InterviewSolution
Saved Bookmarks
InterviewSolution
This section includes InterviewSolutions, each offering curated multiple-choice questions to sharpen your knowledge and support exam preparation. Choose a topic below to get started.
| 851. |
Solve : logonui.exe in sd memory card.? |
|
Answer» hello is there anyone here tell me what is logonui.exe? Is it a virus? bcoz when i when i tried to open my sd card the only FILE i see is autorun.inf. but when i right click the sd card it has a used size of 93 mb.. so i go to command prompt to check if the file is only hidden but it show only two file the autorun and logonui.exe.. is anyone there HELP me how to fix this problem.. Thanks in advance..What brand is the SD card? Some SD cards come with a program that is SUPPOSED to be ran when you insert the SD card. If you dont need logonui.exe, deleting it shouldn't hurt anything. Also, a LITTLE bit of space is always used up, even when there are no files on the device.its kingstone 2gb.. is there any hope that i can view the pictures.. and what should i do.So you when you try to put pictures on the card, then you look on the card, the photos dont show up? |
|
| 852. |
Solve : Please check out my logs.? |
|
Answer» Logfile of Trend Micro HijackThis v2.0.2 Btw,When I rebooted this lat time,my comp changed to Military time. Its the right time just Military time. My comp has never done this before. I find it odd. Tina, I am not getting you.Can you be be more clear regarding the above issue.Also not to forget that you have to include the following logs in next reply. *DDS.TXT *ATTACH.TXT *ROOTREPEAL.TXT I do not know how to be more clear. I rebooted and my clock on the comp was in Military time ya know 13:01 14:01 15:01 instead of 1;01 2:01 ect ect. I will get to the scans in a bit and ty for you for everyones help. Sorry not meaning to be rude here...but like you only have 6 posts on this forum I do not recognize your name and well it doesn't say you are a malware specialist. Whats up with that?Hello Tina!! I am currently seeking my malware removal training from one of the most reputated universities where we are given special training under the guidance of most talented security professionals.My friend evilfantasy acquainted me with this forum few days ago. If you are doubting my instructions, you can ask any of the senior security analyst to double check my post. Regards Ankur |
|
| 853. |
Solve : HiJackThis log, something could be wrong here...? |
|
Answer» No it doesn't.. Platform: Windows Vista SP2 (WinNT 6.00.1906) and even on the the first HJT log I POSTED, it says Quote Platform: Unknown Windows (WinNT 6.00.1906 SP2) but WinNT 6.00 is Windows Vista. I DID have Windows 7 RC INSTALLED inside a VirtualBox, but I uninstalled it a couple of months ago. See my computer's Basic Information (See attachment): [attachment DELETED by admin] |
|
| 854. |
Solve : Please help where can i download these softwares?? |
|
Answer» Quote from: hannibal_lecter on August 26, 2009, 06:15:23 AM i see. Thank you. about "file sharing" sites; I'll flesh it out some more a File sharing site would be something like fileplanet, rapidshare, etc, where any user can upload (share) files with others. Filehippo, and many other sites (snapfiles, cnet download, etc) are managed by the editors (that is, moderated) In many cases they wouldn't need to run a malware scan- they have a LOT of prerequisites- a company site, for example. And of course they look at said site and can recognize software that might be malicious/questionable (scam software company sites are INSTANTLY recognizable with a little practice) the aforementioned "file sharing" type site (again, fileplanet, rapidshare, etc) may or may not perform scans of uploaded files- but it really doesn't matter- these are anonymous people posting anonymous content, and anonymity is a trait that one should only trust with extreme caution. Quote from: Karnac on August 26, 2009, 07:17:15 AM Hannibal,thank you very much, Karnac, for this really helpful advice! Quote from: Carbon Dudeoxide on August 26, 2009, 07:24:33 AM If you guys want another opinion, I use Filehippo all the TIME. Perfectly safe. Perfectly legit.i see that everyone is safe using filehippo. I'm much COMFORTED knowing that it's perfectly safe. Thank you very much for your opinion. Quote from: BC_Programmer on August 26, 2009, 07:31:16 AM about "file sharing" sites; I'll flesh it out some moreit's totally helpful explanation. Thank you very much. Thank you everyone who has replied my questions. Thank you very much for your time and advices. It's totally helpful. And i appreciate it.This >>FileHippo<< is not and has never been a file sharing site. They host only the best of the best freeware (some subscriptions). I even use them as a mirror for the downloads in my Malware Removal Guide WOT scorecard - http://www.mywot.com/en/scorecard/filehippo.com <- All green. It's been widely speculated but never actually confirmed that Piriform (CCleaner) also owns FileHippo. Or vice versa. Just for fun, see the similarities. Whois, FileHippo http://whois.domaintools.com/filehippo.com Whois, Piriform http://whois.domaintools.com/piriform.com But, the rule of thumb when downloading security software (or any for that matter) is to ALWAYS use the software developers website. That is unless you are unsure of what the website is because there are rouge websites set up to look like the official one and you will get ripped off not being VIGILANT. Never go to a site to download anything from an advertisement. I