center Alert quot popup every few minutes I stupidly clicked on the link to update the security center With System Restore deactivated I have run all updated full scans in safe mode NAV Ad-aware Spybot SpySweeper Avira and CCleaner Then I found this website and learned I should have waited to do this Spybot found a couple of registry entries but that was the only detection made by any of the programs other than NAV's initial auto-protect IE crash after "Insecure Internet activity", "Security Center Alert" popup message File gmer txt is attached dds txt DDS Version - NTFSx Run by Mike at on Sat Microsoft Windows XP Professional GMT - Running Processes C Program Files Webroot WebrootSecurity WRConsumerService exe C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS System svchost exe -k netsvcs C Program Files Intel Wireless Bin S EvMon exe svchost exe svchost exe C Program Files Common Files Symantec Shared ccSetMgr exe C Program Files Common Files Symantec Shared ccEvtMgr exe C Program Files Common Files Symantec Shared SPBBC SPBBCSvc exe C Program Files Lavasoft Ad-Aware aawservice exe C WINDOWS system spoolsv exe C Program Files Avira AntiVir PersonalEdition Classic sched exe C Program Files Avira AntiVir PersonalEdition Classic avguard exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C Program Files Broadcom ASFIPMon AsfIpMon exe C Program Files Bonjour mDNSResponder exe C Program Files Symantec AntiVirus DefWatch exe C Program Files Intel Wireless Bin EvtEng exe C Program Files Dell QuickSet NICCONFIGSVC exe C Program Files Intel Wireless Bin RegSrvc exe C Program Files SigmaTel C-Major Audio WDM StacSV exe C WINDOWS Explorer EXE C Program Files Symantec AntiVirus Rtvscan exe C Program Files Apoint Apoint exe C Program Files Wave Systems Corp Trusted Drive Manager TdmService exe C WINDOWS system igfxpers exe C Program Files Java jre bin jusched exe C WINDOWS system igfxsrvc exe C Program Files Dell QuickSet quickset exe C Program Files Apoint ApMsgFwd exe C WINDOWS stsystra exe C Program Files Intel Wireless bin ZCfgSvc exe C Program Files Intel Wireless Bin ifrmewrk exe C Program Files Apoint HidFind exe C Program Files Wave Systems Corp Services Manager Docmgr bin WavXDocMgr exe C WINDOWS system dllhost exe C Program Files Wave Systems Corp SecureUpgrade exe C Program Files Apoint Apntex exe C WINDOWS system KADxMain exe C Program Files Roxio Drag-to-Disc DrgToDsc exe C Program Files Webroot WebrootSecurity SpySweeper exe C Program Files CyberLink PowerDVD DX PDVDDXSrv exe C Program Files Common Files Symantec Shared ccApp exe C PROGRA SYMANT VPTray exe C Program Files iTunes iTunesHelper exe C Program Files Adobe Photoshop Lightroom apdproxy exe C Program Files Avira AntiVir PersonalEdition Classic avgnt exe C Program Files Intel Wireless Bin WLKeeper exe C Documents and Settings Mike Application Data Google kjzna exe C Program Files Digital Line Detect DLG exe C WINDOWS system dllhost exe C Program Files Microsoft Reference Bookshelf qshelf exe C Program Files Handspring HOTSYNC EXE C WINDOWS system svchost exe -k imgsvc C Program Files iPod bin iPodService exe C Program Files Intel Wireless Bin Dot XCfg exe C WINDOWS Explorer EXE C Documents and Settings Mike Desktop dds com Pseudo HJT Report uSearch Page hxxp www google com hws sb dell-usuk-rel en side html channel us uDefault Page URL http www google com ig dell hl en amp us amp ibd mDefault Page URL hxxp www dell com mDefault Search URL hxxp www google com i... Read more

A:IE crash after "Insecure Internet activity", "Security Center Alert" popup

Before any work can be done on this machine, there is something that requires your immediate intervention.

This machine is messed up pretty badly because you have several anti-virus programs on your machine. That's not a good idea!!

Alike firewalls, anti-virus programs have conflicts co-existing with each other & produces undesirable results. Please uninstall ALL leaving only one of them.

ALL the antivirus programs must be removed via add/remove program.
For any program that doesn't have an add/remove entry, you will have to do this:re-install the program -> reboot -> uninstallPost a fresh logs when you have completed the above task.

http://www.techsupportforum.com/forums/f100/ie-crash-after-insecure-internet-activity-security-center-alert-popup-320841.html
Relevancy 117.49%

My ASUS computer Windows bit was infected Security with with 2012" rootkit" Infected bundled "ZeroAcess "AV by quot AV Security quot It seems that it is bundled with quot ZeroAccess Rootkit quot because it won t allow any program to run claiming that they are infected Besides poping up alerts and windows it also disabled quot System Restore quot function and won t allow me to boot into Safe Mode It does not allow me to delete AV Infected with "AV Security 2012" bundled with "ZeroAcess rootkit" Security v exe either I read a bunch of articles online about how to remove it but apparently the people who developed this virus are reading them too This version of virus has rendered these instruction useless This is way beyond me now I need help from a few Infected with "AV Security 2012" bundled with "ZeroAcess rootkit" Einsteins to kick this virus s butt Below is the HijackThis log It won t let me run DDS downloaded from the first link probably killed by the quot ZeroAccess Rootkit quot The complete HijackThis log Logfile of Trend Micro HijackThis v Scan saved at PM on Platform Windows SP WinNT MSIE Internet Explorer v Boot mode Normal Running processes C Program Files x Windows Live Messenger msnmsgr exe C Users Shawn AppData Roaming hAA uvvS AV Security v exe C Program Files x ASUS ATK Hotkey HControlUser exe C Program Files x ASUS ATKOSD ATKOSD exe C Program Files x ASUS ATK Media DMedia exe C Program Files x DivX DivX Update DivXUpdate exe C Program Files x Virtual Account Numbers CitiVAN exe C Program Files x Ask com Updater Updater exe C Program Files x Common Infected with "AV Security 2012" bundled with "ZeroAcess rootkit" Files Java Java Update jusched exe C Windows SysWOW OBroker exe C Windows AsScrPro exe C Program Files x CyberLink Power Go CLMLSvc exe C Users Shawn Desktop HijackThis exe F - REG system ini UserInit userinit exe O - BHO no name - D -C F - efb- B - ECA - no file O - BHO Virtual Account Numbers Helper - - - - D -B DA C A A - C Program Files x Virtual Account Numbers CitiVANHelper dll O - BHO AcroIEHelperStub - DF C-E AD- -A -FA C EBDC - C Program Files x Common Files Adobe Acrobat ActiveX AcroIEHelperShim dll O - BHO flashget urlcatch - F -AA - B - F D- A B E EF - C Program Files x FlashGet jccatch dll O - BHO RealPlayer Download and Record Plugin for Internet Explorer - C E -B - BC - - C CA - C ProgramData Real RealPlayer BrowserRecordPlugin IE rpbrowserrecordplugin dll O - BHO Search Helper - EBF - F- bff-A F-B E AAC B - C Program Files x Microsoft Search Enhancement Pack Search Helper SEPsearchhelperie dll O - BHO Groove GFS Browser Helper - - C - D -B F - BBC D A E - C PROGRA MICROS Office GROOVEEX DLL O - BHO Windows Live ID Sign-in Helper - D - C - ABF- ECC- C - C Program Files x Common Files Microsoft Shared Windows Live WindowsLiveLogin dll O - BHO Windows Live Messenger Companion Helper - FDDE B- F- -AB F- CBEFF - C Program Files x Windows Live Companion companioncore dll O - BHO URLRedirectionBHO - B F A - E - -BA - B E FF - C PROGRA MICROS Office URLREDIR DLL O - BHO Ask Toolbar BHO - D C F- A- -A AD- D - C Program Files x Ask com GenericAskToolbar dll O - BHO Java tm Plug-In SSV Helper - DBC -A - b-BC - C C C A - C Program Files x Java jre bin jp ssv dll O - BHO FlashGet GetFlash Class - F E- EF- C- - BA DBA - C Program Files x FlashGet getflash dll O - Toolbar Virtual Account Numbers - A A -B - A - D -EF B A B - C Program Files x Virtual Account Numbers CitiVANToolbar dll O - Toolbar Ask Toolbar - D C F- A- -A AD- D - C Program Files x Ask com GenericAskToolbar dll O - HKLM Run UpdateP GoShortCut quot C Program Files x CyberLink Power Go MUITransfer MUIStartMenu exe quot quot C Program Files x CyberLink Power Go quot UpdateWithCreateOnce quot SOFTWARE CyberLink Power Go quot O - HKLM Run HControlUser C Program Files x ASUS ATK Hotkey HControlUser exe O - HKLM Run ATKOSD C Program Files x ASUS ATKOSD ATKOSD exe O -... Read more

A:Infected with "AV Security 2012" bundled with "ZeroAcess rootkit"

Oh, one more thing, after the infection, the computer told me that I need to restart the computer to install Windows updates and stupidly I did.
 

https://forums.techguy.org/threads/infected-with-av-security-2012-bundled-with-zeroacess-rootkit.1026305/
Relevancy 117.49%

Keep getting popups about computer being infected. The windows are titled "Internet Security 2010". Can't open applications such as system restore. And I attached a screenshot of my unwanted desktop background. Seems to be a rather common problem with other users lately. Also, it won't let me run dds.

A:Have the "Internet Security 2010" problem

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

Double-click dds to run it. When you get the warning, 'Application cannot be executed', leave it open, then double-click dds again. It should run. Post/attach the logs as requested.

------------------------------------------------------

http://www.techsupportforum.com/forums/f284/have-the-internet-security-2010-problem-450044.html
Relevancy 116.87%

virus popup quot Malware Wipe quot quot the spy guard quot and alot of commercials like porn poker and more crap this is what I get when I start internetexplorer Recommended Anti-Spyware Software Pest Trap Malware Wipe Spy Guard Internet Security TOP RATED Pest Trap Most popular spyware adware cleaner software all commercials spy Solved: "the Wipe" "Malware virus.. alot of popup and guard" over the world Cleans all known viruses and worms Visit Website Free Scan Malware Wipe Became one of the most popular programs very fast It s really easy to use and at the same time very effective Visit Website Free Scan The Spy Guard Developed as the most efficient spyware Solved: virus.. popup "Malware Wipe" "the spy guard" and alot of commercials cleaner with realtime protection Visit Website Free Scan Brave Sentry Award-winning Solved: virus.. popup "Malware Wipe" "the spy guard" and alot of commercials spyware removal utility that will help you fighting all kinds of spyware including keyloggers trojans and password thieves Visit Website Free Scan AD Protect World s leading software application that checks protects and re-checks spyware and spam vulnerability in your home computer Visit Website Free Scan WARNING YOUR SYSTEM IS VULNERABLE TO HACKERS ATTACKS AND BREAKDOWNS Solved: virus.. popup "Malware Wipe" "the spy guard" and alot of commercials Attention Your system is currently exposed Any remote computer can easily browse following folders and files on your computer - Windows System - Program Files Internet Explorer - My Documents - Drive C files Click here to download official intrusion detection system IDS software YOUR PRIVATE INFORMATION IS IN OPEN ACCESS TO OTHER COMPUTERS Your IP address my ip Your Country SE Sweden Your Browser Mozilla compatible MSIE Windows NT SV NET CLR NET CLR Your Operation System Windows XP SP VULNERABLE System Security Status CAUTION Time of investigation Thu Jun PDT SOLUTION Download and install one of the following approved software products Malware Wipe Over threats in the database Exclusive algorythm of cleaning IE Safe Mode - simply cleans your browser Manual automatic update system Autostart items IE Objects Running Processes manager Dialer blocker Popup blocker Visit Website Free Download Pest Trap Daily updated threat databases Intelligent threat scanner Application advanced firewall IE security improvements Advanced system securty features Multiple scan options fast normal deep Visit Website Free Download nbsp

A:Solved: virus.. popup "Malware Wipe" "the spy guard" and alot of commercials

https://forums.techguy.org/threads/solved-virus-popup-malware-wipe-the-spy-guard-and-alot-of-commercials.471943/
Relevancy 116.56%

I ve run SuperAntiSpyware Wizard" "Sys Pop-ups "Security & Integrity System Scan Warning" Ad-Aware SpyBot and Norton which removed some trojan files and registry items but I m still getting pop-ups quot Security System Warning quot and quot System Integrity Scan Wizard quot Below is my HiJackThis log Thanks in advance Logfile of Trend Micro HijackThis v Scan saved at PM on Platform Windows XP SP WinNT MSIE Internet Explorer v "Sys Integrity Scan Wizard" & "Security System Warning" Pop-ups SP Boot mode Normal Running processes C WINDOWS System "Sys Integrity Scan Wizard" & "Security System Warning" Pop-ups smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C Program Files Intel Wireless Bin EvtEng exe C Program Files Intel Wireless Bin S EvMon exe C Program Files Common Files Symantec Shared ccSvcHst exe C Program Files Common "Sys Integrity Scan Wizard" & "Security System Warning" Pop-ups Files Symantec Shared AppCore AppSvc exe C Program Files Common Files Symantec Shared CCPD-LC symlcsvc exe C Program Files Lavasoft Ad-Aware aawservice exe C WINDOWS system spoolsv exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C Program Files Symantec LiveUpdate ALUSchedulerSvc exe C Program Files Bonjour mDNSResponder exe C WINDOWS system cisvc exe C Program Files Common Files Symantec Shared ccSvcHst exe C Program Files Microsoft SQL Server MSSQL VAIO VEDB Binn sqlservr exe C Program Files Intel Wireless Bin RegSrvc exe C WINDOWS system cryptainersrv exe C WINDOWS system svchost exe C Program Files Sony VAIO Event Service VESMgr exe C WINDOWS Explorer EXE C Program Files Common Files Sony Shared VAIO Entertainment Platform VCSW VCSW exe C Program Files Viewpoint Common ViewpointService exe C Program Files Common Files Sony Shared VAIO Entertainment Platform VzCdb VzCdbSvc exe C Program Files Canon CAL CALMAIN exe C Documents and Settings All Users Application Data kfsnolql ynynormr exe C WINDOWS system igfxpers exe C Program Files Common Files Sony Shared VAIO Entertainment Platform VzCdb VzFw exe C Program Files Apoint Apoint exe C WINDOWS RTHDCPL EXE C Program Files Apoint Apntex exe C Program Files Java jre bin jusched exe C Program Files Sony VAIO Power Management SPMgr exe C Program Files Sony ISB Utility ISBMgr exe C WINDOWS Logi MwX Exe C Program Files Common Files Real Update OB realsched exe C Program Files Common Files Symantec Shared ccApp exe C Program Files HP HP Software Update HPWuSchd exe C Program Files iTunes iTunesHelper exe C Program Files Google GoogleToolbarNotifier GoogleToolbarNotifier exe C Program Files Plaxo PlaxoHelper exe C WINDOWS system clghcnev exe C Program Files Viewpoint Viewpoint Manager ViewMgr exe C Program Files iPod bin iPodService exe C Program Files HP Digital Imaging bin hpqtra exe C Program Files Yahoo Messenger ymsgr tray exe C Program Files HP Digital Imaging bin hpqSTE exe C Program Files HP Digital Imaging Product Assistant bin hprblog exe C WINDOWS System svchost exe C WINDOWS system wuauclt exe C WINDOWS system cidaemon exe C PROGRA MOZILL FIREFOX EXE C Program Files Trend Micro HijackThis HijackThis exe R - HKCU Software Microsoft Internet Explorer Main Start Page http softwarereferral com jump php wmid amp mid MjI Ojg amp lid R - HKLM Software Microsoft Internet Explorer Main Default Page URL http www sony com vaiopeople R - HKCU Software Microsoft Internet Connection Wizard ShellNext http www sony com vaiopeople R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyOverride local R - URLSearchHook AOLSearchHook Class - EB EA-E BE- CFD- F F-C A C EAFA - C Program Files AOL AOL Search Enhancement AOLSearch dll R - URLSearchHook Yahoo Toolbar - EF BD -C FB- D - F- D F - C Program Files Yahoo Companion Installs cpn yt dll O - BHO ... Read more

A:"Sys Integrity Scan Wizard" & "Security System Warning" Pop-ups

Hi Welcome to TSG!!
Please visit this webpage for instructions for downloading and running ComboFix.

Post the log from ComboFix when you've accomplished that, along with a new HijackThis log.
 

https://forums.techguy.org/threads/sys-integrity-scan-wizard-security-system-warning-pop-ups.699730/
Relevancy 116.56%

I am running Windows XP SP fully updated on an Acer Explorer Column Windows no "Minutes" "Seconds", "Hours" just "Duration" - and lap top PC I have several folders full of mp 's and want to Windows Explorer "Duration" Column - no "Seconds", just "Hours" and "Minutes" see the bit rate and Windows Explorer "Duration" Column - no "Seconds", just "Hours" and "Minutes" duration To Windows Explorer "Duration" Column - no "Seconds", just "Hours" and "Minutes" do this I right click on a column heading and select quot Bit rate quot I then click on quot More quot so I can get to quot Duration quot and I select that one too The two new columns appear but the format of the quot Duration quot column appears to be quot hours minutes quot so I see quot quot or quot quot for most mp 's when what I want to see is 'hours minutes seconds quot e g quot quot This also happens for video files avi files e g all my episodes of quot Heroes quot sad I know have a duration of quot quot instead of quot xx quot Here are two pictures showing the problem with the mp 's The first is of Explorer showing the Duration as quot Hours Minutes quot The second picture is of the properties window of the first mp in the list above I copied some mp files to another old PC on my home network and it displayed the duration field correctly Also the properties window correctly shows the duration also I'm not the only person to have this problem I received a private message from a member of another forum where I posted about this problem several weeks ago That person also has the same problem with the duration field The tech guys on that forum were unable to find the source of the duration field problem But after I had such a great success on this forum with my hard disk problem here I decided to try to get help here Thanks in advance for any suggestions

A:Windows Explorer "Duration" Column - no "Seconds", just "Hours" and "Minutes"

* bump *

Tricky, this one!

http://www.techsupportforum.com/forums/f10/windows-explorer-duration-column-no-seconds-just-hours-and-minutes-253928.html
Relevancy 116.25%

The two main malware items I think I have. I've already assumed I will do a total C: delete and re-install. I've tried lots of things in safemode, etc. with Spybot, Malwarebytes, a Norten scanner, etc. either directly running or downloading/renaming, or by downloading on another computer and using memory stick to transfer. Nothing stays launched, runs nor completes.

What a pain in the butt. I use AVG and whatever it did jumped right through in no time.......I've read lots of posts in cnet, pctools, a few here, etc.

What a mess.

Some people have way to much free time......maybe they ought to get a job somehow using these skills...they'd make a mint.

Pete
 

A:"Total Security" and "Antivirus Pro 2010"

simpler to just reformat the whole computer
 

https://forums.techguy.org/threads/total-security-and-antivirus-pro-2010.862188/
Relevancy 115.94%

Hello Unfortunately my computer was today infected with the quot Win Internet virus 7 Security Internet 2012" Infected: "Win Security quot virus - odd amp frustrating since I'm sure I have Infected: "Win 7 Internet Security 2012" virus an up to date version of Norton I have limited computer function can only run a few basic programs word excel pad etc and can not access any webpages Fortunately I have access to another computer from which I can post and download items I tried some internet research but Infected: "Win 7 Internet Security 2012" virus it seems that the best bet is to post on a forum like yours since the removal process needs to be tailored to each computer I've carefully read the instructions have downloaded DDS and GMER and am ready to post the logs but I am actually having trouble deleting quot Alcohol quot from my system it doesn't show up on my control panel and I can't delete it otherwise I suspect that this virus is the cause of this I don't know if I should post the required logs with the quot Alcohol quot program still installed so please advice I would say that my computer knowledge is average so I can follow and understand detailed instructions Thank you in advance for the numerous posts that this process will surely take I'm thankful that there are helpful individuals like you out there with an accessible forum like this Thank you

A:Infected: "Win 7 Internet Security 2012" virus

Hello,

As mentioned, I am not sure if I should post anything, since I am not able to uninstall "Alcohol" from my system as the instructions directed.

However, I'm not sure if there have been no replies to my post, since I have not attached anything, so below is a text of the "DDS" file and attached is the logfile "Attach.txt" in winzip format.

I could not run GMER (possibly because of the virus or "Alcohol" still being present), so therefore nothing is attached for that.

Please assist. My machine is virtually unworkable. Thank you.

