1,366 Posted Topics
 | Hi welcome to daniweb. First of all DON'T use system restore under any circumstances. It WON'T remove an infection. System Restore actually operates only on a very few system files and settings. System Restore backs up your registry. System Restore does not backup your data. If you delete or damage … |
 | To Kristain, you have been warned before. Crunchie has given the correct instructions in this thread. If you have nothing constructive to add then don't post.  |
| | Re: virus Without information we cannot advise anything. Do the steps in our Read Me sticky and post back here with all the requested logs. [url]http://www.daniweb.com/forums/thread134865.html[/url] |
| | |
| | Hello, try this. I want you to try running rkill to stop the process which is likely running in the background and therefore stopping the tools you need from running properly. Follow these steps exactly and then post the logs: There are five different copies of rkill. Try them one …  |
| | Hi Alex.We need you do do some scans and post the logs. Can't help what we can't see. Follow the instructions on our Read Me Sticky and post ALL the logs back here. [url]http://www.daniweb.com/forums/thread134865.html[/url] |
| | Re: 3,000 Emails? Sounds likely that her email account may have been hacked or she has an email worm sending mails. You need to have her follow the instructions given on our Read Me sticky and post back here with all the requested logs. [url]http://www.daniweb.com/forums/thread134865.html[/url] |
| | You are contradicting yourself here...[I][COLOR="Green"]I removed a pretty big malware program with malwarebytes.[/COLOR][/I]and then you say...[I][COLOR="Green"]I have tired everything known to the net, not one of which were able to detect or remove anything. [/COLOR][/I] Several of the programs you ran are for one specific infection and if you don't … |
| | 1 - Open a Windows Explorer... You can do so by opening "My Computer" 2- in the menu bar at the top of the windows explorer you will find a "Tools" option. 3- In the tools option click "Folder Options" 4- click on the second tab "View" 5- Select the … |
| | Your version of Malwarebytes is [B]nearly 2 years old[/B]. The[B] current version is 1.46[/B] and current database, as of this morning, stands at [B]4469[/B]. *The most important instruction for use of MBA-M is ALWAYS update before each and every scan.* [B]MBA-M issues updates daily, sometimes multiple updates in a day.[/B] … |
| | Can you give us more info? Operating system especially. Are you saying you have no safe boot either? |
| | First of all, that analyzer at Network Techs is 5 years old, and [B]should NEVER be used[/B]. It is for use on machines running XP at the very latest and is for [B]HJT version 1.99.1[/B] at the latest. That said, the use of a HJT analyzer to personally do fixes … |
| | Hello kilegoty, Please do the following: Before you can begin cleaning you must first end the processes that belong to Security Tool so that it does not interfere with the cleaning procedure. To do this, download the following file to your Desktop. These instructions are from [B][URL="http://www.bleepingcomputer.com/forums/topic308364.html"]bleepingcomputer[/URL][/B]. There are three … |
| | You didn't follow the instructions given for the using of MBA-M which clearly state: [B]Be sure that everything is checked, and click [COLOR="Red"]Remove Selected[/COLOR].[/B] You need to Update the program again and run another Full Scan with it and be sure that you DO remove infected items found. [B]Reboot The … |
| | Please Run the [B][URL="http://www.eset.com/online-scanner"]ESET Online Scanner[/URL][/B] and attach the ScanLog with your post for assistance. [B]You will need to use Internet Explorer to to complete this scan. You will need to temporarily Disable your current Anti-virus program.[/B] [B]Be sure the option to Remove found threats is checked and the option … |
| | Re: Adware.generic Double click on Add/Remove Programs Find "My Web Search" in the list of installed programs and click on Change/Remove to uninstall it. You may also want to uninstall any of the following items associated with FunWebProducts. * My Web Search (Smiley Central or FWP product as applicable) * My Way … |
| | This is for [B]fred sheehan[/B] and the advice to use System Restore; This is dangerous advice. First, things can and do go wrong when attempting to remove malware. It doesn't remove the infection and can make removal that much harder. System Restore is meant to restore from very RECENT changes …  |
