Question by kim g: hijackthis help with finding virus?
when i click on any hard drive, even external, i get an error “resycled/boot.com is not a valid win32 application.

I googled it and it’s a virus.

I ran hijackthis and here’s what I got…

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:59:34 PM, on 11/16/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\alg.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\WINDOWS\System32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 – HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gateway.net
R0 – HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gateway.net
R1 – HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com
R1 – HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R3 – URLSearchHook: Yahoo! Toolbar – {EF99BD32-C1FB-11D2-892F-0090271D4F88} – C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 – BHO: &Yahoo! Toolbar Helper – {02478D38-C3F9-4efb-9B51-7695ECA05670} – C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 – BHO: Adobe PDF Reader Link Helper – {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} – C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 – BHO: WormRadar.com IESiteBlocker.NavFilter – {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} – C:\Program Files\AVG\AVG8\avgssie.dll
O2 – BHO: Spybot-S&D IE Protection – {53707962-6F74-2D53-2644-206D7942484F} – C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 – BHO: AVG Security Toolbar – {A057A204-BACC-4D26-9990-79A187E2698E} – C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 – Toolbar: Yahoo! Toolbar – {EF99BD32-C1FB-11D2-892F-0090271D4F88} – C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 – Toolbar: AVG Security Toolbar – {A057A204-BACC-4D26-9990-79A187E2698E} – C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 – HKLM\..\Run: [FLMK08KB] C:\Program Files\Muiltmedia keyboard utility.1\MMKEYBD.EXE
O4 – HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser Mouse\mouse32a.exe
O4 – HKLM\..\Run: [Adobe Reader Speed Launcher] “C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe”
O4 – HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 – HKLM\..\Run: [QuickTime Task] “C:\Program Files\QuickTime\QTTask.exe” -atboottime
O4 – HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 – HKLM\..\Run: [C:\WINDOWS\system32\kdbfc.exe] C:\WINDOWS\system32\kdbfc.exe
O4 – HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 – HKCU\..\Run: [Messenger (Yahoo!)] “C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe” -quiet
O4 – Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 – Global Startup: Install Pending Files.LNK = C:\Program Files\SIFXINST\SIFXINST.EXE
O8 – Extra context menu item: E&xport to Microsoft Excel – res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 – Extra button: Research – {92780B25-18CC-41C8-B9BE-3C9C571A8263} – C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 – Extra button: (no name) – {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} – C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 – Extra ‘Tools’ menuitem: Spybot – Search & Destroy Configuration – {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} – C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 – DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) – http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1143909546531
O17 – HKLM\System\CCS\Services\Tcpip\..\{3A9D480C-F389-4148-8E40-FCA908CCD7B4}: NameServer = 85.255.112.189;85.255.112.113
O17 – HKLM\System\CCS\Services\Tcpip\..\{5FD5E535-182C-4006-8C05-BADFE190693C}: NameServer = 85.255.112.189;85.255.112.113
O18 – Protocol: linkscanner – {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} – C:\Program Files\AVG\AVG8\avgpp.dll
O20 – AppInit_DLLs: avgrsstx.dll
O23 – Service: Apple

Best answer:

Answer by ilknur K
To Help Hijackthis > Download “MalwareBytes Anti-Malware” from the link below (Free), update it, run a full scan and clean any infection/s found.

http://www.malwarebytes.org/mbam.php

2> Now download “SuperAntiSpyware Free” from the link below (As the title suggests, this is also free), update it, then run a full scan, also clean any infection found

http://www.superantispyware.com/

Add your own answer in the comments!

Question by Against The Clock: Has anyone else had trouble with Malwarebytes?
I downloaded the free version of Malwarebytes hoping it would get rid of Antivirus 2009 for me. It was able to find the virus, but it could not delete it. I ran it a few more times after this and found that it could not even detect the virus anymore. I once downloaded the free version of Malwarebytes in the past, could that be the reason it did not work for me this time? I have to admit, I’m a tad jealous that other people have downloaded Malwarebytes and got rid of Antivirus 2009 without breaking a sweat.After reading nothing but good reviews on Malwarebytes, can’t help but be somewhat bitter. I DON’T GET WHY IT WON’T WORK FOR ME!!! LOL! XD
Thanks Reprotected! I’ll try SUPERAntiSpyware. ^_^

Best answer:

Answer by Reprotected
Did you ever bothered to try other anti-spyware products other than Malwarebytes’? Try Ad-aware or SUPERAntiSpyware, send a HijackThis log file to a reliable security forum and clean up your computer.
Also, try a System Restore on Safe Mode.

What do you think? Answer below!