have a bunch of safe software and download websites listed on my blog if you ever need to find a software download. Trusted security tools & resources When in doubt, these are the cleanest download sites I have found to date. Notice Download.com isn't listed. http://filehippo.com/ http://www.majorgeeks.com/ http://fileforum.betanews.com/ i downloaded this firefox from filehippo and mcafee site advisior says it safe and it havent seen any problems with iti use filehippo.com all the time it is a moderated site and have never had a problem with any of the files i have downloaded from that site Quote from: evilfantasy on August 26, 2009, 07:39:09 PM This >>FileHippo<< is not and has never been a file sharing site. They host only the best of the best freeware (some subscriptions). I even use them as a mirror for the downloads in my Malware Removal Guidethank you so much evilfantasy for taking the time to gave some really helpful advices and the links. It's appreciated. It's comforting that filehippo is safe. You have a great blog. I'd like to download some softwares there for sure. Thanks! Quote from: evilfantasy on August 26, 2009, 07:39:09 PM This >>FileHippo<< is not and has never been a file sharing site. They host only the best of the best freeware (some subscriptions). I even use them as a mirror for the downloads in my Malware Removal Guidethank you so much evilfantasy for taking the time to gave some really helpful advices and the links. It's appreciated. It's comforting that filehippo is safe. You have a great blog. I'd like to download some softwares there for sure. Thanks! Quote from: smeezekitty on August 27, 2009, 07:03:46 PM i downloaded this firefox from filehippo and mcafee site advisior says it safethank you so much for taking the time to share smeezekitty. Quote from: talontromper on August 27, 2009, 07:55:26 PM i use filehippo.com all the time it is a moderated site and have never had a problem with any of the files i have downloaded from that sitethank you so much for taking the time to share talontromper. Quote from: talontromper on August 27, 2009, 07:55:26 PM i use filehippo.com all the time it is a moderated site and have never had a problem with any of the files i have downloaded from that siteI use cnet more most of my downloads besides the more popular programs like itunes firefox vlc java nortan avg i download all these programs at there sight Quote from: 876543219 on September 02, 2009, 10:16:29 PM I use cnet more most of my downloads besides the more popular programs like itunes firefox vlc java nortan avg i download all these programs at there sightthanks |
|
| 855. |
Solve : my three logs? |
|
Answer» here are the three logs. however the hijack log may be incomplete due to "modmain_startscan error #6 |
|
| 856. |
Solve : My Desktop is blank (no icons no startbar) Please Help!!!!!? |
|
Answer» i am in safe mode nowif you are using vista this wont work: |
|
| 857. |
Solve : Here is my malwarebyts ant-malware and hijackthis log files? |
|
Answer» I would suggest using Malwarebytes' Anti-Malware and SUPERAntiSpyware in addition to McAfee because they have some of the best detection rates. The only way I can know if you are still infected is if you post some logs here (McAfee and HijackThis). It's possible that the files being picked up by McAfee are just cookies or something else equally harmless. If they are still being detected, then feel free to post your logs on here and I will be glad to take a look for you. It's possible that you are still infected, but hopefully these are just harmless files.I was not sure that all the infections on my computer were gone so I did a scan with bitdefender online scanner and the results were horrible. The scanner seemed to pick out normal files that were infected by the virus or trojan. I have no clue what to do next. Here is the results of the scanner. Here is my hijack log. You've been dealing with quite a bad infection and there's no guarantee that this will be 100% cleared up. I personally think a complete reformat (which will erase everything and set the computer back to factory settings) would be the best solution, but if you want to avoid that, I will stick with you. I just thought it was something I should mention. Cbmatt there is no doubt that I want to FORMAT my computer both the c and d drives but I do not have a windows xp os cd. I really want to buy the xp os but there is no one selling it in stores.You don't have the CD's the came with your computer? A computer will usually come with System Recovery CD's that you can use to reformat and reinstall Windows without having to buy it in stores. If you don't have this, you can usually get a replacement from the manufacturer of your computer. If you contact the company or fill out a form on their site, you can usually get these CD's as long as you pay for shipping (about US$6). What brand is your computer? And of course, if you would rather continue trying to fight the infection, you can follow the steps in my previous post. Quote from: CBMatt on September 29, 2009, 04:22:33 PM You don't have the CD's the came with your computer? A computer will usually come with System Recovery CD's that you can use to reformat and reinstall Windows without having to buy it in stores. If you don't have this, you can usually get a replacement from the manufacturer of your computer. If you contact the company or fill out a form on their site, you can usually get these CD's as long as you pay for shipping (about US$6). What brand is your computer? I have