__________________

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 8.0.7600.16385
Run by PDC at 2:25:31 on 2012-01-09
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.6000.4093 [GMT -5:00]
.
AV: Norton AntiVirus *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton AntiVirus *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
.
============== Running Processes ===============
.
C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\PROGRA~2\BRINGM~2\bar\1.bin\1cbarsvc.exe
C:\windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
C:\windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\system32\ThpSrv.exe
C:\windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Sonique\SQStart.exe
C:\Program Files\Logitech\SetPoint\LBTWiz.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files (x86)\WinZip\WZQKPICK.EXE
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
C:\Program Files (x86)\Panicware\Pop-Up Stopper Free Edition\PSFree.exe
C:\windows\system32\SearchIndexer.exe
C:\Users\PDC\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe
C:\Program Files (x86)\BringMeSports_1c\bar\1.bin\1cbrmon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\TOSHIBA\FlashCards\Hotkey\TcrdKBB.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\iPod\bin\iPodService.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Users\PDC\AppData\Local\ixm.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files (x86)\Norton In... Read more

http://www.techsupportforum.com/forums/f50/infected-win-7-internet-security-2012-virus-623353.html
Relevancy 115.01%

hi every body
My PC has lots of files called "Thumbs.db" & "System volume information" in all its drives.I cant delete these files and I think the cause of shutting my pc down automatically and showing blue screen is these files.the operating system is win xp/sp2.
I don't know what to do with these and what anti virus will delete them.please help me.
thanks
 

https://forums.techguy.org/threads/virus-that-has-files-called-thumbs-db-system-volum-information.970177/
Relevancy 114.39%

Hey guys recently my computer Security Guide") Safety Center/Online Malware/Virus Problem ("Live started behaving strangely and I believe I have some sort Malware/Virus Problem ("Live Safety Center/Online Security Guide") of a virus Two icons with the names of quot Live Safety Center quot and quot Online Security Guide quot downloaded themselves onto my desktop Also I would receive random pop-ups in IE imploring me to quot find true love quot among other things Also I would receive a flashing exclamation point on my desktop toolbar stating that I had some sort of a virus and that I should go to a certain site to download software to remove Malware/Virus Problem ("Live Safety Center/Online Security Guide") it There were a few other notifications that would pop up that would say other things but at the moment I can't remember exactly what they said although I think it also had to do with a virus on the computer and asking me to click on something to get rid of it Any ideas on what's happening here Thank you in advance for taking a look for me Here's my hijackthis log Logfile of Trend Micro HijackThis v Scan saved at AM on Platform Windows XP SP WinNT MSIE Internet Explorer v SP Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C Program Files Common Files Symantec Shared ccSvcHst exe C WINDOWS Explorer EXE C Program Files Common Files Symantec Shared AppCore AppSvc exe C WINDOWS system spoolsv exe C Program Files Lavasoft Ad-Aware aawservice exe C PROGRA COMMON AOL ACS acsd exe C Program Files Symantec LiveUpdate ALUSchedulerSvc exe C WINDOWS System GEARSec exe C WINDOWS System nvsvc exe C WINDOWS wanmpsvc exe C Program Files Linksys Wireless-G USB Wireless Network Monitor WLService exe C Program Files Linksys Wireless-G USB Wireless Network Monitor WUSB Gv exe C Program Files Common Files Symantec Shared ccApp exe C WINDOWS system RUNDLL EXE C Program Files Linksys Wireless-G USB Wireless Network Monitor InfoMyCa exe C Program Files Common Files Symantec Shared CCPD-LC symlcsvc exe C WINDOWS System svchost exe C Program Files Mozilla Firefox firefox exe C Documents and Settings Howard Desktop HiJackThis exe R - HKCU Software Microsoft Internet Explorer Main Search Bar http us rd yahoo com customize yco search ie html R - HKCU Software Microsoft Internet Explorer Main Local Page R - HKLM Software Microsoft Internet Explorer Main Local Page R - URLSearchHook Yahoo Toolbar - EF BD -C FB- D - F- D F - C Program Files Yahoo Companion Installs cpn yt dll N - Netscape user pref quot browser startup homepage quot quot http home netscape com bookmark home html quot C Documents and Settings HOWARD Application Data Mozilla Profiles default m plx f slt prefs js N - Netscape user pref quot browser search defaultengine quot quot engine C A CProgram Files CNetscape CNetscape Csearchplugins CSBWeb src quot C Documents and Settings HOWARD Application Data Mozilla Profiles default m plx f slt prefs js O - Toolbar Show Norton Toolbar - -F - -B -FBEE C B DF - C Program Files Common Files Symantec Shared coShared Browser UIBHO dll O - Toolbar Yahoo Toolbar - EF BD -C FB- D - F- D F - C Program Files Yahoo Companion Installs cpn yt dll O - Toolbar no name - A AE -FBED- -A BF- AF - no file O - HKLM Run NvCplDaemon quot RUNDLL EXE quot C WINDOWS System NvCpl dll NvStartup O - HKLM Run ccApp quot C Program Files Common Files Symantec Shared ccApp exe quot O - HKLM Run osCheck quot C Program Files Norton Internet Security osCheck exe quot O - HKLM Run Adobe Reader Speed Launcher quot C Program Files Adobe Reader Reader Reader sl exe quot O - HKLM Run WUSB Gv C Program Files Linksys Wireless-G USB Wireless Network Monitor InvokeSvc exe O - HKLM Run a bb rundll exe quot C WINDOWS system thirtxiy dll quot b O - HKCU Run NvMediaCenter quot RUNDLL EXE quot C WINDOWS System NV... Read more

A:Malware/Virus Problem ("Live Safety Center/Online Security Guide")

Please do this:

Download Deckard's System Scanner (DSS) to your Desktop. Note: You must be logged onto an account with administrator privileges.Close all applications and windows.
Double-click on dss.exe to run it, and follow the prompts.
When the scan is complete, two text files will open - main.txt <- this one will be maximized and extra.txt <-this one will be minimized
Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of main.txt in your thread in the HijackThis Log Help Forum.
Please attach extra.txt to your post.
To attach a file to a new post, simplyClick the[Manage Attachments] button under Additional Options > Attach Files on the post composition page, and
copy and paste the following into the "Upload File from your Computer" box:C:\Deckard\System Scanner\extra.txt

Click Upload.

What DSS will do: create a new System Restore point in Windows XP and Vista.
clean your Temporary Files, Downloaded Program Files, and Internet Cache Files, and also empty the Recycle Bin on all drives.
check some important areas of your system and produce a report for your analyst to review. DSS automatically runs HijackThis for you, but it will also install and place a shortcut to HijackThis on your desktop if you do not already have HijackThis installed.

---------------------------------------------------------------------------------------------

http://www.techsupportforum.com/forums/f100/malware-virus-problem-live-safety-center-online-security-guide-194724.html
Relevancy 113.46%

Hi everybody I suddenly lost the ability to connect to the internet through cable I think it is related to the security update addressing a vulnerability in kerberus http support microsoft com kb I have no idea what it does but I m reasonably sure that it happened just after the update The network connection keeps cycling between quot identifying quot and quot network cable unplugged quot every - seconds I m running windows on an older lenovo laptop and I ve tried rebooting system restore reinstalling the drivers removing lenovo s connectivity program uninstalling the security update manually but all to no avail A thread with a similar problem led me to try changing the quot link speed and duplex quot from quot auto negotiation quot to quot mbps full duplex quot under the advanced tab of the network connection properties this gives me a network connection but no internet access Connecting the cable through the side of the computer changes nothing compared to connection through the docking station I can access the internet just fine through wifi Any ideas Any help will be much appreciated Thanks nbsp

A:Mysterious "Identifying"/"cable unplugged" cycle Internet connection problem

https://forums.techguy.org/threads/mysterious-identifying-cable-unplugged-cycle-internet-connection-problem.1137775/
Relevancy 113.15%

Hello First let me tell you about my system nbsp nbsp This is an Inspiron E laptop with the T Core Duo processor running at GHZ nbsp nbsp It has GB of RAM and a brand new GB Hitachi Travelstar hard drive RPM nbsp nbsp It also has the GeForce Go GS video card nbsp nbsp nbsp It previously had Windows XP Professional bit and worked fine nbsp nbsp But I have three computers in my home and home office with E1705/9400 Inspiron Windows with entries exclamation "Base Device" my under point two Devices" "Other on - Installation New System Minor for Problem yellow 7 and would like them all to work better together on my wired home network so I am upgrading all three to Windows nbsp nbsp My two desktops one is Dimension XPS and the other is Dimension XPS seem like they will be no problem to upgrade to Windows nbsp nbsp But this laptop was not listed on Dell s Windows Compatibility List nbsp nbsp However the Windows Upgrade Advisor that I downloaded and ran seemed to say that Minor Problem with New Windows 7 Installation on my Inspiron E1705/9400 - two entries for "Base System Device" under "Other Devices" with yellow exclamation point it was OK to do a clean install of bit Windows and it only Minor Problem with New Windows 7 Installation on my Inspiron E1705/9400 - two entries for "Base System Device" under "Other Devices" with yellow exclamation point had a few minor concerns where it said to check for updated drivers from the manufacturer nbsp nbsp The laptop originally came with a GB hard drive nbsp nbsp For my use that is getting very small so I decided to get the same exact RPM drive in the GB size nbsp nbsp This will allow me to do a clean install of the bit Windows OS on the new hard drive and not have to wipe the old drive to do it nbsp nbsp I can just hold onto the old HD and stick it back in whenever I might need to get something off of it So here is my minor problem nbsp nbsp After transferring a few needed items off the old hard drive I installed the new GB drive and did a clean install of the bit version of Windows nbsp nbsp nbsp I m happy to report that I had virtually no problems with the installation and everything appears to be working fine nbsp nbsp It seems a little bit more zippy than it was before and I haven t run into anything so far that doesn t seem to be working nbsp nbsp I have gone through most of the features and most everything looks great nbsp nbsp But there is one minor problem showing in the Device Manager nbsp nbsp At least I think it s a minor problem but maybe someone else can give me some input as to whether it is or not In the Device Manager List there is a category now called quot Other Devices quot and the icon shows a little white circle with a question mark in it nbsp nbsp nbsp When you expand this category you see two identical entries that say nbsp nbsp quot Base System Device quot nbsp and the icon has a yellow circle with an exclamation point in it nbsp nbsp nbsp nbsp I know from previous experience that it s not a good thing to see items in the Device Manager that have a yellow circle with an exclamation point nbsp nbsp I have clicked on both of these and neither one really tells you what the device is or who made it or who s website you would go to for a driver nbsp nbsp nbsp Under the general tab it has the following information nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp Device Type nbsp nbsp nbsp - nbsp nbsp nbsp Other Devices nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp Manufacturer nbsp nbsp - nbsp nbsp Unknown nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp Location nbsp nbsp nbsp nbsp - nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp PCI Bus nbsp Device nbsp Function nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp nbsp Under De... Read more

A:Minor Problem with New Windows 7 Installation on my Inspiron E1705/9400 - two entries for "Base System Device" under "Other Devices" with yellow exclamation point

BTW, I just downloaded and installed the driver pack from that ftp location and it worked, even for Windows 8.1 - 64 bit.
Thanks Steve!

Roger

http://en.community.dell.com/support-forums/software-os/f/3524/t/19313275
Relevancy 112.22%

I was having an issue with my Windows cursor flickering between arrow and working in background at an irritianting rate and found the following TechSupportGuy thread a couple of minutes ago http forums techguy org windows-vista -mouse-cursor-constantly-flickering-between html One of the posts in the thread lead me to the solution but unfortunately it seems most people have opted for reinstalling the OS instead Given the the original thread is closed I decided to create a new in flickering II "working background" cursor "arrow" and constantly between Mouse one and post the solution here in an attempt to prevent Mouse cursor constantly flickering between "arrow" and "working in background" II people from taking such drastic measures to get rid of this incredibly irritant issue in the future I simply disabled the Windows Search service and killed the process behind it SearchIndexer exe in Task Manager My cursor is now back to normal Disabling this service Mouse cursor constantly flickering between "arrow" and "working in background" II means any new files will not be indexed although you can re-enable it and leave the pc running for a couple of hours every now and again so that new files are indexed Hope this helps nbsp

https://forums.techguy.org/threads/mouse-cursor-constantly-flickering-between-arrow-and-working-in-background-ii.1010191/
Relevancy 112.22%

Mouse cursor constantly flickering between "arrow" and "working in background" .
How can this be fixed?
 

A:Mouse cursor constantly flickering between "arrow" and "working in background"

Hi, is this a desktop or a laptop?
Let us have some Pc specifications.
Check and post
TSG System Information Utility - found here.
http://library.techguy.org/wiki/TSG_Valuable_links
 

https://forums.techguy.org/threads/mouse-cursor-constantly-flickering-between-arrow-and-working-in-background.1076145/
Relevancy 112.22%

My mouse cursor is constantly flickering between the normal "arrow" and "working in background". I restarted the pc, but that didn't work. Anyone had this happen before, or know how to stop it?
 

A:Mouse cursor constantly flickering between "arrow" and "working in background".

https://forums.techguy.org/threads/mouse-cursor-constantly-flickering-between-arrow-and-working-in-background.642572/
Relevancy 111.29%

Here s the story After removing Security of "Security No Essentials 2010" errors removal internet&hardware after Essentials rogue program with Malwarebytes Anti-Malware my internet didn t work anymore So I tried doing a system restore which fixed the internet However after a reboot initiated by Windows quot updating quot to Internet Explorer the internet has stopped working and I have a yellow exclamation point in devmgmt for my hardware Linksys LNE TX v I tried to manually install my driver to no avail and kept on getting quot driver error code quot LSPFix didn t work driver installation didn t work and I m at a loss I tried sfc scannow and I left the computer with the window When I came back the sfc window was simply gone Could just reformat but there s a lot of files and programs and redownloading all of them would be a hassle EDIT Fixed SQL server issue In addition ran a Combofix even though I m not supposed to sorry I m impatient It found some infected file etc please find log attached Still no internet Here is the HJT log with the program renamed as quot cookie exe quot from a previous fix Logfile of Trend Micro HijackThis No internet&hardware errors after removal of "Security Essentials 2010" v Scan saved at PM on Platform Windows XP SP WinNT MSIE Internet Explorer v Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system IFXTCS exe C WINDOWS system spoolsv exe C Program Files Aclient AClient exe C Program Files Adlib Express AdlibFMR exe C WINDOWS system IFXSPMGT exe C Program Files Common Files Microsoft Shared VS DEBUG MDM EXE C Program Files Microsoft SQL Server MSSQL ADVANCEPRO Binn sqlservr exe C Program Files ProtectTools Embedded Security Software PSDsrvc EXE C WINDOWS system hpzipm exe C WINDOWS Explorer EXE C PROGRA SMARTD Messages SDNotify exe C WINDOWS system svchost exe C Program Files ProtectTools Embedded Security Software PSDrt exe C Program Files ProtectTools Embedded Security Software SpTna exe C Program Files HPQ HP ProtectTools Security Manager PTServs exe C Program Files HP ToolBoxFX bin HPTLBXFX exe C Program Files Microsoft LifeChat LifeChat exe C Program Files iTunes iTunesHelper exe C Program Files Common Files InstallShield UpdateService issch exe C WINDOWS system wscntfy exe C WINDOWS system igfxtray exe C WINDOWS system igfxpers exe C WINDOWS system hkcmd exe C WINDOWS system ctfmon exe C Program Files Microsoft SQL Server Tools Binn sqlmangr exe C Program Files iPod bin iPodService exe C WINDOWS system msiexec exe C Documents and Settings Administrator Desktop cookie exe R - URLSearchHook Yahoo Toolbar - EF BD -C FB- D - F- D F - no file O - BHO Adobe PDF Reader Link Helper - E F-C D - D -B D- B D BE B - C Program Files Common Files Adobe Acrobat ActiveX AcroIEHelper dll O - BHO Spybot-S amp D IE Protection - - F - D - - D F - C PROGRA SPYBOT SDHelper dll O - BHO Symantec Intrusion Prevention - D EC - AAE- -AEEE-F F C - no file O - BHO Groove GFS Browser Helper - - C - D -B F - BBC D A E - C PROGRA MICROS Office GRA E DLL O - BHO Google Toolbar Helper - AA ED - DD- d - -CF F - C Program Files Google Google Toolbar GoogleToolbar dll O - BHO Adobe PDF Conversion Toolbar Helper - AE CD -E - f- - EE - C Program Files Adobe Acrobat Acrobat AcroIEFavClient dll O - BHO Google Toolbar Notifier BHO - AF DE - D - -B FA-CE B AD D - C Program Files Google GoogleToolbarNotifier swg dll O - Toolbar Adobe PDF - -D C - - FA - E EAAC - C Program Files Adobe Acrobat Acrobat AcroIEFavClient dll O - Toolbar Google Toolbar - C B - - d - B - A CD F - C Program Files Google Google Toolbar GoogleToolbar dll O - HKLM Run RTHDCPL RTHDCPL EXE O - HKLM Run DNS reminder quot C Program Files Nuance NaturallySpeaking Ereg Ereg exe quot -r quot C Documents and Settings All Users Application Data Nuance NaturallySpeaking Ereg ini O ... Read more

A:No internet&hardware errors after removal of "Security Essentials 2010"

Formatted. Fixed~
 

https://forums.techguy.org/threads/no-internet-hardware-errors-after-removal-of-security-essentials-2010.921696/
Relevancy 111.29%

If this has been covered, can someone direct me to a thread with help? Home computer is overrun with "Internet Security 2010" pop ups and malware - cannot connect to internet, access system restore or much else. It disabled my MalwareBytes and Symantec Anti virus programs. Tried running a win32NetSky removal tool from disc yesterday with no luck. It will sporadically connect to viagra website or porn.org ...any suggestions?

Thanks!!!!
 

https://forums.techguy.org/threads/internet-security-2010-malicious-program-hijacked-computer.887551/
Relevancy 111.29%

i have a winXP SP laptop hewlett-packard and i m stuck in an auto log-off problem i ve read a lot around various sites about possible causes and fixes seems it could be a quot userinit exe quot file that is missing or corrupt i used malwarebytes to remove the internet security virus and then upgraded from AVG antivirus v to v i also used latest spybot to scan the computer malwarebytes found infected files which i removed quarantine and delete and spybot found two more which were also healed now i have been trying to get into the computer through safe mode and safe mode with command prompt i can not get past the user acct OR the administrator after 2010" "internet auto-logoff removing security account logon before i get logged off auto-logoff after removing "internet security 2010" i can not auto-logoff after removing "internet security 2010" get to a command prompt as far as i can tell in order to try any of the fixes i ve read about can anyone tell me how i might get to a command prompt to run a system restore or otherwise fix this userinit exe file problem thanks nbsp

Relevancy 111.29%

My office just upgraded and I can no longer use Windows XP On this system I was able to add a separate taskbar to facilitate quick access to commonly-browsed folder locations on our vast network and another one expedited the launching of useful programs and lists Each task on each taskbar was represented with a big custom icon to save eye strain I had them installed in opposite vertical margins and they "Launchpads", to "Toolbars" for "Docks" (MSese "TASKBARS" NOT add Need were set on auto-hide to keep them out of the way when not being used Just move your mouse pointer to the left or right margin and BAM Sorry for the cliche but I really got used to the convenience of what I had set up and I just don't think I Need to add "TASKBARS" (MSese for "Launchpads", "Docks" NOT "Toolbars" can be as efficient without anything comparable Now there appears to be nothing comparable in the Windows GUI and it's making me sick with rage I see only the option to put a quot toolbar quot on an existing quot taskbar quot and no option to create any additional taskbars This cramps up your one-and-only taskbar plus the tiny toolbar access buttons require way too much precision for anything that's supposed to be quick When you've figured out how to bring up that ridiculous button the list that it yields is small enough to cause painful eyestrain - nothing efficient much less cool about this at all I have seen customization options in other OS GUIs that may have resolved some of these issues but I see none such in W I have tried every google search string that I can think of and found no answer that deals with anything other than adding that stupid toolbar to the only taskbar that Microsoft will allow you in W So If I'm wrong and have missed some options how do I access them Otherwise I'm hoping there are developers who know what I am talking about and have software to enable the creation of separate taskbars launchpads Can anybody help with either

A:Need to add "TASKBARS" (MSese for "Launchpads", "Docks" NOT "Toolbars"

Several possibilities here: Second taskbar in windows7? [Solved] - Windows 7 - Windows 7

http://www.sevenforums.com/general-discussion/306313-need-add-taskbars-msese-launchpads-docks-not-toolbars.html
Relevancy 110.98%

Hi,

When our website users click on an html attachment embedded on a web-page in IE9, the download manager will not display the "Open" option. It will only display "Save" and "Cancel" which our users don't like, having to save the
html document in a folder to open it. Whereas, when downloading attachments like pdf, word etc. all three options are displayed. 

Is there any setting to tweak , which will display all the 3 options for HTML attachments as well?

A:IE9 download manager will not display "Open" option (only "Save" and "Cancel" is displayed) for downloading HTML documents.

Hi,
As you know, the Open-Save-Cancel dialog box helps you prevent your computer from affecting by virus while downloading. 
So I suggest you test to reset all zones to a lower level temporarily and then please attempt to download this html attachment again.

However, since you can normally download the other documents, I suspect there is some restriction in the website which you are trying to view. I recommend you to contact the administrator of that website if possible.
could you please send me the link of the website from where you are trying to download the html attachment?
Thanks!


We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place.

https://social.technet.microsoft.com/Forums/en-US/3094ac49-8d49-4a60-a7cf-fb12c823e500/ie9-download-manager-will-not-display-quotopenquot-option-only-quotsavequot-and?forum=ieitprocurrentver
Relevancy 110.36%

I am infected with this crap and have used the following tools to try to get rid of it Windows Defender Unible PowerSuite SpeedUpMyPC Registry Booster amp Spyware Protector and Norton's - "Error Worm-Popups-The Icons Netsky Cleaner" Protector" "Spyware..." Three "Privacy One Button Netsky Worm-Popups-The Three Icons - "Error Cleaner" "Privacy Protector" "Spyware..." Checkup and WinDoctor Not sure if it's related but my DISPLAY is locked at X Atempted the Step Process before posting and Panda ActiveScan froze and crashed after scanning files but not before identifying spyware files Here's my extra txt log from Deckard's Deckard's System Scanner v Extra logfile - please post Netsky Worm-Popups-The Three Icons - "Error Cleaner" "Privacy Protector" "Spyware..." this as an attachment with your post -------------------------------------------------------------------------------- -- System Information ---------------------------------------------------------- Microsoft Windows XP Home Edition build SP Architecture X Language English CPU Intel R Pentium R CPU GHz Percentage of Memory in Use Physical Memory total avail MiB MiB Pagefile Memory total avail MiB MiB Virtual Memory total avail MiB MiB A is Removable No Media C is Fixed NTFS - GiB total GiB free D is CDROM CDFS PHYSICALDRIVE - ST A - GiB - partition PARTITION - Unknown - MiB PARTITION bootable - Installable File System - GiB - C -- Security Center ------------------------------------------------------------- AUOptions is scheduled to auto-install Windows Internal Firewall is disabled AntiVirusDisableNotify is set FirewallDisableNotify is set FW Norton Internet Security v Symantec Corporation AV Norton Internet Security v Symantec Corporation HKLM System CurrentControlSet Services SharedAccess Parameters FirewallPolicy DomainProfile AuthorizedApplications List quot windir system sessmgr exe quot quot windir system sessmgr exe enabled xpsp res dll - quot quot C Program Files Logitech Logitech Harmony Remote Software HarmonyRemote exe quot quot C Program Files Logitech Logitech Harmony Remote Software HarmonyRemote exe Enabled Logitech Harmony Remote Software quot quot windir Network Diagnostic xpnetdiag exe quot quot windir Network Diagnostic xpnetdiag exe Enabled xpsp res dll - quot quot C Program Files Logitech Desktop Messenger Program LogitechDesktopMessenger exe quot quot C Program Files Logitech Desktop Messenger Program LogitechDesktopMessenger exe Enabled Logitech Desktop Messenger quot HKLM System CurrentControlSet Services SharedAccess Parameters FirewallPolicy StandardProfile AuthorizedApplications List quot windir system sessmgr exe quot quot windir system sessmgr exe enabled xpsp res dll - quot quot C WINDOWS system LEXPPS EXE quot quot C WINDOWS system LEXPPS EXE Enabled LEXPPS EXE quot quot C Program Files Logitech Logitech Harmony Remote Software HarmonyRemote exe quot quot C Program Files Logitech Logitech Harmony Remote Software HarmonyRemote exe Enabled Logitech Harmony Remote Software quot quot windir Network Diagnostic xpnetdiag exe quot quot windir Network Diagnostic xpnetdiag exe Enabled xpsp res dll - quot quot C Program Files Logitech Desktop Messenger Program LogitechDesktopMessenger exe quot quot C Program Files Logitech Desktop Messenger Program LogitechDesktopMessenger exe Enabled Logitech Desktop Messenger quot quot C Program Files LimeWire LimeWire exe quot quot C Program Files LimeWire LimeWire exe Enabled LimeWire quot quot C Program Files Yahoo Messenger YahooMessenger exe quot quot C Program Files Yahoo Messenger YahooMessenger exe Enabled Yahoo Messenger quot quot C Program Files Yahoo Messenger YServer exe quot quot C Program Files Yahoo Messenger YServer exe Enabled Yahoo FT Server quot quot C Program Files Messenger msmsgs exe quot quot C Program Files Messenger msmsgs exe Enabled Windows Messenger quot quot C Program Files Veoh Networks Veoh VeohCli... Read more

A:Netsky Worm-Popups-The Three Icons - "Error Cleaner" "Privacy Protector" "Spyware..."