| | Re: hijack this log I see your logs...but what are the problems you have been having? Obviously there were/are multiple infections on there but all the logs aren't here so we don't have any info about the computer or the problems. You need to fully state what has been going on, otherwise we cannot … |
| | scruff74, this post has absolutely nothing to do with this thread. You need to begin [B][U]your own thread with your own title[/U][/B]. You will not receive help by hijacking another person's thread. |
| | For the "average Joe" I usually recommend No Beta. These are test versions, not the final release. |
| | Please follow the steps given in our Read Me First sticky and then post back with the requested logs. [url]http://www.daniweb.com/forums/thread134865.html[/url] |
| | Hi travs1, short handed here, sorry you had to navigate this stuff alone. For the moment do the MBA-M and allow it to remove everything it finds. Post back here with it's log. We can decide where to go and what to do after that. Judy |
| | You have used an outdated version of HiJackThis and judging by the log you are using either Vista or Windows 7, neither of which will get an accurate scan with this old version. You need to remove this one and download the newest version 2.0.4 [url]http://free.antivirus.com/hijackthis/[/url] We ask that you … |
| | Please do the following: Please Run the [B][URL="http://www.eset.com/online-scanner"]ESET Online Scanner[/URL][/B] and attach the ScanLog with your post for assistance. [B]You will need to use Internet Explorer to to complete this scan. You will need to temporarily Disable your current Anti-virus program.[/B] Be sure the option to Remove found threats is … |
| | You really need to begin clean up by following the instructions on our [B][URL="http://www.daniweb.com/forums/thread134865.html"]Read Me Sticky[/URL][/B] and then copy/paste the requested logs right back here. |
| | Your MBA-M was not updated prior to scanning. Your database is way out of date. Please update and do a new Full Scan, remove all that is found and reboot. Post back here with the log. Also please do the following: Please Run the [B][URL="http://www.eset.com/online-scanner"]ESET Online Scanner[/URL][/B] and attach the … |
| | Hello and welcome to daniweb, Download [B][URL="http://download.cnet.com/Trend-Micro-HijackThis/3000-8022_4-10781312.html"]HiJackThis[/URL][/B]. Run a full scan with it and save the log. Post back here with that log. What was the reason you gave up Avast for the much lower rated AVG9? Where is the GMER log? We need to see that also. Judy |
| | [QUOTE=pen2satya;871280]I have Desktop(installed XP Professional) with no internet connection.Which anti virus i installed i download it's updated virus database and update it.Peronally i use AVAST 4.8 HOME Edition.Yesterday i installed Avast then Malwarebyte's Anti-Malware and then Spyware Teminator then Threat Fire. When i scanned using Avast it found Malware win32 … |
| | Update and rerun Malwarebytes' Anti-Malware. Do the full scan. Have it remove anything found. REBOOT the computer, VERY IMPORTANT. Also do the following: Please Run the [B][URL="http://www.eset.com/online-scanner"]ESET Online Scanner[/URL][/B] and attach the ScanLog with your post for assistance. [B]You will need to use Internet Explorer to to complete this scan. … |
| | [QUOTE]5. How can I check the registry or clean up them from registry if it is get infected? Hijackthis will show you registry entries.[/QUOTE] MBA-M WILL remove infected registry entries. |
| | Re: possible virus Hi Bob, what you need to do is follow the steps given in our Read Me sticky. Post back with all the requested logs and we will take a look. [url]http://www.daniweb.com/forums/thread134865.html[/url] Judy |
| | Hello AP, sorry for the delay. As you can tell we are short handed here. First thing I see is you are running two anti-virus programs, ClamWin and AVG 9. This is a big no-no. The absolute rule is ONE anti-virus program should be running on a computer. Running more … |
| | This causes me concern: [QUOTE]have deleted ANYTHING I can find that refers to Adobe at all[/QUOTE] You never DELETE, you Uninstall. Did you actually Uninstall or just delete? There is Absolutely NOTHING wrong with Adobe Flash, in fact it is needed on many, many websites. The Adobe Flash Player is … |
| | Please do the following: Download [B][URL="http://www.trendmicro.com/ftp/products/hijackthis/HijackThis.exe"]HiJackThis[/URL][/B]. Run a system scan with it, save the log and post back here with it. |