those cd's but I had to call hp up so they would ship them to me. I need to format both the c and d drives because I want to make sure that the computer is not still infected. What good is it to format the c drive and do a system recovery and find out that the d drive which has the operating system is still infected. Youare telling me that the recovery cds ALSO have the operating system on them is that correct. Then I can format the c and d drive and use the system recovery cd's rather than buying windows xp home from online and then use the product key on the side of the computer to register the copy of windows. I am using an hp a810n model computer. Here are my SAS and Malwarevyte log files. [attachment deleted by admin]Some recovery discs will let you reformat more than one drive at a time. However, I can't say if your particular discs allow that or not. If not, then you will have to reformat them separately. To do that, you would want to remove Drive D, reformat Drive C, remove Drive C, hook up Drive D, and then reformat it. Basically, you have to go through the reformatting process twice. A simpler way would be to simply reformat your main hard drive and then hook up the secondary hard drive. Then when you boot up the computer, go to Administrative Tools in the Control Panel. Once there, open Computer Management. On the left side of the new window, near the bottom, click on Disk Management. From here, you can right-click on your secondary hard drive and select Format. That will wipe everything off of it. Once the format is complete, the status should say Healthy. As for your other question...as long as HP sent you the proper disc that goes along with your model of computer, then it should install Windows XP for you. According to this page, HP should've sent you the XP Home SP2 51NAheBLU1/3_51 NAheBLA2 Recovery Kit, which will install Windows XP Home Edition for you (it is only SP2, so you will have to download SP3 from Microsoft's site for free). HP's instructions for system recovery are here: http://h10025.www1.hp.com/ewfrf/wc/document?lc=en&dlc=en&cc=us&product=443069&os=228&lang=en&docname=bph07145#bph07145_disc On Step 7, I suggest pressing F to perform the destructive recovery. I know you said you had tried the destructive recovery and you were still infected, but it either wasn't done correctly or the virus re-entered your computer immediately. If it's the latter, then it may have come from one of the programs you installed. Are these all legitimate legal programs? Or are any of them cracked? If you have obtained software illegally through P2P clients (Limewire, uTorrent, etc.), then there is a good chance that it is infecting your system as soon as you install it. If that is not the case, then it may be hopping onto your computer from the secondary hard drive. If so, then my suggestion of swapping the drives and using the recovery disc on each one would be a good idea. I hate the thought of you having to go to such measures, but it may be your best solution. Of course, you are always welcome to try ComboFix again. If it will successfully run on your computer without any problems like before, then I'm certain it will be able to make a significant dent in the infection. It's your call... Quote from: CBMatt on September 22, 2009, 06:30:05 PM Download ComboFix by sUBs from one of the below links. Be sure to save it to the Desktop. |
|
| 858. |
Solve : Computer Conundrum, Please help? |
|
Answer» So, presently there are two problems on my XP laptop that reinforce eachother so neither can be fixed. I'll present them as they've shown up. |
|
| 859. |
Solve : Hidden in BookMarks? |
|
Answer» Win XP HE SP.3+ Windows Registry Editor Version 5.00 There was no opportunity to enter this to the "next reply" as Regsearch went into Not Responding on two runs and had to be aborted on both occasions. The Reg entries obviously exist, should I delete them using Regedit? I exported FFox bookmarks and used the Search feature in Edit.com to locate all 7 occurrences of Spywareinfo and manually deleted the entries from bookmarks. A rerun of Spybot shows all clear. Yes but just delete the spywareinfo entries on the right side of the window in regedit. Now empty the recycle BIN, restart the computer and see if Spybot is still finding anything. Done. Also ran Reg Search again with the result: Quote Windows Registry Editor Version 5.00 SpyBot found no threats. Earlier I posted Quote AFAIK I have never bookmarked Spywareinfo.combut I must have done at some time. Sorry about the confusion. Thank you for your guidance EvilF. T.C. Glad you got them removed. |
|
| 860. |
Solve : No virus scans will open and my desktop just shows up as the background picture? |
|
Answer» I have a big problem, can't run any kind of scans. Even HijackThis, nor can I do it safe mode either. My desk TOP just has the background PICTURE. When I open anything that deals with a virus scanner or such, I get I am not allowed to open this. AVG does open, but won't start a virus scan. The only way I can even run something is going through the task manger. HELP!! |
|
| 861. |
Solve : how to remove recycler?? |
|
Answer» someone tell me how to remove recycler in pen drives and drives?1. Scan it with your antivirus. |
|
| 863. |
Solve : Windows Antivirus Pro manual removal in safe mode? |
|
Answer» If you don't plan on buying the full version I would suggest going ahead and uninstalling it then download/install the free version and also a free firewall. No need paying for something that you can get for free...