Bump.

http://www.techsupportforum.com/forums/f284/netsky-worm-popups-the-three-icons-error-cleaner-privacy-protector-spyware-207223.html
Relevancy 109.74%

Ok so im new here so hey everybody to the point my laptop is quot stuttering quot lagging skipping whatever you wanna call it its doing it my video music and cursor skip every second for a splt second it starts on start-up and dont stop til i turn my laptop off it happens in a pattern its not random ive done checked my drivers spyware and m RAM is good so can someone please help me could it be because my battery wont hold a charger so it has to be hooked up to the charger at ALL times or it dies Example is the charger not got the quot juice quot to run the laptop by itself so it studders skips i dont know if this has report viewer "studders"/"skips"/"lags" Whole Solved: (PLEASE computer .. event have anything to do with my problem but i ran quot event viewer quot and found this The following boot-start or system-start driver s failed to load Cdrom Imapi redbook PLEASE HELP OS Version Microsoft Windows XP Home Edition Service Pack bit Processor Genuine Intel R CPU Solved: Whole computer "studders"/"skips"/"lags" .. have event viewer report (PLEASE T GHz x Family Model Stepping Processor Count RAM Mb Graphics Card Mobile Intel R GM Express Chipset Family Mb Hard Drives C Total - MB Free - MB D Total - MB Free - MB Motherboard Dell Inc FF HWPLLB CN S Antivirus McAfee VirusScan Updated Yes On-Demand Scanner Disable nbsp

A:Solved: Whole computer "studders"/"skips"/"lags" .. have event viewer report (PLEASE

https://forums.techguy.org/threads/solved-whole-computer-studders-skips-lags-have-event-viewer-report-please.981934/
Relevancy 109.74%

I double-click and get "search" instead of "open"--only when I click a disk, like Hard Drive C: or Floppy A: or CD F: and so on.

It didn't used to do this, so I must've inadvertently changed some setting somewhere, but darned if I can find it now.

Any ideas?
 

A:Solved: On the "my computer" list, I double-click on disks and get "search" instead of "open"

https://forums.techguy.org/threads/solved-on-the-my-computer-list-i-double-click-on-disks-and-get-search-instead-of-open.407035/
Relevancy 109.12%

Ok where do I begin I have been dealing with viruses spyware malware for the past week It all started with Norton advising me that I had been infected with Trojan Vundo and Trojan Zonebac After that I started receiving many different pop ups warning me about critical system alerts I also had an and Guide" Center" on desktop "Live friends Security "Online Help? 2 Safety evil annoying yellow triangle at the bottom of my screen warning me about different trojans and worms More evil friends included new icons that had made their home on my desktop one named quot Live Safety Center quot and the other quot Online Security Guide 2 evil friends on desktop "Live Safety Center" and "Online Security Guide" Help? quot also installed was a new toolbar named quot Security Toolbar quot I have scanned my computer with many different programs and have somehow finally managed to get rid of the pop ups and toolbar although I know I'm probably still infected somewhere I'm sorry this is so long but I wanted to explain EVERYTHING I'm running Windows XP SP and have followed all steps to post I downloaded DSS but after many attempts to run it just wouldn't let me I do have a fresh hijackthis log and my Panda report I hope this is good enough Many thanks in advance to whomever helps me I am desperate Monica Logfile of Trend Micro HijackThis v Scan saved at PM on Platform Windows XP SP WinNT MSIE Internet Explorer v SP Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C Program Files Windows Defender MsMpEng exe C WINDOWS System svchost exe C Program Files Sygate SPF smc exe C Program Files Common Files Symantec Shared ccSvcHst exe C Program Files Common Files Symantec Shared AppCore AppSvc exe C Program Files Lavasoft Ad-Aware aawservice exe C WINDOWS system spoolsv exe C Program Files Common Files AOL ACS AOLacsd exe C WINDOWS wanmpsvc exe C WINDOWS Explorer EXE C Program Files QuickTime bak qttask exe C Program Files Common Files Symantec Shared ccApp exe C Program Files Common Files AOL ee AOLSoftware exe C Program Files Windows Defender MSASCui exe C Program Files Spybot - Search amp Destroy TeaTimer exe C Program Files Hewlett-Packard Digital Imaging bin hpohmr exe C Program Files Hewlett-Packard Digital Imaging bin hpotdd exe C Program Files Hewlett-Packard Digital Imaging bin hpoevm exe C Program Files Hewlett-Packard Digital Imaging Bin hpoSTS exe C WINDOWS System svchost exe C Program Files Common Files Symantec Shared CCPD-LC symlcsvc exe C Program Files Trend Micro HijackThis HijackThis exe R - HKCU Software Microsoft Internet Explorer Main Start Page http www yahoo com R - HKLM Software Microsoft Internet Explorer Main Default Page URL http www dell me com myway R - HKLM Software Microsoft Internet Explorer Main Start Page http www dell me com myway O - BHO AcroIEHlprObj Class - E F-C D - D -B D- B D BE B - C Program Files Adobe Acrobat Reader ActiveX AcroIEHelper dll O - BHO no name - E A - - D F-BEAE-D A C - C Program Files Common Files Symantec Shared coShared Browser NppBho dll O - BHO no name - FDA -E E - BDA-BBE - DB CDDB - no file O - BHO Spybot-S amp D IE Protection - - F - D - - D F - C PROGRA SPYBOT SDHelper dll O - BHO no name - C B A - DB - A -A CB-D BBFEB - no file O - BHO DriveLetterAccess - CA D E- - CF- E - - C WINDOWS system dla tfswshx dll O - BHO no name - C A-F - -A F-A A D F - no file O - BHO no name - D -B - F -B CA- E - no file O - BHO no name - A BC A - CF- B- B D-B C B CD - no file O - BHO no name - A C - F- E- ECB- D - no file O - BHO no name - A B - D E- -A - C DE A - no file O - BHO f- a -f ab- - bfab f a bf - fb a f b-afb - -ba f- a f - C WINDOWS system npsbqepw dll O - BHO no name - FDD B - D - ffb- - B AD ACC - no file O - Toolbar AIM Search - D A B-D B- d - A - EE F C - C Program Files AIM Toolbar AIMBar dll O - Toolbar Show Norton Toolbar - -F... Read more

A:2 evil friends on desktop "Live Safety Center" and "Online Security Guide" Help?

Hi, thanks for trying to perform all the steps.


Quote:




I downloaded DSS, but after many attempts to run, it just wouldn't let me.




At what stage does DSS stop working?

http://www.techsupportforum.com/forums/f284/2-evil-friends-on-desktop-live-safety-center-and-online-security-guide-help-195707.html
Relevancy 108.81%

One lapse of judgement and I'm out of action for the weekend Anyway I've run Avast and removed a number of viruses it found but I still have these annoying popups etc Log reLogfile of Trend Micro HijackThis v Scan saved at VIRUS ALERT on Platform Windows XP SP WinNT MSIE Internet Explorer v SP Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system Ati evxx exe "Security and Time Alert" also popups ALERT!" 24h reads changed to various "VIRUS C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system Ati evxx exe C WINDOWS system ZoneLabs vsmon exe C WINDOWS Explorer EXE C Program Files Lavasoft Ad-Aware aawservice exe C Program Files Avast Avast aswUpdSv exe C Program Files Avast Avast ashServ exe C WINDOWS system spoolsv exe C WINDOWS SOUNDMAN EXE C PROGRA Avast Time changed to 24h and reads "VIRUS ALERT!" also various "Security Alert" popups Avast ashDisp exe C Program Files D-Tools daemon exe C Program Files Winamp winampa exe C Program Files Common Files Real Update OB realsched exe C Program Files Java jre bin jusched exe C WINDOWS CTHELPER EXE C WINDOWS system RunDll exe C Program Files Zone Labs ZoneAlarm zlclient exe C WINDOWS vVX exe C Program Files Skype Phone Skype exe C Program Files Electronic Arts EADM Core exe C WINDOWS system WTablet TabUserW exe C Program Files VIA RAID raid tool exe C Program Files ATI Technologies ATI ACE Core-Static MOM exe C Program Files Logitech MouseWare system em exec exe C Program Files Microsoft LifeCam MSCamS exe C WINDOWS system PnkBstrA exe C WINDOWS system svchost exe C WINDOWS system Tablet exe C Program Files Skype Plugin Manager SkypePM exe C Program Files ATI Technologies ATI ACE Core-Static ccc exe C Program Files Avast Avast ashMaiSv exe C Program Files Avast Avast ashWebSv exe C Program Files Real RealPlayer RealPlay exe Time changed to 24h and reads "VIRUS ALERT!" also various "Security Alert" popups C Program Files Real RealPlayer RealPlay exe C WINDOWS system WgaTray exe C Program Files Mozilla Firefox firefox exe C Program Files A Time changed to 24h and reads "VIRUS ALERT!" also various "Security Alert" popups A exe C Program Files HijackThis HijackThis exe R - HKCU Software Microsoft Internet Explorer Main Start Page http softwarereferral com jump php MjI Ojg amp lid O - BHO Adobe PDF Reader Link Helper - E F-C D - D -B D- B D BE B - C Program Files Adobe Acrobat ActiveX AcroIEHelper dll O - BHO QXK Olive - C - - CD -A A -EDDAFE CEDF - C WINDOWS vortsgbqrfe dll O - BHO SSVHelper Class - BB-D F - C-B EB-D DAF D D - C Program Files Java jre bin ssv dll O - Toolbar olnmraew - BC E B-BDE - CF -B - E B - C WINDOWS olnmraew dll O - HKLM Run SoundMan SOUNDMAN EXE O - HKLM Run ATIPTA quot C Program Files ATI Technologies ATI Control Panel atiptaxx exe quot O - HKLM Run avast C PROGRA Avast Avast ashDisp exe O - HKLM Run DAEMON Tools- quot C Program Files D-Tools daemon exe quot -lang O - HKLM Run WinampAgent C Program Files Winamp winampa exe O - HKLM Run TkBellExe quot C Program Files Common Files Real Update OB realsched exe quot -osboot O - HKLM Run Logitech Utility Logi MwX Exe O - HKLM Run SunJavaUpdateSched C Program Files Java jre bin jusched exe O - HKLM Run NeroFilterCheck C WINDOWS system NeroCheck exe O - HKLM Run CTHelper CTHELPER EXE O - HKLM Run UpdReg C WINDOWS UpdReg EXE O - HKLM Run CmUsbSound RunDll cmcnfgu cpl CMICtrlWnd O - HKLM Run ZoneAlarm Client quot C Program Files Zone Labs ZoneAlarm zlclient exe quot O - HKLM Run SeekmoOE C Program Files Seekmo bin OEAddOn exe O - HKLM Run SeekmoSA quot C Program Files Seekmo bin SeekmoSA exe quot O - HKLM Run VX C WINDOWS vVX exe O - HKLM Run LifeCam quot C Program Files Microsoft LifeCam LifeExp exe quot O - HKLM Run StartCCC quot C Program Files ATI Technologies ATI ACE Core-Static CLIStart exe quot MSRun O - H... Read more

A:Time changed to 24h and reads "VIRUS ALERT!" also various "Security Alert" popups

Apologies for the double-post. I could not see an edit function.
I've cleaned out a couple of nasties with Adaware, although i've not seen much change - still getting the same "VIRUS ALERT!" and popups. Still, I thought it best to update the log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:37: VIRUS ALERT!, on 12/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\Avast\Avast4\aswUpdSv.exe
C:\Program Files\Avast\Avast4\ashServ.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\Avast\Avast4\ashDisp.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\CTHELPER.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\vVX1000.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Electronic Arts\EADM\Core.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\system32\WTablet\TabUserW.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Tablet.exe
C:\Program Files\Skype\Plugin Manager\SkypePM.exe
C:\Program Files\Avast\Avast4\ashMaiSv.exe
C:\Program Files\Avast\Avast4\ashWebSv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php...MjI6Ojg5&lid=2
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: QXK Olive - {65352C87-3458-4CD8-A4A0-EDDAFE7CEDF2} - C:\WINDOWS\vortsgbqrfe.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: olnmraew - {BC589E0B-BDE4-4CF5-B052-9E97921302B1} - C:\WINDOWS\olnmraew.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [CmUsbSound] RunDll32 cmcnfgu.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [SeekmoOE] C:\Program Files\Seekmo\bin\10.0.406.0\OEAddOn.exe
O4 - HKLM\..\Run: [SeekmoSA] "C:\Program Files\Seekmo\bin\10.0.406.0\SeekmoSA.exe"
O4 - HKLM\..\Run: [VX1000] C:\WINDOWS\vVX1000.exe
O4 - HKLM\..\Run: [Li... Read more

http://www.techsupportforum.com/forums/f100/time-changed-to-24h-and-reads-virus-alert-also-various-security-alert-popups-301340.html
Relevancy 108.5%

Ok so im new here so hey everybody to the point my laptop is quot stuttering quot lagging skipping whatever you wanna call it its doing it my video music report (PLEASE event have HELP) Whole .. viewer "studders"/"skips"/"lags" computer and cursor skip every second for a splt second it starts on start-up and dont stop til i turn my laptop off it happens in a pattern its not random ive done checked my Whole computer "studders"/"skips"/"lags" .. have event viewer report (PLEASE HELP) drivers spyware and m RAM is good so can someone please help me could it be because my battery wont hold a charger so it has to be hooked up to the charger at ALL times or it dies Example is the charger not got the quot juice quot to run the laptop by itself so it studders skips i dont know if this has anything to do with my problem but i ran quot event viewer quot and found this The following boot-start or system-start driver s failed to load Cdrom Imapi redbook PLEASE HELP nbsp

A:Whole computer "studders"/"skips"/"lags" .. have event viewer report (PLEASE HELP)

**(DONT KNOW IF THIS WILL HELP..)***

Tech Support Guy System Info Utility version 1.0.0.1
OS Version: Microsoft Windows XP Home Edition, Service Pack 3, 32 bit
Processor: Genuine Intel(R) CPU T2250 @ 1.73GHz, x86 Family 6 Model 14 Stepping 8
Processor Count: 2
RAM: 502 Mb
Graphics Card: Mobile Intel(R) 945GM Express Chipset Family, 224 Mb
Hard Drives: C: Total - 39723 MB, Free - 23484 MB; D: Total - 12684 MB, Free - 3633 MB;
 

https://forums.techguy.org/threads/whole-computer-studders-skips-lags-have-event-viewer-report-please-help.981932/
Relevancy 108.19%

I'm having the same problem that a lot of people are having These icons have showed up on my desktop and i keep getting pop ups telling me to download them because i have a virus i would really applicate the help thanks John -- System Restore -------------------------------------------------------------- Successfully created a Deckard's System Scanner Restore Point -- Last Restore Point s -- - - UTC - RP - Deckard's System Scanner Restore Point - - UTC - RP - System Checkpoint - - UTC - RP - System Checkpoint - - UTC - RP - Software Distribution Service - - UTC - RP - Removed Banctec Service Agreement -- First Restore Point -- - - UTC - RP - System Checkpoint Backed up registry hives Performed disk cleanup Percentage of Memory in Use more than Total Physical Memory MiB MiB recommended System Drive C has GiB less than free -- HijackThis Clone ------------------------------------------------------------ Emulating logfile of Trend security center" "live log guide" deckard here "online and safety Micro HijackThis v Scan saved at - - Platform Windows XP Service Pack MSIE Internet Explorer Boot mode Normal Running processes C WINDOWS SYSTEM SMSS EXE C WINDOWS SYSTEM WINLOGON EXE C WINDOWS SYSTEM SERVICES EXE C WINDOWS SYSTEM LSASS EXE C WINDOWS SYSTEM SVCHOST EXE C WINDOWS SYSTEM SVCHOST EXE C Program Files Common Files Symantec Shared ccSvcHst exe C Program Files Common Files Symantec Shared AppCore AppSvc exe C WINDOWS SYSTEM "online security guide" and "live safety center" deckard log here spoolsv exe C Program Files Symantec LiveUpdate AluSchedulerSvc exe C Program Files Common Files Symantec Shared ccSvcHst exe C WINDOWS SYSTEM CTSVCCDA EXE "online security guide" and "live safety center" deckard log here C WINDOWS SYSTEM SVCHOST EXE C WINDOWS SYSTEM MsPMSPSv exe C WINDOWS explorer exe C Program "online security guide" and "live safety center" deckard log here Files Java j re bin jusched exe C Program Files Intel Modem Event Monitor IntelMEM exe C WINDOWS SYSTEM RUNDLL EXE C Program Files Dell Media Experience PCMService exe C Program Files CyberLink PowerDVD DVDLauncher exe C WINDOWS SYSTEM dla tfswctrl exe C WINDOWS SYSTEM hkcmd exe C WINDOWS SYSTEM igfxpers exe C Program Files iTunes iTunesHelper exe C Program Files Common Files Symantec Shared ccApp exe C Program Files iPod bin iPodService exe C Program Files Mozilla Firefox firefox exe C Program Files Mozilla Firefox firefox exe C Program Files Mozilla Firefox firefox exe C Documents and Settings John Desktop dss exe C Program Files Internet Explorer IEXPLORE EXE R - HKCU Software Microsoft Internet Explorer Main Default Page URL http www dell me com myway R - HKCU Software Microsoft Internet Explorer Main Search Bar http www google com ie R - HKCU Software Microsoft Internet Explorer Main Start Page http securityresponse symantec com fix homepage R - HKCU Software Microsoft Internet Connection Wizard ShellNext http www dell me com myway R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyServer O - BHO AcroIEHlprObj Class - E F-C D - D -B D- B D BE B - C Program Files Adobe Acrobat Reader ActiveX AcroIEHelper dll O - BHO no name - E A - - D F-BEAE-D A C - C Program Files Common Files Symantec Shared coShared Browser NppBHO dll O - BHO no name - CB F B - F - D E-BC B- A - C WINDOWS SYSTEM ssqnnnm dll O - BHO RXResultTracker Class - FA - - c-A CC- EC DE CA - C Program Files RXToolBar sfcont dll file missing O - BHO DriveLetterAccess - CA D E- - CF- E - - C WINDOWS SYSTEM dla tfswshx dll O - BHO ab ae b- - a- -ffe f d a - a d f- eff- -a - b ea ba - C WINDOWS SYSTEM jgqnbgas dll O - BHO no name - A B - D E- -A - C DE A - C WINDOWS SYSTEM ujxxmekz dll O - BHO no name - DC BD B-BB - -B -C B C BCD AB - C WINDOWS SYSTEM pmnno dll O - Toolbar no name - BA B -B - c -B - F F - no file O - Toolbar Show Norton Toolbar - -F - -B -FBEE C B DF - C Program Files Common Files Symantec Shar... Read more

A:"online security guide" and "live safety center" deckard log here

Hello and Welcome. Please subscribe to this thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant Notification, then click Subscribe.

Before beginning the fix, read this post completely. If there's anything that you do not understand, kindly ask your questions before proceeding. Ensure that there aren't any opened browsers when you are carrying out the procedures below. Save the following instructions in Notepad as this webpage would not be available when you're carrying out the fix.

It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.

---------------------------------------------------------------------------------------------

Please download VundoFix.exe to your desktop. We'll use this later.

Download SDFix and save it to your Desktop.

Please download & install - ERUNT (This is a utility that'll replicate a copy of your Registry)
Start ERUNT, confirm the Welcome message.

Next, select the backup options:

System registry
Current User Registry
Other open user registry

Click "OK" and wait until the backup process is complete. (Note that depending on your system configuration this may take some time, and that the first bar is NOT a progress bar, just an indicator that the program is still running.)
# Note: To ensure proper operation of ERUNT, you should be logged in as a system administrator.

Disconnect from the internet.

Double click SDFix.exe and it will extract the files to %systemdrive%
(Drive that contains the Windows Directory, typically C:\SDFix)

---------------------------------------------------------------------------------------------

Copy and paste the following into Notepad (don't forget to copy and paste REGEDIT4):


Quote:




REGEDIT4

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"Authentication Packages"=hex(7):6d,73,76,31,5f,30,00,00




Save the file as "delete.reg". Make sure to save it with the quotes. It should look like this:

Close Notepad.

Double click on the delete.reg file and choose Yes to merge/add it to the registry. You may delete the file afterwards.

---------------------------------------------------------------------------------------------
Double-click VundoFix.exe to run it.
Click the Scan for Vundo button.
Once it's done scanning, click the Remove Vundo button.
You will receive a prompt asking if you want to remove the files, click YES
Once you click yes, your desktop will go blank as it starts removing Vundo.
When completed, it will prompt that it will reboot your computer, click OK.
Please post the contents of C:\vundofix.txt in your next reply..
Note: It is possible that VundoFix encountered a file it could not remove. In this case, VundoFix will run on reboot, simply follow the above instructions starting from "Click the Scan for Vundo button" when VundoFix appears upon rebooting.

Once VundoFix has completed it's work....

Please then reboot your computer in Safe Mode by doing the following :Restart your computer
After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
Instead of Windows loading as normal, the Advanced Options Menu should appear;
Select the first option, to run Windows in Safe Mode, then press Enter.
Choose your usual account.

Open HijackThis and click on 'Do a System Scan Only'. Check the following entries if they still exist and click Fix Checked

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell4me.com/myway
O2 - BHO: (no name) - {4CB8F4B4-5F66-4D9E-BC3B-184596A58824} - C:\WINDOWS\SYSTEM32\ssqnnnm.dll
O2 - BHO: RXResultTracker Class - {59879FA4-4790-461... Read more

http://www.techsupportforum.com/forums/f100/online-security-guide-and-live-safety-center-deckard-log-here-196041.html
Relevancy 108.19%

I don't have a clue where to begin trying to fix this problem. Spybot doesn't seem to fix the problem. I keep getting random icons on my desktop and start menu called "online security guide" and "live saftey center". There are also many fake balloon warnings appearing and a window titled "Critical System Warning!" that wants me to download stuff. What process can I go through to clean my system. Any help would be great...thank you!

A:i need help - "online security guide" & "live safety center" icons!!

Please follow MicroBell's 5 Step process outlined here:

http://www.techsupportforum.com/secu...tml#post342651

After running through all the steps, please post the requested logs.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

http://www.techsupportforum.com/forums/f284/i-need-help-online-security-guide-and-live-safety-center-icons-193369.html
Relevancy 108.19%

ok!!!!!!!!!! what is it and how do i fix it,,,, eyes crossed knees woobly help?????????????????????
 