| | Hi, welcome to daniweb. Please do the following: Please download [B][URL="http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?cdlPid=10997763"]Malwarebytes' Anti-Malware (MBA-M)[/URL][/B] to your Desktop. * DoubleClick [B]mbam-setup.exe[/B] and follow the prompts to install MBA-M. [B]* Be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.[/B] * If an update is … |
| | You did not have MBA-M remove items found. You also need to Uninstall the following programs via Add/Remove: Ask Toolbar Easy Internet Sign-up FixCleaner Freeze.com Toolbar Java 2 Runtime Environment, SE v1.4.1_02 Napster Napster Burn Engine NoAdware v4.0 SpamSubtract After you have done the Uninstalls of all the programs above … |
| | Please download[B][URL="http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?cdlPid=10997763"] Malwarebytes' Anti-Malware (MBA-M)[/URL][/B] to your Desktop. * DoubleClick mbam-setup.exe and follow the prompts to install MBA-M. * Be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. * If an update is found, it will download and install the latest … |
| | We have no idea what the problem is here. You need to explain it more fully. What pops up? Ads? |
| | First of all you copy of HiJackThis is YEARS out of date. Current version is 2.0.4 and it is only available [B][URL="http://free.antivirus.com/hijackthis/"]HERE[/URL][/B] Get rid of that old version and download the new one. Follow the steps given in our [B][URL="http://www.daniweb.com/forums/thread134865.html"]Read Me Sticky[/URL][/B] and post back with all the logs. |
| | That IS a lot of processes running. You need to look at your auto starts and see what is running there. Give us a HiJackThis log. Please be positive you download the newest version which is[B] 2.0.4 [/B]from this link; [url]http://free.antivirus.com/hijackthis/[/url] |
| | Please do the following: Please download [B]ComboFix by sUBs[/B] from [B][URL="http://download.bleepingcomputer.com/sUBs/ComboFix.exe"]HERE [/URL][/B] · [B]You must download it to and run it from your Desktop[/B] · [B]Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.[/B] · Double click [B]combofix.exe[/B] & follow the prompts. … |
| | One problem with running a Repair Install will replace the system files with the files on the XP CD used for the Repair Install. It will leave your applications and settings intact, but all Windows updates will need to be reapplied. Now if your CD was XP SP2 then that … |
| | Yes it most certainly can be happening because of spyware. Try following the steps given in our Read Me sticky and post the logs here. If you cannot access them in normal mode then try Safe Mode with Networking. [url]http://www.daniweb.com/forums/thread134865.html[/url] |
| | Have you tried Safe Mode with networking? This should get you online without the trojan interfering. If you can do that stay in safe mode and run the tools, mainly MBA-M. Forget about GMER for now. Do the MBA-M in safe mode, reboot, update it again and run a full … |
| | Have you done a general clean up of the computer, removing all temp files, and the like? Have you done a defrag lately? Your Java is way out of date. Go here, [url]http://www.java.com/en/download/manual.jsp[/url] Download the Offline install and save it to the desktop. Then close all browsers. Go to Add/Remove … |
| | [QUOTE=Carlmundo;913766]Strange question I know. But I'm working on a removal tool for this one piece of malware alone. Reason being this is becoming a problem with some computers my company supplies as I work in IT Support. A lot of people may argue it's better just to use a malware … |
| | Is Magentic wallpaper or screensaver or Incredimail installed? If so uninstall it and that should take care of it. |
| | [I]"so I copied the installer over on a thumb drive, but when I try to install it on my computer, it says the Administrator has made it so I can't install it. How do I fix this." [/I] The installer for what? What you would need to use is [B]Malwarebytes' … |
| | What you need to do is follow all the steps given in our Read Me Sticky. Post back here with all the logs and we can better offer assistance. [url]http://www.daniweb.com/forums/thread134865.html[/url] |
| | Re: Help! Your printer loads the software? A printer is just that, a printer it shouldn't be loading anything. I don't believe it has the capability to load software. Are you certain this is what is actually loading the software? IF the software IS loading again this means it is still on … |
The End.