Regards, garddfonAre you on dial-up?Hi evilfantasy, OK I've successfully installed Avira and Online Armor and have now run the KASPERSKY Scan. Results pasted below. No I'm not dial-up, but didn't want to connect until sure that Firewall and Antivirus functioning properly. Thanks, Garddfon -------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER 7.0: scan report Wednesday, September 23, 2009 Operating system: Microsoft Windows XP Professional Service Pack 2 (build 2600) Kaspersky Online Scanner version: 7.0.26.13 Last database update: Wednesday, September 23, 2009 13:25:40 Records in database: 2871703 -------------------------------------------------------------------------------- Scan settings: scan using the following database: extended Scan archives: yes Scan e-mail databases: yes Scan area - My Computer: C:\ D:\ E:\ Scan statistics: Objects scanned: 92651 Threats found: 1 Infected objects found: 1 Suspicious objects found: 0 Scan duration: 02:12:07 File name / Threat / Threats count C:\Documents and Settings\simonp\Local Settings\Application Data\Identities\{31391EF3-B3AC-4F12-94D8-DC2DA45E9526}\Microsoft\Outlook Express\Inbox.dbx Infected: Trojan.Win32.Agent2.bl 1 Selected area has been scanned. How is the computer running now? Hi again, No obvious signs of anything DODGY thankfully. Any thoughts on the 1 infected item from the Kaspersky scan? Regards, GarddfonI'm thinking it's a false positive but I'm not sure. It's an email in your Outlook Inbox. Check it to see if there is any spam there and delete it. Final suggestions. Use the Secunia Software Inspector to check for out of date software.
---------- Go to Microsoft Windows Update and get all critical updates. ---------- I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you SAFE from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free. SpywareBlaster - Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop CERTAIN cookies from being added to your computer when running Mozilla based browsers like Firefox. * Using SpywareBlaster to protect your computer from Spyware and Malware * If you don't know what ActiveX controls are, see here Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future. Also see Slow Computer? It May Not Be Malware for free cleaning/maintenance tools to help keep your computer running smooth. |
|
| 864. |
Solve : Virus is too big to be removed! HELP? |
|
Answer» I got the virus - "System Security". I ran my AVG Internet Security and it shows 2 files infected. however, when I TELL it to remove them it says, "Moved object is bigger than the archive size limit." So now what do I do? Hmmm. A nasty trick. Increase the size of your archive, MOVE it there, then remove them. In the Virus Vault SECTION of Advanced AVG Settings, EITHER change the percentage of disk space used for the virus vault, or uncheck "limit virus vault size". |
|
| 865. |
Solve : my logs, please take a peek? |
|
Answer» ok, so i followed the guidelines and ran all the programs needed........here are my logs...... Realtek AC97 Audio - Event Monitor. "Sypware" file used surreptitiously monitor one's actions. It is not a SINISTER one, like remote control programs, but it is being used by Realtek to gather data about customers Open HijackThis and select Do a system scan only Place a check mark next to the FOLLOWING entries: (if there) - O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE Important: Close all open windows except for HijackThis and then click Fix checked. Once completed, exit HijackThis. ---------- For the slow browser speed you might want to do some maintenance. You can use the built in Windows Defrag by clicking Start > Run and then type in dfrg.msc then click OK. Or use a faster FREE program. Defraggler is very effective and easy to use. Note: Be sure to clean out temp files and restart the computer just before beginning a defrag.great....im doing that now but have a question......what is the best way to clean out temp files? i always go to c: then docs and settings then temp and try to delete all, but only some delete and i get a message saying some files cannot be deleted they are being used by another person or program......so some files i never can delete.....is there anything else i can do?Use a more powerful cleaner. Clean out your temporary internet files and temp files. Download TFC by OldTimer to your desktop. Double-click TFC.exe to run it. Note: If you are running on Vista, right-click on the file and CHOOSE Run As Administrator TFC will close all programs when run, so MAKE sure you have saved all your work before you begin. * Click the Start button to begin the cleaning process. * Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two. * Please let TFC run uninterrupted until it is finished. Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning. |
|
| 866. |
Solve : A few suspicious items? |
|