A:[Solved] mplay32.exe,1"/play/close"%L"." and sndrec32.exe"%L"."

https://forums.techguy.org/threads/solved-mplay32-exe-1-play-close-l-and-sndrec32-exe-l.197498/
Relevancy 107.88%

I've been having some problems with my computer and I've always somehow managed to work my way around the issues spyware malware etc have created but lately it's been getting out of hand Some time ago I got a virus or something that made the entire tab under quot Processes quot dissapear So I could not see process-names in the task-manager I have re-installed XP but this problem persists I have been using a different application to monitor and handle processes The problem now is the constant pop-ups generated from this fake anti-virus program calling itself quot Anti Virus Pro quot or something It pops up with fake commercials and even attach itself into other explorer-windows while I view other pages As popups and messageboxes keep popping up I close them but after a while windows will open a messagebox telling me quot Buffer overrun detected in e Windows system explorer exe quot or windows explorer exe I don't remember really but you get the idea and explorer exe will be terminated sometimes taking some internet explorer windows along with it other times explorer exe just starts up again and all my windows remain I used to have Norton but was forced to remove it as it was sucking up all my CPU It rendered my computer and something++ fake a "Buffer Infected "Win overrun Spyware" - dialer or Anti error" useless as I mainly use it for gaming I've also experienced having the connection between me and my modem broken while beeing on the internet and I don't know if my computer actually is offline or if -I'm- just offline The LAN-connection won't detect my modem and I can't even find it by pinging it I have been trough Step without finding anything I could remove in control-panel The panda online search take hours if not days to finish as it slows down severly after a certain time I have tried acouple of times but before it finish a popup or an error will close the browser window EDIT I forgot to mention I have tried to follow acouple of solutions I saw you guys giving people Infected - "Win Anti Spyware" "Buffer overrun error" and a fake dialer or something++ with similiar problems Infected - "Win Anti Spyware" "Buffer overrun error" and a fake dialer or something++ as I had and searching for malware and stuff it did find some infected dll-files in my system folder and other windows-folders I deleted afew but something called nnommmll dll or something was attached to winlogon exe and therefore I couldn't delete it The other files came back after my computer crashed anyway though x x I'll now paste the logfile generated by dss exe ---------------------------------------------------- Deckard's System Scanner v Run by Per Killer on - - Computer is in Normal Mode -------------------------------------------------------------------------------- -- System Restore -------------------------------------------------------------- Successfully created a Deckard's System Scanner Restore Point -- Last Infected - "Win Anti Spyware" "Buffer overrun error" and a fake dialer or something++ Restore Point s -- - - UTC - RP - Deckard's System Scanner Restore Point - - UTC - RP - Kontrollpunkt for system - - UTC - RP - Kontrollpunkt for system - - UTC - RP - Kontrollpunkt for system Backed up registry hives Performed disk cleanup System Drive E has GiB less than free -- HijackThis run as Per Killer exe ------------------------------------------ Unable to find log file not found running clone -- HijackThis Clone ------------------------------------------------------------ Emulating logfile of HijackThis v Scan saved at - - Platform Windows XP Service Pack MSIE Internet Explorer Running processes E WINDOWS system smss exe E WINDOWS system winlogon exe E WINDOWS system services exe E WINDOWS system lsass exe E WINDOWS system svchost exe E WINDOWS system svchost exe E WINDOWS system spoolsv exe E WINDOWS system CTSVCCDA EXE E WINDOWS system nvsvc exe E WINDOWS system PnkBstrA e... Read more

A:Infected - "Win Anti Spyware" "Buffer overrun error" and a fake dialer or something++

Hello and welcome to TSF

Please download ComboFix

Note: It is important that it is saved directly to your desktop.

Close all browsers. Double click combofix.exe & follow the prompts.
When finished, it will produce a log for you. Post that log in your next reply.
Note: Do not mouseclick combofix's window while it's running. That may cause it to stall.

You are using an older version of HijackThis. Please do the following to download and install the latest version of HijackThis v2.0.2:

CLICK HERE to download the HijackThis Installer:Save HJTInstall.exe to your desktop.
Double-click on HJTInstall.exe to run the program.
By default it will install to C:\Program Files\Trend Micro\HijackThis.
Accept the license agreement by clicking the "I Accept" button.
Click on the "Do a system scan and save a log file" button. It will scan and then ask you to save the log.
Click "Save log" to save the log file and then the log will open in Notepad.
Click on "Edit -> Select All" then click on "Edit -> Copy" to copy the entire contents of the log.
Come back here to this thread and paste the log in your next reply.
Do NOT have HijackThis fix anything yet! Most of what it finds will be harmless or even required.

You may delete the older version once you have successfully downloaded and installed the latest version of HijackThis v2.0.2.

Expected logs:

Combofix.txt
HijackThis log

http://www.techsupportforum.com/forums/f284/infected-win-anti-spyware-buffer-overrun-error-and-a-fake-dialer-or-something-185695.html
Relevancy 107.57%

In short there is a program installed which doesn't show in installed programes which scans my PC saying I have spyware and wants to access things and install some antivirus programs while changing my background I was browsing forums not downloading and opening things when the classical red shield with white x appeared in my tray next to time and volume settings and every now and then a bubble appeared saying my computer Version PC Security INFECTED with "System 4.52"[MOVED] is infected and I have to install some official Windows protection I did not click on it Then a notice popped up with the PC INFECTED with "System Security Version 4.52"[MOVED] classical thud noise saying I have to install official Windows spyware malware removal program so I clicked on storno and let my antivirus AVG run When I returned I was logged off After logging on my desktop background was changed - it was blue with grey s and s with huge white red letteres upon it saying things like quot Warning You re in danger Your PC is infected Secure yourself right now For your boss friends children wife etc quot PLUS there was a new icon apart from the shield PC INFECTED with "System Security Version 4.52"[MOVED] in my tray - a black and yellow striped shield upon which you can't right click called System Security Version which started upon logging in and began scanning the PC while saying I have at least spyware malware found So I stopped the scan and because there is no exit button I tried changing the background After a small while the old ugly blue background with the messages came back and again the System Security opened and began scanning my PC Every now and then it appeared and when I tried running the DDS with the virus still on PC restarted And it also says things like quot Firefox is trying to send details about your credit PC INFECTED with "System Security Version 4.52"[MOVED] card install this antiviru click yes to install or no to let your pc go unprotected So when I pressed ctrl alt del and ended the application after restart it disappeared from the tray and stopped popping up Even the shield disappeared and background stopped changing from my one to the quot virus one quot However the thing doesn't show up in installed applications so I don't know what to do because the next time I will start up PC it will be there again EDIT I just found under C documentsandsettings deti theloginI'mon nabidkastart menustart programy programs systemsecurity And inside it was a KB bytes file so I deleted it EDIT It didn't do anything The folder is still in my bin Here's the DDS DDS Ver - - - NTFSx Run by Deti at on st Internet Explorer Microsoft Windows XP Home Edition GMT AV AVG Anti-Virus Free On-access scanning enabled Updated DDD - FF- F- E B- D D BF SP Spy Emergency enabled Updated - E- b -A A- D A DD Running Processes C WINDOWS system Ati evxx exe C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS System svchost exe -k netsvcs svchost exe svchost exe C WINDOWS system spoolsv exe svchost exe C PROGRA AVG AVG avgwdsvc exe svchost exe C PROGRA AVG AVG avgrsx exe C PROGRA AVG AVG avgnsx exe C Program Files Olympus DeviceDetector DM Service exe C Program Files iolo common lib ioloServiceManager exe C Program Files NETGATE Spy Emergency SpyEmergencySrv exe C WINDOWS System svchost exe -k imgsvc C WINDOWS system Ati evxx exe C PROGRA AVG AVG avgemc exe C WINDOWS Explorer EXE C WINDOWS system SearchIndexer exe C Program Files AVG AVG avgcsrvx exe C WINDOWS SOUNDMAN EXE C WINDOWS AGRSMMSG exe C WINDOWS system rundll exe C Program Files ATI Technologies ATI Control Panel atiptaxx exe C Program Files ATI Technologies ATI ACE cli exe C WINDOWS Temp ex- exe C WINDOWS system ctfmon exe C Program Files Olympus DeviceDetector DevDtct exe C WINDOWS system wuauclt exe svchost C Program Files ATI Technologies ATI ACE cli exe C WINDOWS system SearchProtocolHost exe C Documents and Settings Deti Plocha dds scr Pseudo HJT Repor... Read more

A:PC INFECTED with "System Security Version 4.52"[MOVED]

Please be patient, a security analyst will be with you to give further instructions

http://www.techsupportforum.com/forums/f50/pc-infected-with-system-security-version-4-52-moved-397434.html
Relevancy 107.57%

Hi First thank you for taking the time to look at this My "System my infected not Help: much desktop Security" after its better PC & 'removal' desktop was infected with System Security I followed an online tutorial to remove the malware All visual signs of the malware were removed The computer runs very slow now For some time it also had a google redirect issue Currently Chrome does not work at all it loads a blank page indefinitely unless the no sandbox command is inserted into the target within the icon Many antivirus programs malware programs and rootkit programs have been tried yet the computer remains at the point where it is barely usable The last thing I want to do is reformat I have seen many users online that have had almost identical if not identical problems which seem to also stem from Help: "System Security" infected my desktop PC & after 'removal' its not much better the same or similar infection but nothing has helped get the computer back to peek performance Help: "System Security" infected my desktop PC & after 'removal' its not much better I recently ran a rootkit remover and it detected quot redbook sys quot and removed it Windows XP SP The computer works perfectly when Help: "System Security" infected my desktop PC & after 'removal' its not much better in quot Safe Mode w Networking quot let me know what other info you need as I am in this for the long haul with you this forum may be my last hope nbsp

https://forums.techguy.org/threads/help-system-security-infected-my-desktop-pc-after-removal-its-not-much-better.932305/
Relevancy 107.26%

System Acer Aspire one netbook Win XP home ed SP Synopsis of issue Got this comp from my company for a new line of work I started Was quot deep frozen quot when I got it and was useless to me in that state Got it thawed and it suddenly wanted to do loads of updates so I let it Apparently I was not careful enough amp got the quot XP antivirus quot malware Eventually conquered that beast and installed avira free almost immediately avira picked up on the quot html infected win gen quot malware I quarantined deleted scanned comp w avira rkill amp malwarebytes all scans came up clean but I now have no connectivity wired conn continually tries to acquire network address and w less has limited or no Not my router or modem win.gen2&quot; [SOLVED] issues antivirus &quot;XP and 2012&quot; &quot;infected No Connectivity after as I have home comps actively cnctd as I type this Also tried multiple other networks w same neg results After loads of searching and t s'ing I believe I have found the root of the problem When I look under quot services quot I found that quot netbios helper quot quot Network Location Awareness quot amp quot dhcp client [SOLVED] No Connectivity after &quot;infected win.gen2&quot; and &quot;XP antivirus 2012&quot; issues quot [SOLVED] No Connectivity after &quot;infected win.gen2&quot; and &quot;XP antivirus 2012&quot; issues are all not started Trying to start them results in failure b c some quot dependencies are marked for deletion quot the afore-mentioned things are dependent upon the Netbios over tcpip and tcpip protocol driver Those drivers are in the system drivers folder but I cannot find a quot non plug and play quot section in the device manager Yes I looked under quot hidden devices quot and I looked in every drop down I successfully cmd netsh int ip reset c resetlog txt but when I tried to reset winsock I got winsock is not recognized as an internal or external command operable program or batch file I have no reboot disk or thumb drive and bios is p w'ed so I can't wipe the slate clean and start fresh Is there anything I can do short of giving it to the quot IT guy quot at work That's a black hole I'd really like to avoid if possible I hope I have been as clear and concise as possible and I appreciate all the help Happy New Year dds report UNLESS SPECIFICALLY INSTRUCTED DO NOT POST THIS LOG IF REQUESTED ZIP IT UP amp ATTACH IT DDS Ver - - Microsoft Windows XP Home Edition Boot Device Device HarddiskVolume Install Date AM System Uptime PM hours ago Motherboard Acer Aspire one Processor Intel R Atom TM CPU N GHz CPU mhz Disk Partitions C is FIXED NTFS - GiB total GiB free D is Removable Disabled Device Manager Items System Restore Points RP AM - Software Distribution Service RP PM - Software Distribution Service RP PM - Software Distribution Service RP PM - Software Distribution Service RP PM - System Checkpoint Installed Programs Adobe Flash Player ActiveX Adobe Reader Adobe Shockwave Player Avira Free Antivirus Critical Update for Windows Media Player KB Hotfix for Microsoft NET Framework SP KB Hotfix for Microsoft NET Framework SP KB Hotfix for Windows Media Format SDK KB Hotfix for Windows Media Player KB Hotfix for Windows XP KB Hotfix for Windows XP KB Hotfix for Windows XP KB -v Hotfix for Windows XP KB Hotfix for Windows XP KB -v Hotfix for Windows XP KB -v Intel R Graphics Media Accelerator Driver Java TM Update Malwarebytes Anti-Malware version Microsoft NET Framework Microsoft NET Framework Security Update KB Microsoft NET Framework Service Pack Microsoft NET Framework Service Pack Microsoft NET Framework SP Microsoft Base Smart Card Cryptographic Service Provider Package Microsoft Compression Client Pack for Windows XP Microsoft Internationalized Domain Names Mitigation APIs Microsoft Kernel-Mode Driver Framework Feature Pack Microsoft National Language Support Downlevel APIs Microsoft User-Mode Driver Framework Feature Pack Microsoft Visual C x Re... Read more

A:[SOLVED] No Connectivity after &quot;infected win.gen2&quot; and &quot;XP antivirus 2012&quot; issues

Hello Gunnersfan13,

I do see the problem and I'll have to ask you to please stop any more action on your part to resolve this yourself or you'll make my job that much more difficult. :)

You are still very much infected with ZAccess. I need to see the dds.txt. (You posted, and attached, only the Attach.txt produced by dds.scr)

Run dds.scr again, and post the contents of the dds.txt.

==============================

Next, open Notepad and copy/paste the contents inside the quote box below, into Notepad.


Quote:




regedit /a afdexport.txt "HKEY_LOCAL_MACHINE\SYSTEM\currentcontrolset\Services\AFD"
notepad afdexport.txt




Save this as afdexport.bat Choose to "Save type as - All Files"

Double click on the .bat file & allow it to run. Then post the log which it produces

===============================

Also, download SystemLook from one of the links below and transfer it to your desktop.

Download Mirror #1
Download Mirror #2Double-click SystemLook.exe to run it.
Copy the content of the following codebox into the main textfield:


Code:
:filefind
afd.sys

Click the Look button to start the scan.
When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found at on your Desktop entitled SystemLook.txt

http://www.techsupportforum.com/forums/f100/solved-no-connectivity-after-and-quot-infected-win-gen2-and-quot-and-and-quot-xp-antivirus-2012-and-quot-issues-621728.html
Relevancy 107.26%

infected with quot vbs quot used quot Flash folders with on hard don't open afte infected all "vbs", drive "Flash_Disinfector" Disinfector quot amp folders on hard drive unable to open HI i got infected with quot vbs quot through someone's usb i ran quot Flash Disinfector quot then installed quot kaspersky quot scaned the whole computer it also deleted vbs trojan However after that when i infected with "vbs", afte "Flash_Disinfector" all folders on hard drive don't open tried to open my computer by clicking on its icon it did not open i tried to open it fron strat up but the result was same all others like my documents etc were all right i open my computer through my documents opened my c drive when i tried to open further any folder present present in the C drive it gave me the error that is this item quot vbs quot that this shortcut refers to has been changed or moved so this shortcut will no longer work properly Do you want to delete this shortcut infected with "vbs", afte "Flash_Disinfector" all folders on hard drive don't open Howerever all my folders were not having any shortcut sign amp it was same with all folders present in all my drives but when i wrote the name of the folder in the address bar it opened normaly so now i cannot open my computer through its icon plus all the folders present in my hard drive please help me to sort this thing out dds DDS Ver - - - NTFSx Run by Nadeem Ahmad at on Sat Internet Explorer Microsoft Windows XP Professional GMT AV Kaspersky Anti-Virus On-access scanning disabled Updated C D BC - - -A F -E C Running Processes C WINDOWS system Ati evxx exe C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS System svchost exe -k netsvcs C WINDOWS system Ati evxx exe svchost exe svchost exe C WINDOWS system spoolsv exe c program files idt wdm STacSV exe C WINDOWS Explorer EXE C Program Files Hewlett-Packard HP Quick Launch Buttons QlbCtrl exe C Program Files Apoint K Apoint exe C Program Files IDT WDM sttray exe C Program Files Apoint K ApMsgFwd exe C Program Files Kaspersky Lab Kaspersky Anti-Virus avp exe C WINDOWS system ctfmon exe C Program Files Microsoft ActiveSync Wcescomm exe C Program Files Apoint K Apntex exe C PROGRA MI AA rapimgr exe C Program Files Kaspersky Lab Kaspersky Anti-Virus avp exe C Program Files Symantec Norton Ghost GhostStartService exe C Program Files Intel Intel R Management Engine Components LMS LMS exe C WINDOWS system svchost exe -k imgsvc C Program Files Intel Intel R Management Engine Components UNS UNS exe C Program Files ATI Technologies ATI ACE Core-Static MOM exe C Program Files ATI Technologies ATI ACE Core-Static ccc exe C Program Files Hewlett-Packard Shared hpqwmiex exe C Program Files Hewlett-Packard HP Quick Launch Buttons Com QLBEx exe C Documents and Settings Nadeem Ahmad Desktop dds scr Pseudo HJT Report uStart Page hxxp www msn com uDefault Page URL hxxp www msn com uInternet Connection Wizard ShellNext wmplayer exe ICWLaunch uInternet Settings ProxyServer socks uWindows Load quot c windows system smss exe vbs quot BHO HelperObject Class c d-c - c - -fce ad c - c program files techsmith snagit SnagItBHO dll BHO QvodExtend ac - de - - a e-a af add - c program files qvodplayer QvodExtend dll BHO Groove GFS Browser Helper - c - d -b f - bbc d a e - c progra micros office GRA E DLL BHO MSN Toolbar Helper d ce e -f a- - e- dc f c f - c program files msn toolbar msneshellx dll BHO Ask Toolbar d c f- a- -a ad- d - c program files ask com GenericAskToolbar dll TB SnagIt ff e -abde- eb-b e-d aab cabe - c program files techsmith snagit SnagItIEAddin dll TB MSN Toolbar e ed c- cb - d -b e -ab c c - c program files msn toolbar msneshellx dll TB Ask Toolbar d c f- a- -a ad- d - c program files ask com GenericAskToolbar dll TB FF E -ABDE- EB-B E-D AAB CABE - No File TB BC A- - D - AC -E B A BA C - No File uRun ctfmon exe c windows system ctfmon exe uRun H PC Connection Agent quot c program files ... Read more

A:infected with "vbs", afte "Flash_Disinfector" all folders on hard drive don't open

Hello buct,

It will require more than 1 round to clean the system. Please stay with me until given the 'all clear' even if symptoms seem to abate.

Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT- Save ComboFix.exe to your Desktop

====================================================


Disable your AntiVirus and AntiSpyware applications as they will interfere with our tools and the removal.


====================================================


Double click on combofix.exe & follow the prompts.

As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.




Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:





Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply for further review.

http://www.techsupportforum.com/forums/f100/infected-with-vbs-afte-flash_disinfector-all-folders-on-hard-drive-dont-open-468423.html
Relevancy 107.26%

HI i got infected with quot vbs quot through someone's usb i ran quot Flash Disinfector quot then installed quot kaspersky quot scaned the whole computer it also deleted open used & drive "vbs", on unable with folders "Flash_Disinfector" to hard infected vbs trojan However after that when i tried to open my computer by clicking on its icon it did not open i tried to open it fron strat up but the result was same all others like my documents etc were all right i open my computer through my documents opened my c drive when i tried to open further any folder present infected with "vbs", used "Flash_Disinfector" & folders on hard drive unable to open present in the C drive it gave me the error i am including the error meggage in attachment howerever all my folders were not having any shortcut sign amp it was same with all folders present in all my drives infected with "vbs", used "Flash_Disinfector" & folders on hard drive unable to open but when i wrote the name of the folder in the address bar it opened normaly infected with "vbs", used "Flash_Disinfector" & folders on hard drive unable to open so now i cannot open my computer through its icon plus all the folders present in my hard drive please help me to sort this thing out

A:infected with "vbs", used "Flash_Disinfector" & folders on hard drive unable to open

Hello and Welcome.

We want all our members to perform the steps outlined in the link I'll give you below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

---------------------------------------------------------------------------------------------

Please follow our pre-posting process outlined here:

http://www.techsupportforum.com/f50/...lp-305963.html

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Please note that the Virus/Trojan/Spyware Help forum is extremely busy, and it may take a while to receive a reply.

http://www.techsupportforum.com/forums/f100/infected-with-vbs-used-flash_disinfector-and-folders-on-hard-drive-unable-to-open-468303.html
Relevancy 107.26%

Hi all Sorry to repeat a question I see a lot of instances of but none of those seem to be addressing my problem correctly I have not done anything new to my computer in recent days so this problem has caught me off guard I see most instances of this problem come after upgrading to Windows I have had Win installed for a while now Here is a summary of my problem My computer recently got stuck on the quot Starting Windows Screen quot So I manually held the power button to reboot On reboot it said there was a need to run a startup repair which I did Everything checked fine except for the Corrupted" Windows", is on Repair "Starting Stuck Shows Disk Volume "System on last one which said quot System Volume on Disk is Corrupted quot which it claimed to have successfully fixed After rebooting from repair the system gets stuck on quot Starting Windows Screen quot for a good - minutes after which it runs a registry check After it completes that I get hopeful -- but the screen then gets stuck on an all black screen with just the mouse cursor and nothing more Additional note Attempting to start the computer on quot safe mode quot leads Stuck on "Starting Windows", Repair Shows "System Volume on Disk is Corrupted" safe mode startup to become stalled Stuck on "Starting Windows", Repair Shows "System Volume on Disk is Corrupted" on quot DRIVERS CLASSPNP SYS quot The lastest attempt to repair yielded this message quot Startup repair cannot repair this computer automatically Problem event Name Startup Repair Offline Problem signature uknown quot AutoFailover Corrupt Volume OS Version Locale Id In need of help not sure where to start Thanks nbsp

A:Stuck on "Starting Windows", Repair Shows "System Volume on Disk is Corrupted"

Hi Stan, Hopefully I can help you out....or at least lead you in the right direction. From my experience, the symptoms you are suggesting sound like perhaps a dying Hard drive.

1. Do you have the windows 7 boot disks that came with your computer or when you bought the Operating System? If so, you could try and insert one of those and boot from it, and attempt to repair the installation. (this won't affect your data, only the windows system files).

2. If that doesn't fix it, you could try a fresh reinstall of windows 7, and see if that works.

3. If neither of those work, its likely that because of the fact that when windows is repairing itself, it is generally putting copies of its system files in the same physical location on your disk. Because your disk is obviously not completely dead, ie....its still loading to the windows 7 startup screen, its just copying files to the bad sectors on your hard drive and gets stuck when loading. This is especially my guess because you said Safe mode is having same problems, even after attempting to repair. In the past, I've tried and salvage a disk by reformatting it and only leaving on partitions which do not contain the bad clusters. This takes some time, and some guess work.....and really this is only a "bandaid" fix because once the disk has bad clusters, its only a matter of time before these things give out. You wouldn't want to trust your important data on it anyways....