Answer» ESET Online Scan Scan your computer with the ESET FREE Online Virus Scan * Click the ESET Online Scanner button. * For alternate browsers only: (Microsoft Internet Explorer users can skip these steps) * Click on the esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop * Double click on the esetsmartinstaller_enu.exe icon on your desktop. * Place a check mark next to YES, I accept the Terms of Use. * Click the Start button. * Accept any security warnings from your browser. * Leave the check mark next to Remove found threats and place a check next to Scan archives. * Click the Start button. * ESET will then download updates, install, and begin scanning your computer. Please be patient as this can take some time. * When the scan completes, click List of found threats. * Next click Export to text file and save the file to your desktop using a name such as ESETScan. INCLUDE the contents of this report in your next reply. * Click the <<Back button then click Finish. In your next reply please include the ESET Online Scan Loghi. That didn't work, because when I was installing i got the error "Can not update. Is proxy configured?". Been trying to search this board for the other online scanner (by kaspersky i believe), but was fruitless, so i'll have to bother you with giving me the link and all. Thanks SD Please go to Kaspersky website and perform an online antivirus scan. 1. Read through the requirements and privacy statement and click on Accept button. 2. It will start downloading and installing the scanner and virus definitions. You will be prompted to install an application from Kaspersky. Click Run. 3. When the downloads have finished, click on Settings. 4. Make sure these boxes are checked (ticked). If they are not, please tick them and click on the Save button: Spyware, Adware, Dialers, and other potentially dangerous programs Archives 5. Click on My Computer under Scan. 6. Once the scan is complete, it will DISPLAY the results. Click on VIEW Scan Report. 7. You will see a list of infected items there. Click on Save Report As.... 8. Save this report to a convenient place. Change the Files of type to Text file (.txt) before clicking on the Save button. 9. Please post this log in your next reply along with a fresh HijackThis log. hi the kaspersky scan is stopping at random moments so I decided to post the HJT log. I saw the VVSN entry again Quote Logfile of Trend Micro HijackThis v2.0.2Hello two-eyes. I'm at a loss as to where this VVSN program is coming from. I will have to check it with my mentor but he's away for the holidays. Is your computer running well enough to wait a bit?SD, VVSN is SaveNow adware.Thanks Karnac Two-eyes, let's try this to see if we can find that program. •Start HijackThis •Click on the Misc Tools button •Click on the Open Uninstall Manager button. •Click on the Save list... button and specify where you would like to save this file. When you press Save button a Notepad will open with the contents of that file. Save the file to your desktop. Copy and paste this file in your next reply. Quote Is your computer running well enough to wait a bit?It is, don't worry. It's just the fact that there is something on my computer that shouldn't be there. Don't worry too much about it. Here is the uninstall list: Quote 32 Bit HP CIO Components Installer |
|
| 867. |
Solve : slow net browsing with eset v4?? |
|
Answer» i was using avira premium suite at that time my browsing was very fast,but now i m using eset nod32 v4 now pages r OPENING in long time,no firewall in eset v4 which i m using, |
|
| 868. |
Solve : Installed Norton and now can't access internet? |
|
Answer» Hi, maybe someone can help. |
|
| 869. |
Solve : Sysguard? |
|
Answer» I had apparently contracted Sysguard on my computer... I'm not sure if I got rid of it, but I had gone into Safe Mode, and used System Restore to go back by eight days. Do you know if it is gone for sure? I need to be sure so that it doesn't return. |
|
| 870. |
Solve : Cant install Superantispyware? |
|
Answer» i TRIED installing it and a noitce comes up that says superantispyware has encountered a problem and needs to close... then theres the send error REPORT and DONT send buttons.... i need to INSTALL this to FOLLOW the getting rid of malware steps. help please?Stop starting new threads and using Private Messages. Just wait for someone to help you in your original Malware post. |
|
| 871. |
Solve : some help please?? |
|
Answer» Ok, I think I just got a virus out of my system...however, when I GO to control panel > admin tools, and try to click on one of the options there, it always pops up with an error message. For example, when I double click on "Services", it pops up as C:\Windows\system32\services.msc - access is denied. Is there any reason why I wouldn't be able to open this? Is it CONNECTED to a virus or something malicious? |
|
| 872. |
Solve : trojan horse generic 15. CKLU? |
|
Answer» The computer I have -I can't log on to. I have the trojan horse generic 15. Cklu. I tried safe modew/networking to no avail. I just installed the harddrive as a secondary drive in another computer. I was going to download an trojan REMOVAL program. I don't know what to do to download a program onto this harddrive. When I boot up this computer,I'm USING the harddrive that is in it ,not the one I ADDED. They're both Sata drives. How do I PROCEED? I would appreciate anyones help. ThanksPut the HDD back into your computer and go to this link to create a Rescue CD or to this site to create a Rescue USB. CAREFULLY follow all the instructions for whichever method you choose. This should be able to get your computer booted. |
|
| 873. |
Solve : Pop Up problem (help!)? |
|
Answer» I download internet download manager.It doesn't work properly so I uninstall it.Even though I unistall it this screen pop up everytime when I'm OPEN something.It said (Internet download manager detected that its registry KEYS had been damaged since the last run.It's possible that you run a flasky spyware program which corrupted system registry.Internet download manager will try to restore all damaged data, but some data may remain corrupted.)How can I stop from that screen popping everytime.If you have any solution to solve that problem Plzzz help me.Thanks! |
|
| 874. |
Solve : Need Help - Cant log into AOL - Get Virus Warning!? |
|
Answer» Hi, |
|
| 875. |
Solve : Virus Help???? |
|
Answer» O.k. Somehow I Had A Program Called ANTIVIR running on my computer... I thought it waz AVG 8.5 because they have the same Look.