I hope this leads you in the right direction.
 

https://forums.techguy.org/threads/stuck-on-starting-windows-repair-shows-system-volume-on-disk-is-corrupted.1023059/
Relevancy 107.26%

I was browsing through the internet today and this bloody thing infected my computer It removed my McAfee and I couldnt malware/virus - against "My Urgent Engine" Warning Security access my Task Manager I could not uninstall the program I tried deleting it s associated files But by this time as I had guessed that that would not work either as the programmer of this virus seems to have done everything possible to prevent it stopping Because I had no antivirus software I looked up on the internet and did a very stupid thing I Urgent - Warning against "My Security Engine" malware/virus came across this website - http www bleepingcomputer com virus-removal remove-my-security-engine After reading another write up it seems that the solution that was on this site is linked with my original site of quot My Security Engine quot As I had no other anti virus i took a stupid risk and downloaded the software to get rid of the virus Ever since I cannot open McAfee and even after I have reinstalled it Please tell me what risks are my computer under and what can I do to completely get rid of this off my system and how do I know the checks that are being done are covering every part that this virus has accessed Urgent Please help Thnks Recessionbuster nbsp

https://forums.techguy.org/threads/urgent-warning-against-my-security-engine-malware-virus.924927/
Relevancy 107.26%

I don't have a clue where to begin trying to fix this problem. I keep getting random icons on my desktop called "online security guide" and "live safety center". There are also many fake balloon warnings appearing and a window titled "Critical System Warning!" that wants me to download stuff. What process can I go through to clean my system. I didn't have this problem until I upgraded to Norton 2008. I am currently running IP tool antivirus and spyware, I also have ran Smitfraudfix, still getting pop ups like crazy. Also my IP tools is finding Trojan.Virtumonde. I use Quicken and it seems to have attacked it because I am no longer able to use it. Any help would be great...thank you!

A:"online security guide" and "live safety center"

Hi and welcome to TSF.

Apologies for any delay in replying, but we have been rather busy lately, and, of course, all our helpers are volunteers.

Since it has been a few days since you first posted, please follow these instructions if you still need assistance.

Download Deckard's System Scanner (DSS) to your Desktop . Note: You must be logged onto an account with administrator privileges.Close all applications and windows.
Double-click on dss.exe to run it, and follow the prompts.
When the scan is complete, two text files will open - minimised > extra.txt and maximised > main.txt.
Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of main.txt back in this thread (do not attach it).
Please attach extra.txt to your post.


To attach a file to a new post, simplyClick the[Manage Attachments] button under Additional Options > Attach Files on the post composition page, and
copy and paste the following into the "Upload File from your Computer" box:C:\Deckard\System Scanner\extra.txt

Click Upload.

I will monitor this thread for your reply.

Thank you for your patience.

http://www.techsupportforum.com/forums/f284/online-security-guide-and-live-safety-center-193888.html
Relevancy 107.26%

My son uses his computer on the net a lot and of course there is a virus out there waiting to serve its Safety get Security and rid Need Center" of "Live "Online Guide" to twisted master He got the wellknown quot Live Safety Center quot and quot Online Security Guide quot and it keeps comming back and hijacks his internet browser to Need to get rid of "Live Safety Center" and "Online Security Guide" redirect to the same page that promises peace and wellbeing for money of course Here is the DDS log quot Deckard's System Scanner v Run by Emil on - - Computer is in Normal Mode -------------------------------------------------------------------------------- -- HijackThis run as Emil exe ------------------------------------------------ Logfile of Trend Micro HijackThis v Scan saved at on - - Platform Windows XP SP WinNT MSIE Internet Explorer v Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system svchost exe C Programmer Alwil Software Avast aswUpdSv exe C Programmer Alwil Software Avast ashServ exe C WINDOWS system spoolsv exe C Programmer F lles filer Apple Mobile Device Support bin AppleMobileDeviceService exe C WINDOWS system agsdyely exe C Programmer F lles filer Microsoft Shared VS DEBUG MDM EXE C WINDOWS System nvsvc exe C WINDOWS System svchost exe C Programmer Alwil Software Avast ashMaiSv exe C Programmer Alwil Software Avast ashWebSv exe C WINDOWS Explorer EXE C WINDOWS system RUNDLL EXE C WINDOWS SOUNDMAN EXE C WINDOWS system LVCOMSX EXE C Programmer Logitech Video LogiTray exe C PROGRA ALWILS Avast ashDisp exe C Programmer Java jre bin jusched exe C Programmer iTunes iTunesHelper exe C WINDOWS Fonts svchost exe C WINDOWS mrofinu exe C WINDOWS Fonts svchost exe C WINDOWS system ctfmon exe C Programmer MSN Messenger MsnMsgr Exe C Programmer Google GoogleToolbarNotifier GoogleToolbarNotifier exe C Programmer Logitech Video FxSvr exe C Programmer iPod bin iPodService exe C Programmer limewire limewire exe C HBA Virus dss exe C PROGRA TRENDM HIJACK Emil exe C WINDOWS system mspaint exe R - HKCU Software Microsoft Internet Explorer Main Start Page about blank R - HKCU Software Microsoft Internet Explorer SearchURL Default http g msn dk SEDADK SAOS FORM TOOLBR R - HKCU Software Microsoft Internet Explorer Toolbar LinksFolderName Hyperlinks O - BHO Yahoo Toolbar Helper - Taboola Footer - C Programmer Yahoo Companion Installs cpn yt dll O - BHO Adobe PDF Reader Link Helper - E F-C D - D -B D- B D BE B - C Programmer F lles filer Adobe Acrobat ActiveX AcroIEHelper dll O - BHO Media Holding Enterprises LLC - D A - F A- C -A - E FDC - C Programmer ContextTool ContextTool- dll O - BHO Yahoo IE Services Button - BAB B B- BC- B - D - FC DE A - C Programmer Yahoo Common yiesrvc dll O - BHO no name - F A - - -A B - A CC D F - C WINDOWS system mljge dll O - BHO SSVHelper Class - BB-D F - C-B EB-D DAF D D - C Programmer Java jre bin ssv dll O - BHO no name - E D - A- EC-A -BA D E E - no file O - BHO no name - A A- B F- E A-B D - D F - C Programmer Windows NT hosecuC WINDOWS system e caws exe dll file missing O - BHO Windows Live Sign-in Helper - D - C - ABF- ECC- C - C Programmer F lles filer Microsoft Shared Windows Live WindowsLiveLogin dll O - BHO no name - A B - D E- -A - C DE A - C WINDOWS system zpsfvoli dll O - BHO Google Toolbar Helper - AA ED - DD- d - -CF F - c programmer google googletoolbar dll O - BHO Google Toolbar Notifier BHO - AF DE - D - -B FA-CE B AD D - C Programmer Google GoogleToolbarNotifier swg dll O - BHO Windows Live Toolbar Helper - BDBD DAD-C - A -ADC - B B FF D - C Programmer Windows Live Toolbar msntb dll O - BHO e e - e -bfe -f - fd c feb - bef c - df - f- efb- e e e - C WINDOWS system ntwsbkjy dll O - Toolbar Yahoo Toolbar - EF BD -C FB- D - F- D F - C Programmer Yahoo Companion Installs cpn yt dll O... Read more

A:Need to get rid of "Live Safety Center" and "Online Security Guide"

I did follow MicroBell's 5 Step process and the Panda scan said that no virus could be found. However, my Avast anti-virus warned me 5-6 times about files while I was running the Panda virus scanning. One of them was named "win.exe" and was in C:\temp\ but has now been deleted. Every time Avast issued a virus alert I chose the option to delete the file in question.

http://www.techsupportforum.com/forums/f284/need-to-get-rid-of-live-safety-center-and-online-security-guide-194341.html
Relevancy 107.26%

Hello I have a Windows XP Pro Version Service Pack Pentium GHz Gig Ram desktop machine I was browsing several websites and had a popup message to install some program Without thinking I accidentally hit yes instead of cancel and now my machine is infected with spyware When the computer starts a program called quot System Security quot pops up that appears to do a system scan and finds trojans and spyware Since I have never heard of quot System Security quot before I am almost positive that I have been infected and that the quot System Security quot software is in fact part of the malware itself I ran HijackThis v after startup and this is the fake My be security Machine, software on "System to Looks Security" Malware log that resulted I did not kill any "System Security" Malware on My Machine, Looks to be fake security software of the processes that I believe to be malware and have not yet run any antispyware software such as Malwarebytes or SuperAntiSpyware I have physically disconnected my machine from the network Please advise on the steps necessary to correct this problem Thank you and happy new year Hopefully yours is off to a better start than mine Logfile of Trend Micro HijackThis v Scan saved at PM on Platform Windows XP SP "System Security" Malware on My Machine, Looks to be fake security software WinNT MSIE Internet Explorer v Boot mode Normal Running processes C WINDOWS System "System Security" Malware on My Machine, Looks to be fake security software smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system Ati evxx exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system svchost exe C WINDOWS system Ati evxx exe C Program Files Lavasoft Ad-Aware aawservice exe C WINDOWS system spoolsv exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe D Program Files Service SyncServicesBasics exe C Program Files Memeo AutoBackup MemeoService exe C WINDOWS Explorer EXE C Program Files ATI Technologies ATI ACE cli exe C Program Files Common Files Symantec Shared ccApp exe C PROGRA SYMANT VPTray exe C Program Files Java jre bin jusched exe C Program Files Analog Devices SoundMAX SMax PNP exe C Program Files Analog Devices SoundMAX Smax exe C Program Files Bonjour mDNSResponder exe C WINDOWS system spool drivers w x hpztsb exe C Program Files Common Files Symantec Shared ccSetMgr exe C Program Files Symantec AntiVirus DefWatch exe C Program Files Java jre bin jqs exe C Program Files HP hpcoretech hpcmpmgr exe C Program Files Analog Devices SoundMAX SMAgent exe C Program Files Common Files Symantec Shared SPBBC SPBBCSvc exe C WINDOWS system svchost exe C Program Files Symantec AntiVirus Rtvscan exe C WINDOWS system hphmon exe C Program Files Common Files Symantec Shared ccEvtMgr exe C Program Files Itiva Itiva Media Accelerator ItivaMediaAccelerator exe E Program Files iTunes iTunesHelper exe D Program Files Basics Status MaxMenuMgrBasics exe C Program Files Common Files Real Update OB realsched exe C Program Files Adobe Reader Reader Reader sl exe C Documents and Settings All Users Application Data exe C Program Files ATI Multimedia main ATIDtct EXE C Program Files ATI Multimedia RemCtrl ATIRW exe C WINDOWS system ctfmon exe C Program Files Common Files Ahead Lib NMBgMonitor exe C DOCUME DAVIDM LOCALS Temp yyy exe C DOCUME DAVIDM LOCALS Temp tmpb exe C Program Files BUFFALO HDBackup HDBackup exe C Program Files BUFFALO NASNAVI NasNavi exe C WINDOWS system rundll exe C WINDOWS system ctfmon exe C Program Files iPod bin iPodService exe C Program Files Common Files Ahead Lib NMIndexingService exe C WINDOWS system wuauclt exe C Program Files Common Files Ahead Lib NMIndexStoreSvr exe C DOCUME DAVIDM LOCALS Temp tmpc exe E Program Files HijackThis exe R - HKLM Software Microsoft Internet Explorer Main Default Page URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft ... Read more

https://forums.techguy.org/threads/system-security-malware-on-my-machine-looks-to-be-fake-security-software.785912/
Relevancy 106.95%

Newly purchased Laptop with windows 8.1 OS preinstalled. We have successfully added this system to domain. While accessing the application after logging into the domain with Domain Credential, we found below attached error where  user is having local
admin previledges and  the UAC disabled.

A:"This application can't open" --- There is a problem with " application name" . Contact your system administrator about reparing or reinstalling it

Hi,
Firstly, please enable UAC and restart your computer to test if this problem resolved.
If problem persists, try to use APP troubleshooter to check APP problem, if there is any reports, please feel free let us know.
Windows App troubleshooter:
http://go.microsoft.com/fwlink/p/?LinkId=268423

Roger Lu
TechNet Community Support

https://social.technet.microsoft.com/Forums/en-US/5e9c1304-0a8c-49c5-acb3-0d1b41462365/quotthis-application-cant-openquot-there-is-a-problem-with-quot-application-namequot-?forum=w8itprogeneral
Relevancy 106.95%

Good Morning I would like to introduce "Incomplete" NO DESKTOP Files ? up & RESTORE Temp after "Strange" & SYSTEM booting ? myself I am new to the forum Should I address an issue inappropriately kindly alert me Most recently I have experienced multiple PC issues Recently I performed a System Recovery and encountered the following Cannot perform a SYSTEM RESTORE The message is Restoration Incomplete Your computer cannot be restored quot When I booted up this morning and DID NOT HAVE A DESKTOP The screen was blank no Icons The items below are APPEARING IN MY TEMP FOLDER and are located at C DOCUME COMPAQ LOCALS Temp a tmp plus similar numbers b IswTmp c msohtmlclip d msohtmlclip I delete the above items through safe mode but they re-appear I am MOST CONCERNED ABOUT Items amp SYSTEM SPECIFICATION DESKTOP PC Windows XP SP HP Compaq Presario - Media Center Edition AMD Athlon m Processor X -Based PC - -bit package MOTHERBOARD Chipset - ATI RADEON XPRESS CHIPSET Version Build Processor If someone would give me some feedback I would appreciate it tremendously THANKS IN ADVANCE Kind regards AJ

A:NO DESKTOP after booting up … & SYSTEM RESTORE "Incomplete" … & "Strange" Temp Files

Usually when the machine has a "blank" desktop, the boot/startup process has been interupted or is frozen to before Explorer is launched.

You can launch Explorer manually be navigating C:\Windows and double-clicking "Explorer".

If successful, do the following:

Start>Run>(type) "msconfig" and turn off all non-MS services and all startups.

Then, Start>Run>(type) "cmd", and at the command prompt type "chkdsk /f" and schedule a chkdsk to run on next reboot.

Reboot system and report results.

http://www.techsupportforum.com/forums/f10/no-desktop-after-booting-up-and-system-restore-incomplete-and-strange-temp-files-516065.html
Relevancy 106.95%

Ok so I'm using a custom visual style made by another user however I don't really like the buttons used that I mentioned Changing of "minimize" buttons a theme and "close" "maximize" the above The creator states it is acceptable to change the theme to however you like Changing the "minimize" "maximize" and "close" buttons of a theme as long as you don't redistribute it anywhere Ok so I opened up the msstyles file using Restorator located in the theme folder of this VS I went into the images directory and located what seems Changing the "minimize" "maximize" and "close" buttons of a theme to be the images used for the buttons Intuitively it seems like it would make sense to replace those images with different ones perhaps from another visual style and it should change them However would this actually work Could the theme get messed up in some other way like proportions or something if the new button images are smaller I don't know of any other way to change them that would be easy But I did run into another problem For some visual styles I can't even locate those buttons in the images directory Where else would they be

A:Changing the "minimize" "maximize" and "close" buttons of a theme

Use Windows Style Builder to do that...

http://www.sevenforums.com/customization/200947-changing-minimize-maximize-close-buttons-theme.html
Relevancy 106.95%

Hi everyone!

Yesterday my HP laptop (Windows 7) started getting BSOD with various types of errors (mostly "STOP: 0x00000F4", "STOP: 0x0000007A", "c00021a" and one "missing %hs, c0000135"). Most of the time it restarts without any issues and works fine right after the BSOD and then an hour or two later I get a BSOD again.

I have tried restoring to Last Known Good Configuration, startup repair, hard disk check, virus scans and I also uninstalled any recently added programs I could think of and cleared up more than 50% of my hard disk space. None of these seem to have helped and I still get BSOD regularly.

I have attached the folder from the SF Diagnostic Tool and would appreciate any advice!
Thank you!

A:BSOD every few hours: mostly "STOP: 0x00000F4", "c00021a" & "c0000135"

Welcome to the forum.

MSINFO32:
Please go to Start and type in "msinfo32.exe" (without the quotes) and press Enter
Save the report as an .nfo file, then zip up the .nfo file and upload/attach the .zip file with your next post.
Also, save a copy as a .txt file and include it also (it's much more difficult to read, but we have greater success in getting the info from it).
------------------------
Upload a screenshot using: CrystalDiskInfo For how to upload a screenshot or file, read here
Test your Hard Drive(s) by running: Hard Drive Diagnostic Procedure
------------------------
Test and Diagnose RAM Issues with Memtest86+: RAM - Test with Memtest86+


   Tip
Pay close attention to Part 3 of the tutorial "If you have errors"
Test the RAM with Memtest86+ for at least 7-10 passes. It may take up to 22 passes to find problems. Make sure to run it once after the system has been on for a few hours and is warm, and then also run it again when the system has been off for a few hours and is cold.


------------------------
Monitor hardware temperature with system monitoring software like Speccy or HWMonitor. Upload a screen shot of the Summary tab as well:Piriform - Speccy
CPUID - HWMonitor
For how to upload a screenshot or file, read here

Code:
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck F4, {3, 87a2e968, 87a2ead4, 83a55cf0}

----- ETW minidump data unavailable-----
Probably caused by : csrss.exe

Followup: MachineOwner
---------
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck F4, {3, 87a7bd40, 87a7beac, 83a1fcf0}

----- ETW minidump data unavailable-----
Probably caused by : csrss.exe

Followup: MachineOwner
---------

http://www.sevenforums.com/bsod-help-support/307397-bsod-every-few-hours-mostly-stop-0x00000f4-c00021a-c0000135.html
Relevancy 106.95%

Hello guys the last week I ve been strugling with these nasty BSODs At first I thought it was my HDDs as ntoskrn exe somewhat hinted towards that from googling it My HDDs have been causing a lot of trouble earlier as well due "ntoskrnl.exe" header", BSOD management", pool "Bad "Memory - to their somewhat long years of service However I ve recently reformated my computer and installed W on a brand new Corsair Force GT GB SSD hoping the BSODs would go away they didn t I googled BSOD - "Memory management", "Bad pool header", "ntoskrnl.exe" BSOD and I stumbled upon this forum and I thought I d give it a try I m somewhat desperate as I need my computer working for both work school and amusement I ve been trying to run Memtest in order to test my memory BSOD - "Memory management", "Bad pool header", "ntoskrnl.exe" but without any results I m also currently running on only on GB chip instead BSOD - "Memory management", "Bad pool header", "ntoskrnl.exe" of two to see if the problem still exists Also without any results This is the second time I m writing this thread btw I was just about to post it and my PC crashed Here is my two logs dxdiag last crash didn t generate a log oddly enough Here is additional hardware gear that I use Razer Megalodon Headset Razer Naga Logitech G Logitech C Webcam Corsair W PSU My temperatures are also good Both CPU and MB idles at around GPU s all good too I m also using a Corsair D chassi with dustfilters at both air-income so dust is minimal On top off this I use airpressure to clean away dust somewhat regularly and I also did exactly this days ago when I reinstalled the pc Thanks in advance nbsp

A:BSOD - "Memory management", "Bad pool header", "ntoskrnl.exe"

Are you over-clocking? Is the bios set to its defaults? Is the SSD set on a SATA 3 port in AHCI mode?
 

http://www.techspot.com/community/topics/bsod-memory-management-bad-pool-header-ntoskrnl-exe.182278/
Relevancy 106.95%

I am using Windows 7 on my laptop and I have question about when to use "Home", "Work" and "Public" profile.

If I am logging in without setting password, and I am logging in network with "Public" profile, then will any other user, who can see my computer, be able to enter my computer and check the contents on my computer ?

I am connecting to a network and there are 6 other users connected to this network. In the set network location window, if I select the netwoek as "Home", does it mean that other 6 users will not be able to see my computer on network and if I use "Public", then all other six users will be able to see my computer on network ?

Thanks

http://www.techsupportforum.com/forums/f217/when-to-use-home-work-or-public-profile-while-connecting-to-network-478413.html
Relevancy 106.95%

Hi all So I'm kind of stuck I currently have the problem where I am in an endless cycle of quot loading files quot - gt quot Windows Boot Manager quot see How To Boot Into Safe Mode On Windows The Easy Way I have tried to load all of the options -- and none successfully load I also end up at a OneKey Recovery as well unfortunately the laptop does not have initial backup or user backup Manager" -> files Boot ..." "Loading "OneKey" "Windows -> images I have a Windows CD for repairing purposes however I cannot load the BIOS UEFI to change "Loading files ..." -> "Windows Boot Manager" -> "OneKey" the boot order to load the optical drives first I have also tried to remove the CMOS battery to fix it did not work Also - Windows "Loading files ..." -> "Windows Boot Manager" -> "OneKey" Boot Manager Windows Setup EMS Enabled -- does not load properly leads to OneKey Recovery Safe Mode does not load properly Safe Mode with Networking does not load properly Safe Mode with Command Prompt doesn't load - tries to boot and load all files onto partition that is too small can't change partition Enable Boot Logging Enable Low-Resolution Video Debugging MOde Disable automatic restart on system failure Disable Driver Signature Enforcement Display Early Launch Anti-Malware Driver Start Windows Normally Any ideas would be greatly appreciated Thanks

http://www.eightforums.com/general-support/55670-loading-files-windows-boot-manager-onekey.html
Relevancy 106.95%

Example sentence: vrytim I prss ths kys, nothing happns. Now I'm writing with my on-sreen keyboard. I'm clueless when it comes to computer stuff. How do I fix this? Is this a software problem, or a hardware problem?Help is much appreciated!

A:Kyboard deos not respond to the keys: "e", "d", "c" and "3"

My keyboard hath the thame problem with the thupid eth key. The blathted thing ith driving me nutth.

All theriousneth...er...seriousness aside, usually, that is a hardware problem. Can you find or borrow another keyboard and see if it will work correctly on your machine?

http://www.sevenforums.com/hardware-devices/311639-kyboard-deos-not-respond-keys-e-d-c-3-a.html
Relevancy 106.95%

I need SAFE removal Infected "AV Care" Malware from w/ Locus System of malware quot AV System Care Installer quot Software from Locus Software I m not sure which downloads to trust Infected w/ Malware "AV System Care" from Locus when recommended I saw rogue software will fix but it didn t have a digital signature I tried to follow a past post on this topic but it was specific to his log file Thank You Your help getting rid of this is GREATLY appreciated My son infected our pc while playing games online S Here s my HJT log file Logfile of Trend Micro HijackThis v Scan saved at PM on Platform Windows XP SP WinNT MSIE Internet Explorer v SP Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system csrss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system ibmpmsvc exe C WINDOWS system svchost exe C WINDOWS system svchost exe C WINDOWS System svchost exe C Program Files Verizon Verizon Internet Security Suite Fws exe C WINDOWS System S EvMon exe C WINDOWS System svchost exe C WINDOWS System svchost exe C WINDOWS system spoolsv exe C WINDOWS Explorer EXE C Program Files Synaptics SynTP SynTPLpr exe C Program Files Synaptics SynTP SynTPEnh exe C PROGRA ThinkPad PkgMgr HOTKEY TPHKMGR exe C WINDOWS system RunDll exe C Program Files ThinkPad ConnectUtilities QCWLICON EXE C Program Files ThinkPad Utilities TpKmapMn exe C PROGRA ThinkPad UTILIT EzEjMnAp Exe C WINDOWS AGRSMMSG exe C Program Files Support com bin tgcmd exe C Program Files IBM Messages By IBM ibmmessages exe C WINDOWS system dla tfswctrl exe C Program Files Verizon VSP VerizonServicepoint exe C Program Files Verizon Verizon Internet Security Suite Rps exe C Program Files Common Files Real Update OB realsched exe C Program Files Common Files ErrorFighter strpmon exe C Program Files Common Files YourPrivacyGuard stm exe C Program Files ThinkPad PkgMgr HOTKEY TPONSCR exe C Program Files ThinkPad PkgMgr HOTKEY TpScrex exe C Program Files Internet Explorer iexplore exe C WINDOWS System Ati evxx exe C Program Files Common Files Authentium AntiVirus dvpapi exe C Program Files CA PPRT bin ITMRTSVC exe C Program Files Raxco PerfectDisk PDAgent exe C Program Files Verizon VSP VerizonServicepointComHandler exe C WINDOWS System QCONSVC EXE C WINDOWS System RegSrvc exe C Program Files Verizon Verizon Internet Security Suite rpsupdaterR exe C Program Files Raxco PerfectDisk PDEngine exe C WINDOWS System alg exe C Program Files DNA btdna exe C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer iexplore exe C WINDOWS PCHealth HelpCtr Binaries MSConfig exe C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer iexplore exe C PROGRA COMMON MICROS Msinfo OFFPROV EXE C Documents and Settings admin Desktop HiJackThis exe C WINDOWS System wbem wmiprvse exe R - HKLM Software Microsoft Internet Explorer Search SearchAssistant R - URLSearchHook Yahoo Toolbar - EF BD -C FB- D - F- D F - C Program Files Yahoo Companion Installs cpn yt dll O - BHO amp Yahoo Toolbar Helper - D -C F - efb- B - ECA - C Program Files Yahoo Companion Installs cpn yt dll O - BHO AcroIEHlprObj Class - E F-C D - D -B D- B D BE B - C Program Files Adobe Acrobat Reader ActiveX AcroIEHelper ocx O - BHO no name - EC B-E B - B - -B A - C WINDOWS system actxprxyj dll O - BHO Skype add-on mastermind - BF B-C D - d - A -A F BA C - C Program Files Skype Toolbars Internet Explorer SkypeIEPlugin dll O - BHO Pop-Up Blocker BHO - C EA -E A - E -A -D B C A - C Program Files Verizon Verizon Internet Security Suite pkR dll O - BHO DriveLetterAccess - CA D E- - CF- E - - C WINDOWS system dla tfswshx dll O - BHO no name - F EA - EC- E F- - E B C - c windows system dinput i dll O - Toolbar Yahoo Toolbar - EF BD -C FB- D - F- D F - C Program Files Yahoo Companion Installs cpn yt dll O - HKLM Run S TRAY S Tray exe O - HKLM Run SynTPLpr C Program Files Synaptics SynTP SynTPLpr exe O - HKLM Run SynTPEn... Read more

https://forums.techguy.org/threads/infected-w-malware-av-system-care-from-locus.683614/
Relevancy 106.95%

My wife seems to have recently installed quot System Security quot malware even though we were running an updated version of the AVG antivirus and the computer XP Home is fully patched I find many references to it on the internet and even some at techguy Security" "System malware more potent New org But all of the instructions tell you to run some malware removal program This version of the program not only pops fake security messages and asks you to quot register quot to get rid of them but it claims that EVERY exe I try to run except Internet Explorer is quot infected quot and therefore will not be run This includes the malware removal installation programs that it does allow IE to download regedit even notepad And since it won t let anything run NONE of the usual antivirus and antimalware programs will run Is there anything short of a full reinstall that I can do And is AVG really this bad Thanks nbsp

https://forums.techguy.org/threads/new-more-potent-system-security-malware.831802/
Relevancy 106.64%

Hello - I ve managed to get infected with the System Security Rogue Running Windows XP Professional Have tried removing with Spy Sweeper SuperAnti Spyware Symptoms Desk Top Background has Rogue by "System Infected Security" been replaced with a black screen and Red and White Wording that says Infected by "System Security" Rogue quot Warning Your re in Danger Your computer is infected Infected by "System Security" Rogue with Spyware etc quot System Security runs upon reboot and really takes over everything By that I mean it won t allow me to open anything - not even Task Manager When I try opening something I get a status bubble saying that particular program is infected and cannot start I did manage to fight with it enough that I got Task manager open before System Security started and managed to stop the proper process to kill it So I m somewhat functional at the moment but still very infected Norton does not catch this at all Any help is greatly appreciated Here is the HiJack this log I just ran Logfile of Trend Micro HijackThis v Scan saved at PM on - - Platform Windows XP SP WinNT MSIE Internet Explorer v Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C Program Files Windows Defender MsMpEng exe C WINDOWS System svchost exe C WINDOWS system svchost exe C Program Files Common Files Symantec Shared ccSetMgr exe C Program Files Common Files Symantec Shared ccEvtMgr exe C WINDOWS system spoolsv exe C Program Files Symantec AntiVirus DefWatch exe C Program Files Common Files Microsoft Shared VS DEBUG MDM EXE C Program Files Microsoft SQL Infected by "System Security" Rogue Server MSSQL MICROSOFTBCM Binn sqlservr exe C Program Files Symantec AntiVirus SavRoam exe C Program Files Symantec AntiVirus Rtvscan exe C Program Files Webroot Spy Sweeper SpySweeper exe C WINDOWS Explorer EXE C Program Files Common Files Symantec Shared ccApp exe C WINDOWS system taskmgr exe C PROGRA SYMANT VPTray exe C WINDOWS system hkcmd exe C WINDOWS system igfxpers exe C Program Files Windows Defender MSASCui exe C Program Files Common Files Real Update OB realsched exe C Program Files Webroot Spy Sweeper SpySweeperUI exe C WINDOWS system ctfmon exe C Program Files Spybot - Search amp Destroy TeaTimer exe C Program Files SUPERAntiSpyware SUPERAntiSpyware exe C Program Files Adobe Acrobat Distillr acrotray exe C Program Files Corel WordPerfect Office Register Remind exe C Program Files Google GoogleToolbarNotifier GoogleToolbarNotifier exe C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer iexplore exe C Program Files Webroot Spy Sweeper SSU EXE C Documents and Settings Jeff Lincoln Desktop Diagnostic amp Maintenance HiJackThis exe R - HKCU Software Microsoft Internet Explorer Main Start Page http cm my yahoo com R - HKLM Software Microsoft Internet Explorer Main Default Page URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Default Search URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Search Page http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Start Page http go microsoft com fwlink LinkId R - HKCU Software Microsoft Internet Connection Wizard ShellNext http www dell com R - URLSearchHook Yahoo Toolbar - EF BD -C FB- D - F- D F - no file O - Hosts localhost O - Hosts spydetect microsoft com O - Hosts antivirwin com O - Hosts www antivirwin com O - BHO Spybot-S amp D IE Protection - - F - D - - D F - C Program Files Spybot - Search amp Destroy SDHelper dll O - BHO Google Toolbar Helper - AA ED - DD- d - -CF F - C Program Files Google Google Toolbar GoogleToolbar dll O - BHO Google Toolbar Notifier BHO - AF DE - D - -B FA-CE B AD D - C Program Files Google GoogleToolbarNotifier swg dll O - BHO Google Dictionary Compression sdch - C D F... Read more

A:Infected by "System Security" Rogue

Ok, I was reading through some other threads and saw that Malwarebytes is often suggested. I downloaded that and ran it and I think it got rid of the rogue.

Things are still running pretty slow and choppy so I suspect other issues.

Here is the new HJT Log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:11:39 AM, on 2009-06-18
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Symantec AntiVirus\SavRoam.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Documents and Settings\Jeff Lincoln\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Corel\WordPerfect Office 2000\Register\Remind32.exe
C:\Startel WorkStation\te.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Documents and Settings\Jeff Lincoln\Desktop\Diagnostic & Maintenance\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://cm.my.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.com/
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O1 - Hosts: 94.232.248.66 spydetect.microsoft.com
O1 - Hosts: 94.232.248.66 antivirwin2009.com
O1 - Hosts: 94.232.248.66 www.antivirwin2009.com
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902... Read more

https://forums.techguy.org/threads/infected-by-system-security-rogue.836051/
Relevancy 106.33%

Using "System Performance" DCS reports some events are lost. To fix it, I need to increase buffer size but I can't do it because all parameters are disabled. 
When I create custom DCS with same trace (based on "Windows Kernel Trace" provider) I increase num of buffers and everything works fine.
How can I change it for "System Performance"?

https://social.technet.microsoft.com/Forums/en-US/4fefd1b3-0229-4374-8691-6a3d594dc3ea/increase-buffer-size-for-quotnt-kernelquot-trace-in-quotsystem-performancequot-dcs?forum=w7itproperf
Relevancy 106.33%

Which one should I do? I originally wanted to just do "Return computer to factory condition" but Theog just suggested "Use A System Image Created Earlier." I have no idea what to do. So confusing!

A:"Return computer to factory condition" or "Use A System Image Crea..."

Hello M4TE and welcome to Seven Forums. Sorry for the delay in responding but I just came across your question.

Most newer manufactured computers have a hidden recovery partition on the hard drive. The manufacturer provides specific instructions on how to access that partition in case you want to restore your machine to the exact condition it was in when it left the factory. That means you'd have to go through the time consuming process of cleaning out factory bloatware (like free trials of programs you'll never need), installing programs you do need, updating everything, creating your personal settings, etc. Here is a general idea of how to access the hidden recovery partition.

HP Recovery From Partition

Let's say it took you a day or two to set up your machine to your liking using the hidden recovery partition. A System Image is like a snapshot of your entire hard drive. It will include everything from the operating system to all your programs, files, photos, music, all updates ... everything. Most folks keep it on a separate external hard drive. Let's say a week later you get a virus or your machine crashes for some reason. You can use that System Image to return your machine to the exact condition it was in when you made the image. Usually takes about 30 minutes or so and you're back in business. It's a lot faster and more convenient to only worry about a week of updates compared to probably months with the hidden recovery partition. The newer a System Image is the less you have to worry about.

But one caution: since a System Image is, for all purposes, an exact duplicate of the hard drive, it will also include any malware that may be on the machine. So if in doubt, it might be best to use the hidden recovery partition to start off with a clean slate and then make a System Image immediately following all customizing.

http://www.sevenforums.com/backup-restore/185899-return-computer-factory-condition-use-system-image-crea.html
Relevancy 106.33%

First off thank you for any assistance in advance Problem quot System Alert quot balloon in tray icon that will not go away and redirects me in IE to hxxp www virprotect com aff Using SpyBot Search amp Destroy and Ad-Aware SE I seem to have gotten rid of the problem of the Directs Trying Alert" That Balloon To "virprotect.com" Remove [SOLVED] To "System redirection of my home page as well as removed the trojan that caused all of this in the first place I think The pesky balloon however remains All pre-steps your forum recommeded have been completed Below are the logs your forum requests in advance please note that my DSS quot extra quot log file is attached PANDA ACTIVESCAN Incident Status Location Potentially unwanted tool application myglobalsearch Not disinfected c program files MyGlobalSearch Spyware Cookie Atlas DMT Not disinfected [SOLVED] Trying To Remove "System Alert" Balloon That Directs To "virprotect.com" C Documents and Settings Compaq Owner Cookies compaq owner atdmt txt Spyware Cookie Tribalfusion Not disinfected C Documents and Settings Compaq Owner Cookies compaq owner tribalfusion txt Hacktool HackTool KillProcWin A Not disinfected C Documents and Settings Compaq Owner Local Settings Application Data Wildtangent Cdacache E dat simple killw exe Potentially unwanted tool Application KillApp B Not disinfected C hp bin KillIt exe Spyware Spyware PeoplePC Not disinfected C Program Files Online Services PeoplePC ISP Dll RAS DLL DSS MAIN Deckard's System Scanner v Run by Compaq Owner on - - Computer is in Normal Mode -------------------------------------------------------------------------------- -- System Restore -------------------------------------------------------------- Successfully created a Deckard's System Scanner Restore Point -- Last Restore Point s -- - - UTC - RP - Deckard's System Scanner Restore Point - - UTC - RP - Configured easy Internet sign-up - - UTC - RP - System Checkpoint - - UTC - RP - System Checkpoint - - UTC - RP - System Checkpoint -- First Restore Point -- - - UTC - RP - Software Distribution Service Backed up registry hives Performed disk cleanup -- HijackThis Clone ------------------------------------------------------------ Emulating logfile of Trend Micro HijackThis v Scan saved at - - Platform Windows XP Service Pack MSIE Internet Explorer Boot mode Normal Running processes C WINDOWS system smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system ati evxx exe C WINDOWS system svchost exe C WINDOWS system svchost exe C Program Files Lavasoft Ad-Aware aawservice exe C WINDOWS system ati evxx exe C WINDOWS explorer exe C WINDOWS system spoolsv exe C WINDOWS system svchost exe C Program Files Common Files LightScribe LSSrvc exe C Program Files McAfee MSC mcmscsvc exe C Program Files Common Files McAfee MNA McNASvc exe C Program Files Common Files McAfee McProxy McProxy exe C Program Files McAfee VirusScan Mcshield exe C Program Files Common Files Microsoft Shared VS DEBUG MDM EXE C WINDOWS system hpzipm exe C WINDOWS system svchost exe C WINDOWS system wscntfy exe C Program Files McAfee com Agent mcagent exe C Program Files Hewlett-Packard Toolbox Apache Tomcat webapps Toolbox StatusClient StatusClient exe C Program Files Common Files Real Update OB realsched exe C Program Files Java jre bin jusched exe C hp KBD kbd exe C Program Files Microsoft IntelliPoint point exe C Program Files HP HP Software Update hpwuSchd exe C Program Files iTunes iTunesHelper exe C WINDOWS system ctfmon exe C Program Files Messenger msmsgs exe C Program Files Windows Media Player wmpnscfg exe C Program Files Common Files AOL EE AOLHostManager exe C Program Files Yahoo Messenger Ymsgr tray exe C Program Files Common Files AOL EE AOLServiceHost exe C Program Files iPod bin iPodService exe C Program Files Hewlett-Packard Toolbox Javasoft JRE bin javaw exe C WINDOWS ALCXMNTR EXE C Program Files ATI Technologies ATI Co... Read more

A:[SOLVED] Trying To Remove "System Alert" Balloon That Directs To "virprotect.com"

Download SDFix from here and save it to your desktop.


Please then reboot your computer in Safe Mode by doing the following :
Restart your computer

After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
Instead of Windows loading as normal, a menu with options should appear;
Select the first option, to run Windows in Safe Mode, then press "Enter".
Choose your usual account.

In Safe Mode, right click the SDFix.zip folder and choose Extract All,
Open the extracted folder and double click RunThis.bat to start the script.
Type Y to begin the script.

It will remove the Trojan Services then make some repairs to the registry and prompt you to press any key to Reboot.
Press any Key and it will restart the PC.

Your system will take longer that normal to restart as the fixtool will be running and removing files.
When the desktop loads the Fixtool will complete the removal and display Finished, then press any key to end the script and load your desktop icons.

Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt
(Report.txt will also be copied to Clipboard ready for posting back on the forum).

Finally paste the contents of the Report.txt back on the forum.


=========================================

This will help to identify malware on your system.
Please download Combofix from any of these locations:

Here
or
Here

Save ComboFix to the desktop and please ensure that you disable realtime security/virus programs that monitors your PC while CF is running.

1. Double click on combo.exe & follow the prompts.
2. When finished, it will produce a logfile located at C:\ComboFix.txt.
3. Copy and Paste the contents of that log in your next reply with a new hijackthis log. Do not use Code or html unless asked for.
Note: Do not mouseclick combofix's window while it is running. That may cause your system to stall/hang.

Caution...Never run and remove files using ComboFix without being supervised by a security analyst.

http://www.techsupportforum.com/forums/f100/solved-trying-to-remove-system-alert-balloon-that-directs-to-virprotect-com-207199.html
Relevancy 106.33%

I have been getting these quot Bad Pool Header quot and quot System Service Exception quot BSODs for about a day now the quot Bad Pool Header quot one tends to pop up more often then the other btw I ran a registry cleaner which didn't work and ran memtest this morning and it showed that my memory was fine The BSODs tend to occur more often when I am playing a game or running some program that uses a bit more memory but it also happens when I am just on the internet On the other hand last night I did nothing but surf YouTube for hours and didn't get a BSOD at all However since then I haven't been able to do anything for more than minutes without being in safe mode without it crashing and this morning it completely froze until I turned it off My OS is Windows Random Service Exception" "Bad Pool BSODs "System and Header" Home Premium bit It came preinstalled from the manufacturer and unfortunately I do not have the install disc The entire laptop is less than years old and there have been no major hardware changes and I have never reinstalled the OS

A:Random "Bad Pool Header" and "System Service Exception" BSODs

UPDATE: Another BSOD just happened after I left the computer idle for a couple of hours except this one said something about Asdsm.sys.

http://www.techsupportforum.com/forums/f299/random-bad-pool-header-and-system-service-exception-bsods-640978.html
Relevancy 106.33%

Dear Experts,

I have created windows image on Drive F: but delete it after some time manually due to some space prob.
But while backup shows about 40 GB only few GB space got free after deletion. When i try to again take the the backup using windows 7 backup & restore option, its still shows 35 Gb of System Image in drive F: when i brows the Manage Disc Space option but i cant find it on the same drive. (Plz see attached pic)
Plz help me to locate this and delete the same.

Thanks

A:Cant find "System Image" of 36 GB but its shows on "Manage Disc Space"

Hello sattyaji, and welcome to Seven Forums.

It may still be showing if the system image was created as part of a Windows backup. Using the tutorial below to reset Windows Backup should clear it for you, but you will need to set up your backup again afterwards.

Backup User and System Files - Reset to Default Configuration

Hope this helps,
Shawn

http://www.sevenforums.com/backup-restore/284067-cant-find-system-image-36-gb-but-its-shows-manage-disc-space.html
Relevancy 106.33%

I have been getting these quot Bad Pool Header quot and quot System Service Exception quot BSODs for about a day now the quot Bad Pool BSODs Service Pool Random "System and Exception" Header" "Bad Header quot one tends to pop up more often then the other btw I ran a registry cleaner which didn't work and ran memtest this morning and it showed that my memory was fine The BSODs tend to occur more often when I am Random "Bad Pool Header" and "System Service Exception" BSODs playing a game or running some program that uses a bit more memory but it also happens when I am just on the internet On the other hand last night I did nothing but surf YouTube for hours and didn't get a BSOD at all However since then I haven't been able to do anything for more than minutes without being Random "Bad Pool Header" and "System Service Exception" BSODs in safe mode without it crashing and this morning it completely froze until I turned it off My OS is Windows Home Premium bit It came preinstalled from the manufacturer and unfortunately I do not have the install disc The entire laptop is less than years old and there have been no major hardware changes and I have never reinstalled the OS

A:Random "Bad Pool Header" and "System Service Exception" BSODs

UPDATE: Another BSOD just happened after I left the computer idle for a couple of hours except this one said something about Asdsm.sys.

http://www.sevenforums.com/bsod-help-support/224813-random-bad-pool-header-system-service-exception-bsods.html
Relevancy 106.33%

Hi All Happy New Year First time posting On i ended up with a bunch of viruses "Video that and viruses...HELP "Helper" Infected: folder Add contain On" Trojan on my computer From what I can gather they are bad news I down loaded PC Tools to do a search and found a bunch of Trojans and other nasties I have uploaded a screen shot of the PC Tools scan In the quot C Program Files Video Add On quot folder the following can t be deleted icmtr dll icthis isfmdl dll isfmm isfmntr In the quot C Program Files Helper quot folder the following was found turbosearchsite dll e Module What is this Do I need the file in Helper Please help PS I am not a techno savvy guy Infected: "Video Add On" and "Helper" folder that contain Trojan viruses...HELP I kinda know what is going on but only enough to get myself into trouble and not be able to get out I tried a few things to get rid of them but was unsuccessful From what I have seen I will be here for a bit Thanks in advance bassndude that s Bass as in the fish not the musical instrument - nbsp

A:Infected: "Video Add On" and "Helper" folder that contain Trojan viruses...HELP

https://forums.techguy.org/threads/infected-video-add-on-and-helper-folder-that-contain-trojan-viruses-help.667700/
Relevancy 106.33%

I have searched to see if this was asked before without any success. Maybe someone has run into this problem before.
When I open "my computer" or "control panel" after I close it...it automatically goes into Internet Explorer as a blank page. Most of the time, when I close the IE blank page...it stops responding and I have the control-alt-delete to "end the program"
Thanks in advance for any help.
 

A:closing "my computer" or "Control Panel" open internet explorer window

Possibly malware - anything openning ie on its own raises an alarm in my books. Post a HJT log to the malware removal section of the forum and let the experts take a look at it
 

https://forums.techguy.org/threads/closing-my-computer-or-control-panel-open-internet-explorer-window.658783/
Relevancy 106.33%

Hello everyone how are you!

I have a question, actually I'm development a application for sharing internet connection. I'm using "Wireless Hosted Network and Internet Connection Sharing" that it's in https://msdn.microsoft.com/en-us/library/windows/desktop/dd815252%28v=vs.85%29.aspx?f=255&MSPPError=-2147217396


I want change default IP Address range and I have read that these settings it's in next address:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters.

My question is, How I can restart or update the "Internet Connection Shraring" or "Wireless Hosted Network" after I change the IP Address range for that assign IP Address different to default.

Thank you!

https://social.technet.microsoft.com/Forums/en-US/9cad8769-ac99-4437-8b52-752a0cf85da9/restart-or-update-the-quotinternet-connection-shraringquot-or-quotwireless-hosted?forum=netmon
Relevancy 106.33%

Hello I have an Asus Netbook P running Windows SP get - Network wifi get a also "connected" I connecting to - Access" "Unidentified café Internet Although I When No at with Internet Explorer I am often but not always experiencing the When connecting to wifi at a café - Although I get "connected" I also get - "Unidentified Network No Internet Access" following issue When I attempt to connect to Wifi at a caf the quot Wireless Network Connection quot for the Network shows quot Connected quot yet there When connecting to wifi at a café - Although I get "connected" I also get - "Unidentified Network No Internet Access" is no Internet access Placing the nbsp pointer over the Connection icon in the Notification Area displays quot Unidentified Network No Internet Access quot The network in question always has an SSID shown in the Wireless Network Connection list This issue occurs whether I am running only the Windows firewall or am only running the firewall that I prefer which is Comodo For antivirus I have Avast Pro with its quot web shield quot currently disabled and so far as this issue is concerned it makes no difference whether this Avast component is enabled or disabled or whether I disable all Avast Shields When this issue occurs there are often other customers in the caf nbsp connected to the caf wifi and also using the Internet I have to ask the caf to reset or turn off and then turn back on their router nbsp yet other customers do not have to do this to get Internet connection This is the issue at whatever caf to whose Wifi I attempt to connect Please help with a solution to this issue Regards Robert

https://social.technet.microsoft.com/Forums/en-US/0d18050f-7c31-4f0f-92d1-8039e0225061/when-connecting-to-wifi-at-a-caf-although-i-get-quotconnectedquot-i-also-get-?forum=w7itprogeneral
Relevancy 106.33%

Hello I have an Asus Netbook P running Windows SP with Internet Explorer I am often but not always experiencing the following issue When I attempt to connect to Wifi at a caf the quot Wireless Network Connection quot for the Network shows quot Connected quot yet there is no café a Network although also - get No I When "connected" - Access" connecting at Internet "Unidentified to wifi Internet access Placing the nbsp pointer over the Connection icon in When connecting to wifi at a café - although "connected" I also get - "Unidentified Network No Internet Access" the Notification Area displays quot Unidentified Network No Internet Access quot The network in question always has an SSID shown in the Wireless Network Connection list This issue occurs whether I am running only the Windows firewall or am only running the firewall that I prefer which is Comodo For antivirus I have Avast Pro with its quot web shield quot currently disabled and so far as this issue When connecting to wifi at a café - although "connected" I also get - "Unidentified Network No Internet Access" is concerned it makes no difference whether this Avast component is enabled or disabled or When connecting to wifi at a café - although "connected" I also get - "Unidentified Network No Internet Access" whether I disable all Avast Shields When this issue occurs there are often other customers in the caf nbsp connected to the caf wifi and also using the Internet I have to ask the caf to reset or turn off and then turn back on their router nbsp yet other customers do not have to do this to get Internet connection This is the issue at whatever caf to whose Wifi I attempt to connect Please help with a solution to this issue Regards Robert

https://social.technet.microsoft.com/Forums/en-US/0d18050f-7c31-4f0f-92d1-8039e0225061/when-connecting-to-wifi-at-a-caf-although-quotconnectedquot-i-also-get-quotunidentified?forum=w7itprogeneral
Relevancy 106.33%

I need help. A worm/virus/malware has invaded my Dell E520 Windows XP OS computer. It appears on the monitor as a small 2" X 3" popup which miniaturizes randomly on the page after logging in to the net.