|
|
| 876. |
Solve : Cachedump.....HOW DO I ?? |
|
Answer» How do I dump my cache in a SAFE way? |
|
| 877. |
Solve : clicking on search results? |
|
Answer» Whenever I do a GOOGLE SEARCH and click on a result I get a white screen with this address in the upper left hand corner: http://206.161.121.115/go.php |
|
| 878. |
Solve : some kind of trojan?? |
|
Answer» I'm pretty sure I have a trojan of sorts. A whole bunch of my exes randomly corrupted themselves, telnet and notepad keep running everytime I close or run a program (I'm using PROCESS explorer, and it shows them as being run by mbamgui which is my anti-malware program). I don't know what it is, but its rather destructive and it's probably SENDING data back somewhere if it keeps running telnet. Any insights as to what this could be?Sorry to double-post, but I just found 2 other programs that were running themselves called winjpjr.exe and windghno.exe. They were residing in my temp folder, and I just deleted them. Chances are that won't really help, but with any luck that will at LEAST help IDENTIFY what they are. |
|
| 879. |
Solve : "This volumn is dirty"...What is this?? |
|
Answer» Happy New year all... |
|
| 880. |
Solve : "Help"please? |
|
Answer» I have a two part question, both PC and laptop OS is Windows XP Pro. First for my desktop, when I browse the net ( I use Mozilla Firefox) I get a window that states Secure Connection Failed in the box it says INVALID security certificate or expired.if you need more info on everything it says let me know and I'll type it all in it just differs from what I try to open.My desktop also seems to stop and pop up a blue screen saying something about shutting down to prevent harm to computer.It doesn't do it everytime but alot when I seem to backup my movies. |
|
| 881. |
Solve : virus help?? |
|
Answer» I am getting this pop-up message when I start the computer, the window is titled "SECURITY Center Alert" - it says WINDOWS firewall has blocked a software called "Trojan.Win32.Agent.dcc....it has the options "Keep Blocking", "Unblock", and "Enable Protection", with the first two options grayed out. It also opens up a window asking me to download some anti-virus software from somewhere. |
|
| 882. |
Solve : Cache problems.....or not.? |
|
Answer» I would like to KNOW what:"_CACHE_001_"means.My virusscanner warns me for this and I don`t know what it is,what it does and what it is for. Thank you very much.I wish you a fine and virus-free 2010.... Thank you! Quote I do not know if i am supposed to send a thank you on the forum. Not compulsory, but always appreciated. Quote If it is wrong sorry. Never wrong! Quote Again:Forgive my English. Your English is very good |
|
| 883. |
Solve : Befuddled... Mozilla hijacks and something else? |
|
Answer» Delete ComboFix and download a new copy.
---------- Go to Microsoft Windows Update and get all critical updates. ---------- I recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no realtime protection so will not interfere with each other. They do not use any significant amount of resources (except a little disk space) until you run a scan. I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your BROWSER. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free. SpywareBlaster - Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox. * Using SpywareBlaster to protect your computer from Spyware and Malware * If you don't know what ActiveX controls are, see here Protect yourself against spyware using the Immunize feature in SPYBOT - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ Check out Keeping Yourself Safe On The Web for TIPS and free tools to help keep you safe in the future. Also see Slow Computer? It May Not Be Malware for free cleaning/maintenance tools to help keep your computer running smooth.Great! Thank you so much... I'll going through the through the clean process in a couple hours after I have dinner... Thanks again, I'll do have super anti-spyware as my real-time protection but I do believe I will also try some of the other programs you've recommended. Thanks Again for the help... Your welcome. Safe surfing. |
|
| 884. |
Solve : Friend Cant Login After rogue removal? |
|
Answer» Ok so my friend was talking to me about how he got some rogue, "System antivirus 2010" i believe, anyway he said he ran MBAM and it didn't REMOVE it and he couldn't download SAS. He then ran a McAffe scan (Yes he knows McAffe sucks, and of coarse it did not see anything wrong with the computer), but McAffe shows like changes in the registry or something..so he went and rather wrecklessly deleted a few keys. Now when he tries to Login, he GETS to the welcome screen and then it LOGS him back out. I went over and checked it out, couldnt fix it. |
|
| 885. |
Solve : lose of internet connection? |
|
Answer» Hi There |
|
| 886. |
Solve : have a virus, need to format, but unable to backup pictures!? |
|
Answer» I have some sort of virus thats killing my computer. Im going to reformat my hard drive, but before I do so I need to back up all my pictures. But here lies the PROBLEM. I tried to put my pictures on a usb flash drive, but im unable to copy and PASTE them, or drag them anywhere! I then thought MAYBE I could burn them using nero, but I'm unable to even open nero I keep getting "an ERROR using COM/OLE.exe occurs. Please check installation of COM on your computer." I cant even get nero to run properly. |
|
| 887. |
Solve : putting an infected widows xp hard drive into a new widnows 7 laptop? |
|