When I try to hit delete prompt the malware shuts off my internet connection, then the image re-appears, hopping all over the desktop in replicating multiples. It's proved impossible to identify their web address.

I've run AVG, SuperAntiSpyware and MalwareBytes versions to rid the virus, but this has not been effective.

Can someone help or suggest a cure?

Appreciatively,
Hiram
 

A:"Mama Crack" or "Mama Casper" malware/virus invasion

Hiya and welcome to Tech Support Guy.

As you've run MalwareBytes already, can you post the log of what was found, if anything?

Also, can you do the following:

Download TFC by OldTimer to your desktop

Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
It will close all programs when run, so make sure you have saved all your work before you begin.
Click the Start button to begin the process. Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two. Let it run uninterrupted to completion.
Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.

Download RootRepeal from one of the following locations and save it to your desktop:
Link 1
Link 2
Link 3

Double click to start the program
Click on the Report tab at the bottom of the program window
Click the button
In the Select Scan dialog, check:

[*]Drivers
[*]Files
[*]Processes
[*]SSDT
[*]Stealth Objects
[*]Hidden Services
[*]Shadow SSDT

Click the OK button
In the next dialog, select all drives showing
Click OK to start the scan
Note: The scan can take some time. DO NOT run any other programs while the scan is running​
When the scan is complete, click the button and save the report to your Desktop as RootRepeal.txt
Go to File, then Exit to close the program
If the report is not too long, post the contents of RootRepeal.txt in your next reply. If the report is very long, it will not be complete if you post it, so please attach it to your reply instead.
Click on the Go Advanced button for the uploading options at the bottom of this page (in the picture below ) [/list]


In there, at the bottom, click on the button Manage Attachments (in the picture below .

A window will appear, and then Browse to RootRepeal.txt on your Desktop.

Click Upload, and when uploaded click Close this Window

Then, in the previous window, click on Add Reply


===============

Click here to download HJTInstall.exe

Save HJTInstall.exe to your desktop.
Doubleclick on the HJTInstall.exe icon on your desktop.
By default it will install to C:\Program Files\Trend Micro\HijackThis .
Click on Install.
It will create a HijackThis icon on the desktop.
Once installed, it will launch Hijackthis.
Click on the Do a system scan and save a logfile button. It will scan and the log should open in notepad.
Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
Come back here to this thread and Paste the log in your next reply.
DO NOT have Hijackthis fix anything yet. Most of what it finds will be harmless or even required.

=============

Please include the MBAM log, RootRepeal.txt and a fresh HijackThis log in your next reply

Regards

eddie
 

https://forums.techguy.org/threads/mama-crack-or-mama-casper-malware-virus-invasion.926805/
Relevancy 106.33%

Ive been getting random popups and my homepage has been reset to http www securitynetpage com I also had two programs installed onto my desktop Online Security Guide quot and quot Security Troubleshooting quot I also have a yellow triangle sign in the lower right hand portion of my screen that says something about a system alert popups Help would be greatly appreciated Thank You Logfile of HijackThis v Scan saved at AM on Platform Windows XP WinNT MSIE Internet Explorer v Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system spoolsv exe C WINDOWS Explorer EXE C WINDOWS System ishost exe C Program Files QuickTime qttask exe C Program Files Java jre bin jusched Random Security "Security Guide" Troubleshooting" popups, and "Online exe Random popups, "Online Security Guide" and "Security Troubleshooting" C Program Files Messenger msmsgs exe C WINDOWS System regscan exe C Program Files Kodak Kodak EasyShare Software bin EasyShare exe C Program Files Kodak KODAK Software Updater Program Kodak Software Updater exe C WINDOWS System ismon exe C Program Files Java jre bin jucheck exe C WINDOWS system drivers KodakCCS exe C WINDOWS system pctspk exe C WINDOWS System issearch exe C WINDOWS System wuauclt exe C Program Files Internet Explorer iexplore exe C WINDOWS System isnotify exe C Program Files Internet Explorer iexplore exe C HJT HijackThis exe R - HKCU Software Microsoft Internet Explorer Main Random popups, "Online Security Guide" and "Security Troubleshooting" Start Page http www yahoo com O - BHO no name - - F - D - - D F - C Program Files Spybot - Search amp Destroy SDHelper dll O - BHO no name - eb d-ae a- - bd- a f be - C WINDOWS System ixt dll O - BHO Random popups, "Online Security Guide" and "Security Troubleshooting" Google Toolbar Helper - AA ED - DD- d - -CF F - c program files google googletoolbar dll O - Toolbar amp Google - C B - - d - B - A CD F - c program files google googletoolbar dll O - Toolbar amp Radio - E - F- D - E- A C - C WINDOWS System msdxm ocx O - HKLM Run QuickTime Task quot C Program Files QuickTime qttask exe quot -atboottime O - HKLM Run SunJavaUpdateSched C Program Files Java jre bin jusched exe O - HKLM RunOnce Panda cleaner C WINDOWS System ActiveScan pavdr exe xPanda ActiveScan O - HKCU Run MSMSGS quot C Program Files Messenger msmsgs exe quot background O - HKCU Run Regscan C WINDOWS System regscan exe O - Global Startup Kodak EasyShare software lnk C Program Files Kodak Kodak EasyShare Software bin EasyShare exe O - Global Startup Kodak software updater lnk C Program Files Kodak KODAK Software Updater Program Kodak Software Updater exe O - Extra context menu item amp Google Search - res C Program Files Google GoogleToolbar dll cmsearch html O - Extra context menu item amp Translate English Word - res C Program Files Google GoogleToolbar dll cmwordtrans html O - Extra context menu item Backward Links - res C Program Files Google GoogleToolbar dll cmbacklinks html O - Extra context menu item Cached Snapshot of Page - res C Program Files Google GoogleToolbar dll cmcache html O - Extra context menu item Similar Pages - res C Program Files Google GoogleToolbar dll cmsimilar html O - Extra context menu item Translate Page into English - res C Program Files Google GoogleToolbar dll cmtrans html O - DPF B-B - D-A D -FCFDF E C WUWebControl Class - http update microsoft com microsof O - DPF E A- D- EE - C-DC FA D FC MUWebControl Class - http update microsoft com microsof O - DPF B BFD- E - -B AF- A B EA WScanCtl Class - http www ca com securityadvisor v fo webscan cab O - DPF A A - DA - DAF-B - F E E ActiveScan Installer Class - http acs pandasoftware com actives ree asinst cab O - HKLM System CCS Services Tcpip D A A - DC- D -A DD-A F A C NameServer O - Service Kodak Camera... Read more

A:Random popups, "Online Security Guide" and "Security Troubleshooting"

Hi and welcome to TSF.

I am currently reviewing your log. Please note that this is under the supervision of an expert analyst, and I will be back with a fix for your problem a.s.a.p

In the meantime, make sure you subscribe to this thread so that you will receive an instant email when I have replied with a fix to your problem. You may do this by clicking the Thread Tools option at the top of your post and then clicking Subscribe to this thread. Then, make sure Instant Notification by email is selected and click Add Subscription

Please be patient with me during this time.

http://www.techsupportforum.com/forums/f284/random-popups-online-security-guide-and-security-troubleshooting-112647.html
Relevancy 106.02%

i have a dell inspiron 6400 with the built in restore option (Ctrl +F11... or something)
i split my hard drive manual with partition magic.

i wanted to know, if i will restor my system will the hard disk goes back to one, or will it stay split?
 

A:install <span id="EBSpanHighlighter" style="background-color: Fuchsia; color: black;"

it'll stay split unless you actually delete the 2nd partition. Just reinstall on c: & you'll be fine
 

https://forums.techguy.org/threads/install-span-id-ebspanhighlighter-style-background-color-fuchsia-color-black.612210/
Relevancy 105.71%

When I am on the pc and even when I am not but haven t actually logged off I keep randomly getting the quot Run as quot box popping up asking me quot Which user account do you want to run this program quot with my account Current User as the first choice and a box to check that says quot Protect I As" virus/malware? - keeps up with "Run am popping a infected box Weird my computer and data from unauthorized program activity Weird "Run As" box keeps popping up - am I infected with a virus/malware? quot or the second selection which is quot The following user quot and a space for a user name and password I m concerned that some program s are attempting to run without my knowledge I did inadvertantly load myfreeze com on my pc a couple of weeks ago and then unistalled it including removal of registry keys etc per a website that gave instructions on how to do so It is around this time that this unusual quot Run as quot behavior started but I m not sure if the two are related I have run Malwarebytes and SuperAntiSpyware in the past hours as I tried to follow instructions from another post to quot completely remove all malware quot from my pc and have had Spyware detector and Max s Registry cleaner on my PC for awhile I m not sure what I have let slip through but the run-as boxes have me a bit concerned I did a HiJack this log a little bit ago and am attaching it I m new to this and am not sure if I m giving you everything you need but appreciate the help Thanks Logfile of Trend Micro HijackThis v Scan saved at PM on Platform Windows XP SP WinNT MSIE Internet Explorer v Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system Ati evxx exe C WINDOWS system svchost exe C WINDOWS System svchost exe C Program Files Lavasoft Ad-Aware aawservice exe C WINDOWS system spoolsv exe C Program Files Roxio BackOnTrack Disaster Recovery SaibSVC exe C Program Files Adobe Photoshop Elements PhotoshopElementsFileAgent exe C Program Files Common Files Apple Mobile Device Support bin AppleMobileDeviceService exe C Program Files Symantec LiveUpdate ALUSchedulerSvc exe C Program Files Bonjour mDNSResponder exe C WINDOWS system CTsvcCDA EXE C Program Files McAfee SiteAdvisor McSACore exe C PROGRA McAfee MSC mcmscsvc exe c PROGRA COMMON mcafee mna mcnasvc exe c PROGRA COMMON mcafee mcproxy mcproxy exe C Program Files McAfee VirusScan McShield exe C Program Files Common Files Microsoft Shared VS DEBUG MDM EXE C Program Files McAfee MPF MPFSrv exe C Program Files McAfee MSK MskSrver exe C Program Files Norton Ghost Agent VProSvc exe C WINDOWS system HPZipm exe C WINDOWS Explorer EXE C Program Files SpywareDetector SDMainService exe C Program Files Roxio Creator Ultimate CPMonitor exe C Program Files Norton Ghost Agent VProTray exe C Program Files McAfee com Agent mcagent exe C Program Files iTunes iTunesHelper exe C Program Files Common Files InstallShield UpdateService issch exe C Program Files HP HP Software Update HPWuSchd exe C WINDOWS system dla tfswctrl exe C Program Files Creative Sound Blaster Live -bit Surround Mixer CTSysVol exe C WINDOWS system ctfmon exe C Program Files Linksys EasyLink Advisor LinksysAgent exe C Program Files SpywareDetector SDService exe C WINDOWS system svchost exe C Program Files Common Files Ulead Systems DVD ULCDRSvr exe C WINDOWS system MsPMSPSv exe C Program Files Canon CAL CALMAIN exe C Program Files iPod bin iPodService exe C WINDOWS System svchost exe C WINDOWS system wuauclt exe C PROGRA McAfee VIRUSS mcsysmon exe C Program Files Trend Micro HijackThis HijackThis exe R - HKLM Software Microsoft Internet Explorer Main Default Page URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Default Search URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Search Page http go microsoft com fwlink LinkId R - HKLM Software Micr... Read more

A:Weird "Run As" box keeps popping up - am I infected with a virus/malware?

Hi everyone. I know all have been busy and we have had holidays, but this is still happening and it doesn't matter what user ID I use or anything. I'm really concerned that someone els is trying to access and run progrms on my PC. Since it has been over 4 days since I first posted, I just wondered if anyone has had any ideas? Thanks so much.
 

https://forums.techguy.org/threads/weird-run-as-box-keeps-popping-up-am-i-infected-with-a-virus-malware.784374/
Relevancy 105.71%

My desktop TOOL" bad help serious malware/virus a need "SECURITY has been taken over by a serious malware called "SECURITY TOOL" a serious malware/virus need help bad quot Security Tool quot I suspect it came when "SECURITY TOOL" a serious malware/virus need help bad my eldest son went onto a Nissan Forum which he said has a bad name currently for passing PC infections What happens is this A false security system called quot Security Tool quot downloads itself and installs an icon in the bottom right hand corner of my screen actually two icons It continually takes over my screen with messages saying that there are serious viruses "SECURITY TOOL" a serious malware/virus need help bad and malware infecting my PC I quot X quot them out but they keep coming back insisting I activate the illegal security ststem quot Security Tool quot and run it It brings up another screen showing that I have serious viruses and malware I tried uninstalling this crap in Start gt All programs but it deletes its new program listing but the program remains I think it actually re-installs back in All programs I have the latest updated Zone Alarm Security Suite installed and set to max but it did not stop this malware I notice though that every time I turn on anti-phising it tyrns itself off I tried a ZA quot deep scan quot but it timed out I tried a quot normal scan but it timed out I tried a quick scan but it didn t find anything By timed out I mean this maleware causes my PC to turn itself off after about - minutes A strange screen pops up taking over whole page and says something like for security of your PC your PC is being turned off Something comes up saying FILE SPCMDCOM SYS PAGE-FAULT-IN-NONPAGED-AREA STOP x x x FD C x etc etc I tried to access my Malware Bytes Malware Removal icon but it now does nothing Note it does allow me to access the internet via internet Explorer amp Firefox So why is this URGENT for me Because I have a data base of investor members and we are going through a legal class action and this of a malware the worst I ve ever had is actually stopping my Outlook Express icons from working thus not allowing me to access my data based stored in drafts and stopping me from accessing the group emails I need to send regularily I do have a back up on my other PC laptop but its out of date But I do not have mail groups on my laptop Operating System Windows XP Home Have you heard of this virus Thanks nbsp

Relevancy 105.71%

G day all I am hoping someone may be able to tell me why my local folders appear under quot The Internet quot Local Places" Solved: opening Network appear "My Folders "The as Internet"when on one of our work computers rather than under quot Local Network quot We have four machines running XP Home and one running XP Pro The front machine has XP Home on it and I cannot open any Solved: Local Folders appear as "The Internet"when opening "My Network Places" of the shared folders for this machine on any of the other three machines even though they all have the same workgroup name Solved: Local Folders appear as "The Internet"when opening "My Network Places" They are all connected via CAT cable and we have a Netcomm NB ADSL modem router a Netcomm V Telephone Adapter VOIP modem and an port switch in the boss s office And the front computer s folder s and drives that I have chosen to be shared are listed under quot The Internet quot Does anyone know why this is and how I would go about correcting it Thankyou for your help and time Aaron nbsp

A:Solved: Local Folders appear as "The Internet"when opening "My Network Places"

https://forums.techguy.org/threads/solved-local-folders-appear-as-the-internet-when-opening-my-network-places.578697/
Relevancy 105.4%

The quot Idle-time Full System Scan quot in Norton v is bogging down my computer constantly and there is no option to turn it off in quot Automatic Tasks quot I contacted Norton and after several attempts to find someone at Norton who could understand what I just said above and getting quot hung-up quot on over Norton chat Inexcusable I was able to get a hold of a technician who told me that Norton intentionally removed this option quot for security reasons because they didn t want people turning it off quot The problem is people will then be forced to turn it off by turning off ALL scheduled tasks under quot Settings Norton option Tasks" available under "Virus Scan" No v4: 360 "Settings/Automatic Scheduling Schedule Manual Schedule quot and that is an even worse security problem than the relatively small one that would be created by turning off idle-time full system scanning Once the system has completed a full system scan all files are on-access scanned anyway so running a full system scan every - days is rather silly and extremely annoying--especially because it will continue to try to run every time the system Norton 360 v4: No "Virus Scan" option available under "Settings/Automatic Tasks" is idle if you cancel it A warning urging the user to not turn off idle-time full system scans without fully understanding the risks and after explaining the risks would be VERY preferable Or at least the option to run the full system scans when the system is idle on a certain day of the month week The schedule for idle-time full system scans really needs to be separate from other tasks In fact the BEST solution would be the option to change the scheduling options for EACH automatic task INDIVIDUALLY--with the option to change EACH one to quot Automatic Weekly Monthly Manual quot By forcing people to turn off ALL automatic tasks in order to control that ONE idle-time virus scan option ALL or NONE Norton has made the security problem they are trying to avoid much worse So in the mean time does anyone know a registry setting that will turn off quot Idle-time full system scans quot un-check the invisible box without turning off the other automatic tasks nbsp

https://forums.techguy.org/threads/norton-360-v4-no-virus-scan-option-available-under-settings-automatic-tasks.948984/
Relevancy 105.4%

my computer was hijacked by "support tool" a so called virus protection hijacker. i'm in safe mode with networking now & attached you see my hjt log file. help please. THanks!

actually, i'm on a different computer. it has windows xp home ed. & its a dell inspiron 530S

also, in trying to fix the problem initially, my wife deleted the file "rundll32" beacause the virus stated that had a virus error. so this file may be missing as well & we may need to replace it.
 

A:Computer Hijacked by "Support Tool" "Virus Protection" Prog

I posted this yesterday to get help for a "Support Tool" hijack on a computer. Please help. Log file attached. Thanks.
 

https://forums.techguy.org/threads/computer-hijacked-by-support-tool-virus-protection-prog.905556/
Relevancy 105.4%

Hello All I started a few weeks ago on the PowerShell programing and I got my answer from here only So am putting up the error that I am getting now to issue "System.Int32") PowerShell value convert "and" type ('Cannot to get some help again Scenario I wrote a script that checks a Folder on a server and counts the number of files in it Then when it finds the resulting number to be more then a specific value threshold it sends up a mail to the required alias To break it all along the portion to PowerShell issue ('Cannot convert value "and" to type "System.Int32") send a mail is generated through DBmail using another PS file In the PS file containing the main checking of number of files I am trying to pass parameters Folder path on the server the Threshold value of number of files Now when I created a job to run this powershell script as amp quot C PowerShell Power PS quot XXXX c Documents and Settings ABC Local Settings Temp IT fails with the error A job step received an error at line in a PowerShell script The corresponding line is ' amp quot C PowerShell Power ps quot XXXX c Documents and Settings ABC Local Settings Temp ' Correct the script and reschedule the job The error information returned by PowerShell is 'Cannot convert value quot and quot to type quot System Int quot Error quot Input string was not in a correct format PowerShell issue ('Cannot convert value "and" to type "System.Int32") quot ' Process Exit Code - The step failed I really can not move forward on this Please help

A:PowerShell issue ('Cannot convert value "and" to type "System.Int32")

Just to add for reference Below is the code for the Power.Ps1 file that I have used :


param
(

[string] $directory_string,
[int] $benchmark

)

$date=get-date
[int]$directory_file_count = 0

# check that the directory exists.
$does_directory_exist = (Test-Path $directory_string)


# if it does, then continue
if ($does_directory_exist)
{


# Check for the number of files on the directory
$directory_file_count = (get-childitem $directory_string -name -recurse).count

# If number of files exceeds the limit, send mail to notify

if($directory_file_count -gt $benchmark)
{
& "C:\Powershell\DB_mail.ps1"
$subject= "XXXX"
$body= "XXXX"

}

else

{
& "C:\Powershell\DB_mail.ps1"
$subject= "XXXX"
$body= "XXXX "
}

}
else
{
& "C:\Powershell\DB_mail.ps1"
$subject = "XXXX"
$body = " XXXX"
}

http://www.vistax64.com/general-discussion/286369-powershell-issue-cannot-convert-value-type-system-int32.html
Relevancy 105.4%

With EaseUS Backup Tool, I've cloned these two partitions ("System Reserved" and "C") to same-sized partitions on a external HDD ("X" and "Y"). Picture tells it concisely:
How to make drives "X" and "Y" boot-able?

In "Disk Management", I've noticed these partition labels missing:"X" (or "System Reserved") is missing System label,
"Y" (or "OS") is missing Boot, Page File and Crash Dump labels

Thank you!

A:Both "System reserved" and "C" partition cloned to external HDD: boot?

You cannot boot Win7 on external HD, unless it is connected via eSATA.

http://www.sevenforums.com/installation-setup/220584-both-system-reserved-c-partition-cloned-external-hdd-boot.html
Relevancy 105.4%

Hi

New installation of windows 7 ultimate 32bit and on trying to copy a 38gb folder from c drive to d drive, pc gives bsod.
Lately playing world of tanks is resulting in system lock ups,please can anyone help

Frosty

A:bsod copying files from "c" to "d" drive and system lock ups

Post it following the Blue Screen of Death (BSOD) Posting Instructions.

http://www.sevenforums.com/bsod-help-support/309096-bsod-copying-files-c-d-drive-system-lock-ups.html
Relevancy 105.4%

There are 2 devices in the "Device Manager" that do not have drivers installed.

I just did a clean install of Window 7 SP1 32-bit to a Dell Latitude E6500. I have uploaded all the Windows updates and all seems to be performing well. However, there are two devices in the "device manager" that do not have drivers installed, and I can't determine what the devices are nor how/where to find the drivers for them online or elsewhere. The driverless devices are "Base System Device" and "Broadcom USH". When I look at the properties page of both devices, it says that the Base System Devices location is "PCI bus 3, device 1, function 3", and the Boradcom USH's location as "0000.001a.0002.001.000.000.000.000.000".

The laptop did NOT come with a drivers installation disk.

QUESTION: How can I identify what these devices actually are and, more importantly, how can I obtain the driver for them?

A:Can't ID driverless devices "Base System Device" and "Broadcom USH"

Well, as for the second part of your question......... have you tried using windows own driver update utility? Right click on the yellow exclamation point in Device Manager, choose update.

I'm thinking your "boradcom ush" is this, drivers for it are here too, :Broadcom USH - USB\VID_0A5C&PID_5800 - awdit - The driver, software, & hardware database

http://www.sevenforums.com/drivers/273074-cant-id-driverless-devices-base-system-device-broadcom-ush.html
Relevancy 105.09%

I currently use Norton Internet Security Suite 2006. I just purchased a new Think Pad and was wondering what the difference is between an "Anti Virus" utility and a "Internet Suite" which includes anti virus, firewall, spam filters, ect...................................
Thanks, John
 

A:Anti Virus utility "vs" Internet Security Suite

You pretty much named the difference in your post. A "system security suite" is one which bundles all the required tools for complete system protection, like anti-virus, firewall, anti-spyware, file cleaners, registry cleaners, etc.
 

https://forums.techguy.org/threads/anti-virus-utility-vs-internet-security-suite.553999/
Relevancy 105.09%

here is my hijackthis log please help Logfile of Trend Micro HijackThis v Scan saved at PM on Platform Windows Vista SP WinNT MSIE Internet i saying virus. to a "microsoft security me have redirects center" Internet Explorer v Boot mode Normal Running processes C Windows system taskeng exe C Windows system Dwm exe C Windows Explorer EXE C Windows System igfxtray exe C Windows System hkcmd exe C Windows System igfxpers exe C Program Files Synaptics SynTP SynTPEnh exe C Program Files Motorola SMSERIAL sm hlpr exe Internet redirects me to "microsoft security center" saying i have a virus. C Windows RtHDVCpl exe C Program Files Intel Intel Matrix Storage Manager IAAnotif exe C Program Files HP QuickPlay QPService exe C Program Files Hewlett-Packard HP Quick Launch Buttons QLBCTRL exe C Program Files Hewlett-Packard HP QuickTouch HPKBDAPP exe c Program Files Common Files Symantec Shared ccSvcHst exe C Program Files Hewlett-Packard HP Wireless Assistant HPWAMain exe C Program Files Hewlett-Packard HP Wireless Assistant WiFiMsg exe C Program Files Java jre bin jusched exe C Program Files HP HP Internet redirects me to "microsoft security center" saying i have a virus. Software Update hpwuSchd exe C Program Files iTunes iTunesHelper exe C Program Files Microsoft Office Office GrooveMonitor exe C Program Files Windows Sidebar sidebar exe C Program Files Common Files LightScribe LightScribeControlPanel exe C Program Files Windows Live Messenger msnmsgr exe C Users Travis Program Files DNA btdna exe C Program Files Windows Media Player Internet redirects me to "microsoft security center" saying i have a virus. wmpnscfg exe C Windows ehome ehtray exe C Program Files HP Digital Imaging bin hpqtra exe C Windows ehome ehmsas exe C Program Files Hewlett-Packard Shared HpqToaster exe C Windows system igfxsrvc exe C Program Files Windows Sidebar sidebar exe C Program Files Synaptics SynTP SynTPHelper exe C Program Files HP Digital Imaging bin hpqSTE exe C Program Files HP Digital Imaging bin hpqbam exe C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer IEUser exe C Program Files HP Digital Imaging Smart Web Printing hpswp clipbook exe C Program Files Common Files Microsoft Shared Windows Live WLLoginProxy exe C Program Files Microsoft Office Office OUTLOOK EXE C Program Files Trend Micro HijackThis HijackThis exe C Windows system SearchFilterHost exe R - HKCU Software Microsoft Internet Explorer Main Start Page about blank R - HKLM Software Microsoft Internet Explorer Main Default Page URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Default Search URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Search Page http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Start Page http ie redirect hp com svs rdr TY lion amp pf laptop R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyOverride local R - HKCU Software Microsoft Internet Explorer Toolbar LinksFolderName O - Hosts www youtube com O - Hosts www facebook com O - Hosts www live com O - Hosts www wikipedia org O - Hosts www blogger com O - Hosts www go com O - Hosts espn go com O - Hosts www comcast net O - Hosts www wordpress com O - Hosts www ask com O - Hosts www youporn com O - Hosts www fastclick com O - Hosts www pornhub com O - Hosts www rapidshare com O - Hosts www redtube com O - Hosts www doubleclick com O - Hosts www att com O - Hosts www vnn com O - Hosts www netflix com O - Hosts www ebay co uk O - Hosts www bebo com O - Hosts www sky com O - Hosts www virginmedia com O - Hosts www aol co uk O - BHO no name - D -C F - efb- B - ECA - no file O - BHO Adobe PDF Reader Link Helper - E F-C D - D -B D- B D BE B - C Program Files Common Files Adobe Acrobat ActiveX AcroIEHelper dll O - BHO NCO IE BHO - ADB E- AFF- - AA - DAC DFA - c Program Files Common Files Symantec Shared coShared... Read more

A:Internet redirects me to "microsoft security center" saying i have a virus.

Please download Malwarebytes Anti-Malware and save it to your desktop.
If you have problems with that link, you can also download it from Here or HereMake sure you are connected to the Internet.
Double-click on mbam-setup.exe to install the application.
When the installation begins, follow the prompts and do not make any changes to default settings.
When installation has finished, make sure you leave both of these checked:
Update Malwarebytes' Anti-Malware
Launch Malwarebytes' Anti-Malware
Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan. If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
If you encounter any problems while downloading the updates, manually download them from here
and just double-click on mbam-rules.exe to install.
On the Scanner tab:Make sure the "Perform Quick Scan" option is selected.
Then click on the Scan button.

If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.
Make sure that everything is checked, and click Remove Selected.
When removal is completed, a log report will open in Notepad.
The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply and exit MBAM.
Note: If MBAM encounters a file that is difficult to remove, you may be asked to reboot your computer so it can proceed with the disinfection process.
Regardless if prompted to restart the computer or not, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

http://www.techsupportforum.com/forums/f284/internet-redirects-me-to-microsoft-security-center-saying-i-have-a-virus-305573.html
Relevancy 105.09%

Hey folks My first post on here but I problem card failure a sound "meddling"... boot just "beep" tone. after Desktop m in serious trouble Desktop boot problem after sound card "meddling"... just a "beep" failure tone. I got a quot new quot to me anyway desktop running XP today and found the audio hardware wasn t working So I pillaged an old machine for its sound card and inserted that onto the motherboard Also connected the Aux and CD lines to the top of the daughterboard Since then to my horror the machine has failed to boot All plugged in keyboard working screen on and being used on another box for this very post All I get now is the usual chirps from the internal soundcard followed by a few very low notes definitely depressing so I guess they re suggesting something s failed There s no further action from the CPU the fan still works but there is no screen output whatever Have I fried the motherboard without realising Also ironically the last failure tone was delivered by my speakers through the originally non-responsive audio hardware I d love a bit of help on this one because my knowledge of computers insidey bits is pretty poor Many thanks Joe nbsp

A:Desktop boot problem after sound card "meddling"... just a "beep" failure tone.

https://forums.techguy.org/threads/desktop-boot-problem-after-sound-card-meddling-just-a-beep-failure-tone.666097/
Relevancy 104.78%

The issue is a Malware Virus Program that is on my Wife's laptop At startup the virus shuts down all other programs except the Operating System The Virus program says the computer is infected The Virus Program sends the user to a screen to put in Payment information to buy the fake program This Removal Malware "System Tool Virus" Virus makes the background turn blue and also there are 's and 's in the background too Scans and attachments are included I do have a recovery reboot disk available if needed DDS Ver - - - NTFSx NETWORK Run by Ashley at on Sat Internet Explorer Microsoft Windows Vista Home Premium GMT - AV McAfee Anti-Virus and Anti-Spyware Enabled Updated - - EA -ABB - B EB SP Windows Defender Disabled Updated D DDC A- F- fae- E -DA C ACF SP McAfee Anti-Virus and Anti-Spyware Enabled Updated D B - E- - - C A Running Processes C Windows system wininit exe C Windows system lsm exe C "System Tool Virus" Malware Removal Windows system svchost exe -k DcomLaunch C Windows system svchost exe -k rpcss C Windows System svchost exe -k LocalServiceNetworkRestricted C Windows system svchost exe -k netsvcs C Windows System svchost exe -k LocalSystemNetworkRestricted C Windows system svchost exe -k NetworkService C Windows system svchost exe -k LocalService C Windows system svchost exe -k LocalServiceNoNetwork C Windows system mfevtps exe C Windows system svchost exe -k NetworkServiceNetworkRestricted C Program Files Common Files McAfee SystemCore mfefire exe C Windows Explorer EXE C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer iexplore exe C Program Files Common Files McAfee McSvcHost McSvHost exe C Windows system wbem wmiprvse exe c PROGRA mcafee com agent mcagent exe C Program Files Internet Explorer iexplore exe C Users Ashley AppData Local Microsoft Windows Temporary Internet Files Content IE JE QHTKR dds scr C Windows system wbem wmiprvse exe Pseudo HJT Report uWindow Title Internet Explorer provided by Dell mDefault Page URL hxxp www google com ig dell hl en amp client dell-usuk amp channel us amp ibd uURLSearchHooks Swag Bucks Toolbar bdea d - f - eb- ee - a af d f - c program files swag bucks tbSwag dll uURLSearchHooks WeUseCoupons Toolbar b d c - a - e - df- e fd d a ef - c program files weusecoupons prxtbWeUs dll uURLSearchHooks Yahoo Toolbar ef bd -c fb- d - f- d f - c program files yahoo companion installs cpn yt dll mURLSearchHooks Swag Bucks Toolbar bdea d - f - eb- ee - a af d f - c program files swag bucks tbSwag dll mURLSearchHooks WeUseCoupons Toolbar b d c - a - e - df- e fd d a ef - c program files weusecoupons prxtbWeUs dll BHO amp Yahoo Toolbar Helper d -c f - efb- b - eca - c program files yahoo companion installs cpn yt dll BHO HP Print Enhancer c e- - -bf - c - c program files hp digital imaging smart web printing hpswp printenhancer dll BHO Adobe PDF Reader Link Helper e f-c d - d -b d- b d be b - c program files common files adobe acrobat activex AcroIEHelper dll BHO Conduit Engine f b -b - - b- fba bd d - c program files conduitengine ConduitEngine dll BHO WeUseCoupons Toolbar b d c - a - e - df- e fd d a ef - c program files weusecoupons prxtbWeUs dll BHO SSVHelper Class bb-d f - c-b eb-d daf d d - c program files java jre bin ssv dll BHO scriptproxy db d a - - e -b d- f c - c program files common files mcafee systemcore ScriptSn dll BHO Swag Bucks Toolbar bdea d - f - eb- ee - a af d f - c program files swag bucks tbSwag dll BHO Google Toolbar Helper aa ed - dd- d - -cf f - c program files google google toolbar GoogleToolbar dll BHO Google Toolbar Notifier BHO af de - d - -b fa-ce b ad d - c program files google googletoolbarnotifier swg dll BHO McAfee SiteAdvisor BHO b e -a b - a -b - cd e a ff - c progra mcafee sitead mcieplg dll BHO CBrowserHelperObject Object ca c - b - e-a -a c db f - c program files dell bae BAE dll BHO ShopAtHomeIEHelper Class e daaa - caa- b - - e e - c program files selectrebates toolbar ShopAtHomeToolbar dll BHO SingleI... Read more

A:"System Tool Virus" Malware Removal

Hello, Welcome to TSF.
I'm nasdaq and will be helping you.

You may wish to Subscribe to this thread (Thread Tools > Subscribe to this thread) so that you are notified when you receive a reply.

Please read these instructions carefully and then print out or copy this page to Notepad in order to assist you when carrying out the fix.

Note that the fix may take several posts. Please continue to respond to my instructions until I confirm that your logs are clean. Remember that although your symptoms may vanish, this does NOT mean that your system is clean.

If there is anything you don't understand, please ask BEFORE proceeding with the fixes.

Please ensure that you follow the instructions in the order I have them listed.

Please do not install or uninstall any programs, or run any other scanners or software, unless I specifically ask you to do so. Also please copy and paste logs into the thread, rather than add them as attachments.
===

A number of steps are required to remove this infection.

You will find the instructions here:

Remove System Tool and SystemTool (Uninstall Guide)

If at any time you need advice before proceeding please ask for help here.

p.s.
The <random>.exe file mentioned in the article is this one.
uRunOnce: [jNnOkKb06310] c:\programdata\jnnokkb06310\jNnOkKb06310.exe

At any time when you can disable the process via the Task Manager.

CTRL+ALT+DEL KEY should give you the way to the Task Manager.
===

When you can please post a fresh DDS log and let me know what problem persists.

http://www.techsupportforum.com/forums/f284/system-tool-virus-malware-removal-555956.html
Relevancy 104.78%

This VIRUS SECURITY designed "INTERNET protect" to correspondence is sent from username - crudeoil Crudeoil s infected laptop runs on XP and is a bit computer I am communicating to you from another laptop with all preliminary logs and reports As such all necessary downloads of log and reports scanning software and resulting text reports were transmitted to and from infected computer to corresponding computer via flash drive The virus on crudeoil s computer is believed to be INTERNET SECURITY designed to protect A window popped up containing the above "INTERNET SECURITY designed to protect" VIRUS name security program suspiciously soon after a "INTERNET SECURITY designed to protect" VIRUS previous window believed to "INTERNET SECURITY designed to protect" VIRUS be a fake ADOBE FLASH PLAYER update popped up of which I may have inadvertently activated in passing over it with my mouse Typically I use the CTRL ALT DEL and end program termination step for removal of suspected virus pop-up programs when they show up It may have looked too authentic at the time and I just got lazy Also there appears that another malware type security program already was existing on my computer titled ANTISPYWARE BY ANTISPYWARE LLC shown to be installed in when I noticed the above named program in my add and remove program section during the reduction to only one security program step prior to the logging and reporting step A Google search of the said program described it as a malware security program that would require a special removal technique The assumption that it has been there results from the install date The fact that it has been there since is perplexing since in May I had used TSF S excellent services to resolve a fake MSE generated virus that caused an inability to connect to the internet I feel like I would have removed ANTISPYWARE BY ANTISPYWARE LLC at that time in the reduction to only one security program step of that procedure The only other possibility is that it may have been inadvertently installed after the virus removal procedure with a fake install date of I am just not sure Consequently the log and reporting providing herein are with the ANTISPYWARE BY ANTISPYWARE LLCstill being shown in the add and remove program section of my hard drive I did remove MSE however to meet the only one virus program requirement before logging and reporting I might add that all tasks were performed in SAFE MODE One peculiar occurrence in SAFE MODE noteworthy in the initial attempt to generate the GMER report was the High Zoom view in all windows While it didn t seem to affect the DDS scan in GMER the SAVE button was not seen below the COPY button anywhere on the page at the high magnification After finding a procedure to reduce the zoom in SAFE MODE the SAVE button was present and available for activation Pasted below is the copy of the text file dds generated by the DDS scan The other DDS scan text file that was zipped entitled attach and ark also zipped from the GMER scan are provided as attachment Please let me know if you have any other questions that might assist in the resolution of my problem Thanking you in advance for you assistance DDS Ver - - - NTFS x NETWORK Internet Explorer BrowserJavaVersion Run by Ray at on - - Microsoft Windows XP Professional GMT - AV Microsoft Security Essentials Enabled Updated EDB FA - B - AFA- C D- CCA Running Processes C WINDOWS Explorer EXE C WINDOWS system rundll exe C WINDOWS system wbem wmiprvse exe C WINDOWS system svchost exe -k DcomLaunch C WINDOWS system svchost exe -k rpcss C WINDOWS system svchost exe -k NetworkService C WINDOWS System svchost exe -k netsvcs Pseudo HJT Report uStart Page hxxp www foxnews com uSearchMigratedDefaultURL hxxp www google com search q searchTerms amp sourceid ie amp rls com microsoft en-US amp ie utf amp oe utf uSearchAssistant hxxp www google com ie uSearchURL Default hxxp www google com search q s BHO Adobe PDF Reader Link Helper... Read more

A:"INTERNET SECURITY designed to protect" VIRUS

Hello and welcome to TSF.

Please note that more than one round may be needed to properly eradicate malware. In co-operation with the cleaning process, please: do not uninstall/install any programs unless asked to do so, to make it easier on us as it is more difficult when files/programs are appearing in/disappearing from the logs;
do not run any tools or scans other than those requested;
follow all instructions in the order they are presented;
if you have problems with or do not understand the instructions, ask before continuing;
stay with this thread until given the All Clear, as absence of symptoms does not always mean the machine is clean;
do not attach any logs/reports, etc.. unless specifically requested to do so.
All logs/reports, etc.. must be posted in Notepad making sure the word wrap is unchecked. (In notepad click format, uncheck word wrap if it is checked.)
Also note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

====================

One or more of the identified infections is a backdoor trojan.

This type of infection allows hackers to remotely control your computer, log keystrokes, steal critical system information, and download and execute files without your knowledge.

If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Do not change passwords or do any transactions from the infected computer until it has been cleaned.

Please read this: How Do I Handle Possible Identity Theft, Internet Fraud, and CC Fraud?

==========================

Please download ComboFix and Save it to your Desktop.

**Note: It is important that it is saved directly to your desktop**

Disable all antivirus and antispyware programs. If you don't know how, you can get help here

Double-click ComboFix.exe and follow the prompts to run it.
As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed.
With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal.
It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console.
When prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.




ComboFix will now automatically install the Windows Recovery Console onto your computer, which will show up as a new option when booting up your computer. Do not select the Windows Recovery Console option when you start your computer unless requested to by a helper.

Once the Recovery Console is installed, this blue window will appear:


Please click Yes to continue scanning for malware.
Your desktop may go blank. This is normal. It will return when ComboFix is done.
ComboFix may reboot your machine. This is normal. For some infections, it may do this multiple times.
When the tool is finished, it will produce a log for you.

Please post that log, C:\ComboFix.txt, in your next reply.

Please re-enable your antivirus before posting the ComboFix.txt log.

http://www.techsupportforum.com/forums/f50/internet-security-designed-to-protect-virus-704827.html
Relevancy 104.47%

I thought I was computer savvy until this problem came up When I double click my computer recycle bin control panel etc the hourglass comes up for a few seconds goes off and nothing else No error messages or anything just nothing I have viewed a few of the threads covering this and a common link was the hijack this result I have posted that here and really hope that someone can help me with this I have run SpyBotSD and adaware I have run mutiple virus scans I did an SFC and the final thing bin", I "control computer" "my "recycle open cannot panel" etc... was to repair windows using the original disk none of which has help I am running Window XP w SP Any other suggestions would be certainly appreciated Hope to here from someone soon MTCS out Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system spoolsv exe C Program Files Common Files Symantec Shared ccSetMgr exe C Program Files Symantec AntiVirus DefWatch exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS System svchost exe C PROGRA I cannot open "my computer" "control panel" "recycle bin", etc... TDSTEL ENTERN app pppoeservice exe C WINDOWS system svchost exe C Program Files Symantec AntiVirus Rtvscan exe C Program Files Common Files Symantec Shared ccEvtMgr exe C WINDOWS Explorer EXE C WINDOWS system wuauclt I cannot open "my computer" "control panel" "recycle bin", etc... exe C Program Files Hewlett-Packard Toolbox Apache Tomcat webapps Toolbox StatusClient StatusClient exe C Program Files ScanSoft OmniPageSE OpwareSE exe C PROGRA SYMANT VPTray exe C WINDOWS BCMSMMSG exe C Program Files Adobe Photoshop Album I cannot open "my computer" "control panel" "recycle bin", etc... Starter Edition Apps apdproxy exe C Program Files HP HP Software Update HPWuSchd exe C Program Files Common Files Real Update OB realsched exe C PROGRA DEFEND DEFEND PopUpKiller exe C WINDOWS system ctfmon exe C Program Files Messenger msmsgs exe C Program Files Hewlett-Packard Toolbox Javasoft JRE bin javaw exe C Documents and Settings Charlotte Hough Desktop HijackThis exe O - BHO HP Print Enhancer - C E- - -BF - C - C Program Files HP Smart Web Printing hpswp printenhancer dll O - BHO HP Print Clips - F -DC - -A C- F D C - C Program Files HP Smart Web Printing hpswp framework dll O - BHO Adobe PDF Reader Link Helper - E F-C D - D -B D- B D BE B - C Program Files Adobe Acrobat ActiveX AcroIEHelper dll O - BHO RealPlayer Download and Record Plugin for Internet Explorer - C E -B - BC - - C CA - C Program Files Real RealPlayer rpbrowserrecordplugin dll O - BHO IE PopUp-Killer Neikeisoft - E E F - C - D - D- - C PROGRA DEFEND DEFEND PopUp dll O - BHO no name - - F - D - - D F - C Program Files Spybot - Search amp Destroy SDHelper dll O - BHO SSVHelper Class - BB-D F - C-B EB-D DAF D D - C Program Files Java jre bin ssv dll O - Toolbar Yahoo Toolbar - EF BD -C FB- D - F- D F - C Program Files Yahoo Companion Installs cpn yt dll O - HKLM Run StatusClient C Program Files Hewlett-Packard Toolbox Apache Tomcat webapps Toolbox StatusClient StatusClient exe auto O - HKLM Run TomcatStartup C Program Files Hewlett-Packard Toolbox hpbpsttp exe O - HKLM Run OpwareSE quot C Program Files ScanSoft OmniPageSE OpwareSE exe quot O - HKLM Run REGSHAVE C Program Files REGSHAVE REGSHAVE EXE AUTORUN O - HKLM Run vptray C PROGRA SYMANT VPTray exe O - HKLM Run BCMSMMSG BCMSMMSG exe O - HKLM Run Adobe Photo Downloader quot C Program Files Adobe Photoshop Album Starter Edition Apps apdproxy exe quot O - HKLM Run HP Software Update C Program Files HP HP Software Update HPWuSchd exe O - HKLM Run TkBellExe quot C Program Files Common Files Real Update OB realsched exe quot -osboot O - HKCU Run SpybotSD TeaTimer C Program Files Spybot - Search amp... Read more

A:I cannot open "my computer" "control panel" "recycle bin", etc...

You may want to reinstall the operating system.

Backupthe files that are importantto you before you reinstall.

The "New" installation will overwrite the current one

If you do not format your hard drive before the reinstall the installation should not harm your files (That's why I suggest backingup your files) and will speed up the installation process.
 

https://forums.techguy.org/threads/i-cannot-open-my-computer-control-panel-recycle-bin-etc.717788/
Relevancy 104.47%

hi,

OK, this is a weird one.

I wanted to move the "My Music", "My Pictures", "My Videos" folders to another HDD. I moved the "My Documents" Folder to this HDD without a problem but the others I accidentally set the whole HDD as the folder (if that makes sense). So now the music, videos and pictures folders are set to this HDD and dont have an actual folder to change the properties of. Therein lies my dilema.

If anyone can offer any advice on this curly issue it would be greatly appreciated.

Shane

A:Remaking "My Music", "My Pictures", "My Videos" folders

  
Quote: Originally Posted by Legume


hi,

OK, this is a weird one.

I wanted to move the "My Music", "My Pictures", "My Videos" folders to another HDD. I moved the "My Documents" Folder to this HDD without a problem but the others I accidentally set the whole HDD as the folder (if that makes sense). So now the music, videos and pictures folders are set to this HDD and dont have an actual folder to change the properties of. Therein lies my dilema.

If anyone can offer any advice on this curly issue it would be greatly appreciated.

Shane


You have a backup from before the problem started? a win 7 dvd to do a repair install?
ken

http://www.sevenforums.com/customization/109624-remaking-my-music-my-pictures-my-videos-folders.html