Answer» hi i was WONDERING if you can help me,, my OLD toshiba windows xp LAPTOP is infected with somekind of virus, it wont even let me enter the safe set up mode when you switch it on,, the laptop is old but i have got a LOT of music and photos on it id like to save. hey allan thanks for gettin back to me,, ive switched on my old lappy and now im not even getting a load up screen,, its just black.... i can hear the system working but nothing on the screen at all,,,,, if i put my old hardrive in my new system and do a norton 360 scan on it will it clear the problems on it?? No way to know. Go ahead and try. Again, I'd run a boot time scan with the drive right where it is.id have done as you says but i cant get into my old lappy... ok ill have a go and see what id does and says, ill let you know later on. thanks,You are booting to a cd, not the HD. As long as the cd drive is at the top of the boot order in bios there should be no problem booting to the cd and running the scan. |
|
| 888. |
Solve : Being attacked by viruses :(? |
|
Answer» Any help at all would be amazingly appreciated. I'm experiencing alot of popups, my antivirus (WEBROOT AntiVirus with Spyware) keeps telling me things with weird names (like Mal/Generic-A) are trying to access files on my computer, I always choose "block action". And each new antivirus sweep brings a plethora of fun new "Risk warning: 5/5" viruses and trojan horses, even when they're within 5 minutes of eachother. I have no idea where these would have come from. |
|
| 889. |
Solve : Need help to see if a problem is a virus/spyware???? |
|
Answer» This is a home computer with Vista. Certain apps and parts of websites are not working properly. Some examples are the Trend Micro Antivirus screen only loads the top bar and can't be run unless in safe mode. Big fish games client does not load properly, Real Arcade does not load properly (cannot click on anything). The score across the top of espn.go.com and the advertisement toward the top of the screen do not load but links on the page work. hotmail.com will not load to access personal email account. cannot login to goal line blitz website... When I try to check my work email on Microsoft Office Outlook Web Access I can log in and see who has sent me an email, but I cannot see what the actual email says or compose a new message. Finally, the inbox page on my facebook account will not show anything. |
|
| 890. |
Solve : the application can't be executed? |
|
Answer» HELP! I am also getting the message, "the application cannot be executed. The ...... file is infected. Do you want to activate your antivirus?" My antivirus recently expired and I want to download another recommended one - AVAST. However, I can't get online to download it no matter how I try. The message tells me it is unsafe to do so and won't let me do anything. I read the two other entries on this same subject and the posts from Super Dave. Wasn't sure I might be able to solve my problem in a similar way and need more advice. Would appreciate any help! THANKS! Doesn't matter. Download Avast to your Mac, transfer it via usb drive or cd to the Dell, and run a SCAN thanks allan , thats why i asked the question for that to be done Allan and Harry, When I download the Avast, i get this message. MZêhttp://www.free-av.com/ try this insteadI tried downloading the new one and got the msg. "This program must be run under Win32." When I downloaded Avast onto my mac the message I got was "can't be run in dos". I think I will go to my son in laws and try downloading avast from his pc onto my usb and then try it on my Dell. Thanks for your help-I'll be in touch!There is often confusion over exactly what "download" means. MANY people seem to believe that "downloading" something to their PC is installing it. However, it is merely copying it. In this case, you download the AV to your Mac; and then COPY that file to a USB drive for installation on your PC. The errors you are receiving are because you are trying to Run it; Macs cannot run WINDOWS software. |
|
| 891. |
Solve : antivirus pc 2010? |
|
Answer» malwarebytes has removed 5 trojans and or worms but my search engines are being hijacked and can not boot safe mode. JustJoe was on my computer and ran some tech stuff from microsoft and could not find the problem so any info to HELP rid my computer of this virus please before I have to GIVE it back to my boss and IT guy please. I am not against you guys logging on and looking at it.--Thanks-John.pls post a hijackthis log and logs from the programs u ran |
|
| 892. |
Solve : Virus on HP Mini? |
|
Answer» My girlfriend has a nasty virus on her new HP Mini from ATT. This laptop doesn't have a CD/DVD drive nor does it have any anti-virus software loaded on it. |
|
| 893. |
Solve : "The file wuauclt.exe infected"? |
|
Answer» Hi there |
|
| 894. |
Solve : HELP ME.. PLZ.? |
| Answer» HI..I have got my system caught by virus.it is repeatedly showing message "do U want to delete this file"? can any body HELP me?First off, if you can, follow these instructions carefully and post the THREE logs required. Then an expert (not me) will be able to help you. | |
| 895. |
Solve : spyware dll errors? |
|
Answer» [email protected] as CAB hook log: OnlineScanner.ocx - registred OK # version=7 # iexplore.exe=7.00.6000.21148 (vista_ldr.091027-0032) # OnlineScanner.ocx=1.0.0.6211 # api_version=3.0.2 # EOSSerial=ec0ef99030fbdf42b2956b6a58aba2c5 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2009-12-25 07:42:06 # local_time=2009-12-25 01:42:06 (-0600, CENTRAL STANDARD Time) # country="United States" # lang=1033 # osver=5.1.2600 NT Service Pack 2 # compatibility_mode=512 16777215 100 0 81144 81144 0 0 # compatibility_mode=7425 16777173 50 77 85692 52394476 0 0 # compatibility_mode=8192 67108863 100 0 0 0 0 0 # scanned=61932 # found=2 # cleaned=2 # scan_time=6927 C:\Documents and Settings\Owner\DoctorWeb\Quarantine\424e2ccf-18631347 probably a variant of Win32/Agent trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\System Volume Information\_restore{243C606D-D9F2-4350-B49B-9B1C3B729F3C}\RP1\A0000231.sys a variant of Win32/Rootkit.Kryptik.AF trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C Nothing there to worry about. Time to finish up. Use the Secunia Software Inspector to check for out of date software.
---------- Go to Microsoft Windows Update and get all critical updates. ---------- I recommend you keep SUPERANTISPYWARE and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no realtime protection so will not interfere with each other. They do not use any SIGNIFICANT amount of resources (except a little disk space) until you run a scan. I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free. SpywareBlaster - Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox. * Using SpywareBlaster to protect your computer from Spyware and Malware * If you don't know what ActiveX controls are, see here Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future. Also see Slow Computer? It May Not Be Malware for free cleaning/maintenance tools to help keep your computer running smooth.thank you |
|
| 896. |
Solve : malicious websites? |
|
Answer» If you go to a website and you get one of those pop-ups (that looks like it's from your Operating System) SAYING that you need to install some anti-virus software (which I know is a virus) does that mean the website itself is malicious? Try the link now,... There was a typo in it...I don't see anything. Must be your PC...... Quote from: EEVIAC on January 03, 2010, 05:01:34 PM Try the link now,... There was a typo in it... I noticed that already |
|
| 897. |
Solve : Best antivirus for new laptop?? |
|
Answer» Hello. I've been dealing with viruses on my PC for the last few months. I recently purchased an HP dv7t laptop. I want to give it the best protection against what is out there. Right now, I've got Zone Alarm on it (we already had ZA on the PC). Is there something I can add (like SASW, MBAM, SpyWare Blaster) to make it more secure? Does anyone know a little about Security Task Manager ?You want a GOOD anti virus utility. I use Kaspersky, but there a bunch of good ones (Avira, Avast, Nod, NORTON, etc). Pick one, install it, keep it updated, and make sure it is resident AT ALL TIMES. Don't let anyone tell you the one he or she uses is "best" (we always want to think what we do is right). Just go with a name brand. You do understand that ZoneAlarm is not an anti-virus? Depends on what version. ZoneAlarm Internet Security is a full security suite. Antivirus, firewall, antispyware plus all of the extras. http://www.zonealarm.com/security/en-us/zonealarm-computer-security-suite.htm Quote from: evilfantasy on December 23, 2009, 05:11:28 PM Depends on what version. ZoneAlarm Internet Security is a full security suite. Antivirus, firewall, antispyware plus all of the extras. http://www.zonealarm.com/security/en-us/zonealarm-computer-security-suite.htmIf that's what the OP had, they wouldn't be asking for an anti-virus, would they?Also, many old AV programs ... will work on new laptops! http://free.avg.com/us-en/homepage Quote from: SuperDave on December 23, 2009, 05:07:39 PM Also MicroSoft Security Essentials. Free to registered users. I agree with SuperDave. Quote from: Computer_Commando on December 23, 2009, 05:35:12 PM If that's what the OP had, they wouldn't be asking for an anti-virus, would they? Just keeping things factual. They seem confused because they are asking about AV's but mentioning antimalware software. Quote from: TriciaM on December 23, 2009, 04:14:18 PM Is there something I can add (like SASW, MBAM, SpyWare Blaster) to make it more secure? Also Security Task Manager is a good program. Though I prefer Autoruns and Process Explorer.Sorry for the confusion. I have ZA Extreme right now on my laptop. I'll try to be clear........The reason I'm concerned about JUST having Zone Alarm Extreme is that I had Zone Alarm (the regular version) on my desktop, and it didn't seem to STOP much from coming in. Had a lot of virus problems. Now that I have a new laptop I wanted to make sure that it is properly protected. I do realize now that the previous Zone Alarm that we had was probably not the true antivirus program (I may be using the wrong terms here.) that we have now. I wanted to also ask about using malware/spyware detecting programs in addition to the Zone Alarm Extreme. i would sugges microsoft security essentials. it is free, small file and very effective. the best part of it is it will never slow down ur systemZone Alarm Extreme has everything plus some extra protection not offered by most paid security software. ZA has been around for a long time now and has passed the TEST of time. Nothing is bulletproof. In addition to that. Sensible surfing and downloading is all that's required. I run very little as far as antivirus/antimalware is concerned and I visit a bunch of websites looking for information on malware. Haven't gotten infected, accidentally ANYWAY, in years.Thanks for the info. My children will not have access to my laptop, so I have the feeling that most of those problems will stop. avira premium suite(paid one) take less resourses,never slow down pc,detection rate number one in this whole world,firewall,webguard,mail guard are awesome, or u can go with eset nod32 |
|
| 898. |
Solve : Hijack Log Help? |
|
Answer» Hello all...I think I followed all the steps of Malware, Spyware, CCleaner, Java updates.....etc and this is what I have. Please let me know if I am okay at this point, and thanks so much for the WORK you all do ! |
|
| 899. |
Solve : Help with viruses, malware, trojans, ect please? |
|
Answer» Got it fixed myself, thanks anyways Hello everyone, I need some help please. When I try to access the internet, I recieve 302 error messages in my browser or I am sent to some random webpage. When I click CNTRL ALT DLT I get an error message that the task manager has been disabled by the adminstator. I ran some programs and have the log files below. Thanks in advance for any help. Quote SUPERAntiSpyware Scan Log Quote Malwarebytes' Anti-Malware 1.42 Quote Logfile of Trend Micro HijackThis v2.0.2 |
|
| 900. |
Solve : Google sites (and sometimes Yahoo) not working with any browsers? |
| Answer» OK, done.You should be GOOD to GO with the REST now. | |