Question by ANNMARIE ALEXANDER: xp antivirus 2011 remved using malwarebytes malware now I cant access some programs in my control panel.?
I had xp antivirus 2012 on my pc, i used malwarebit antimalware to remove. I had to use in saferun under admin. it worked, when i restarted i cant access some applicationsays “application not available and I cant access most features in control panel. how to resolve this. I have no restore system points:(
I have try downloading some of the application and an antivirus but i cant. whwen i download either one its ask me what program to open with then, i choose internet explorer then i click run but it goes bk asking me to open with.All the setups im using gives the prooblem. how to fix?do not want to reinstall xp allover again.
twice i run malwarebyte in safe mode and no infected file however when i restart in normal mode im not able to run .exe file or find certain programs. I have tried the first 2 solutions given below it didnt work.

Best answer:

Answer by Pulsar
download and install this registry entry.

Fix .exe : http://download.bleepingcomputer.com/reg/antivirus-vista-2010/FixExe.reg

it should start to put things right.

.

What do you think? Answer below!

Question by KaylaaNicole: I had the antivirus 2011 virus on my computer and i used malwarebytes, now Helpp is needed!?
I just recently had the 2011 antivirus virus and i used malware bites and avast to get rid of it,
well that’s gone, but all my files are not working! and i dont know how to get them back or fix them!
I cant even use as simple as paint. it says its either missing or broken.
did anyone have this problem, and is there anyway to fix this!
i dont have a recovery cd or anything and my comp doesnt use cds its a type of acer that doesnt have a cd thing.

Best answer:

Answer by Lucas
You probably have a net book and it’s probably in the acer one series. My first choose would be to call acer and see if they can send you a recovery cd image witch you can put on a flash drive or they can give you a flash drive. Also you can get a USB DVD drive.

The simpleist way though would be to boot into recovery mode. You can usually do this by pressing f8 during startup but if that doesn’t work you may have to press f2 on acer computers to enable it(I don’t feel like finding my net book to check) once there simpley select recovery mode with the arrow keys then press enter and it will boot recovery mode Witch has windows recovery mode and sometimes the computers bult in recovery cd.

Add your own answer in the comments!

Question by absolutoutlook: How do I transfer malwarebytes anti- virus between computers?
The virus is on my lap top. This lap top ALREADY has malwarebytes anti virus on it – however the virus prevents me from running it.

The virus also prevents my Internet and my safe mode.

Can anyone give me a step by step guide on how to get the malwarebytes or any other antivirus on to my lap top?

Thank you!

Best answer:

Answer by Christy
Have you tried using safe mode with networking ?

@

What do you think? Answer below!

Question by Right Left: How do I transfer malwarebytes anti- virus between computers?
How do I transfer malwarebytes anti- virus between computers?
The virus is on my lap top. This lap top ALREADY has malwarebytes anti virus on it – however the virus prevents me from running it.

The virus also prevents my Internet and my safe mode.

Can anyone give me a step by step guide on how to get the malwarebytes or any other antivirus on to my lap top?

Thank you!

Best answer:

Answer by SSW
Well before you try transferring the files just re-download the installer for malwarebytes. Open the folder that the installer will install the files to and run the installer. Once you see mbam.exe pop up quickly drag it to your desktop and rename it to mbam-setup.exe Once you rename it drag it back to the malwarebytes folder and double click it. It should now run malwarebytes. If it doesn’t then your going to have to download malwarebytes on another computer and copy the files to a cd and open malwarebytes on you laptop.

Give your answer to this question below!

Question by CindyLou: Malwarebytes: advice please?
I have questions about Malwarebytes:
1. It’s a free download and free first time scan, right?
2. I already have Norton, and will that interfere with each other at all by having these 2 programs?
3. After it does the first scan, and if it doesn’t find anything, then would I have to remove it or pay in order to get the full program and the updates?
4. Does it have a good enough reputation where we’re sure that it doesn’t read a false positive to nudge a person into buying the full program?
I’ve never had a virus to my knowledge until the other night I was playing online Solitaire at a particular website that I visit almost every night for a couple games and have been on and off of there for a month at least; (not yahoo games) when something hijacked my full screen and wanted me to download their antivirus program saying I had hundreds of trojans and blinking all these red numbers. It froze the screen and wouldn’t let me out by clicking on the X’s on the boxes, and a download screen popped up and scared me a bit….until I did shut the internet down through the task manager. I shut down the system, rebooted in safe mode and full-scanned twice with each program. SpyHunter found a suspicious file and it was deleted. And Norton caught the original download program I think, it and quarantined it within seconds. Then, removed it, I hope.
Since I don’t have a lot of experience with malware, as I’m pretty sure this was, or maybe it’s what they call a Rogue. I don’t know if it was sneaky and put something on my system. I’ve checked through the start up files looking for anything odd, but I haven’t seen any changes to my computer but it has, of late, become slower on loading sites through IE 8 , which I don’t really like much anyway. And I haven’t changed configurations, and haven’t added toolbars, and have disabled lots of add-ons.
I use Norton, Ccleaner, and SpyHunter and I use them every time I get off the internet and a few times during the day. And, maybe I do it too much. I am rather paranoid about keeping my system clean. I just totally freak out at the thought of having to reformat the whole thing.
So, could I please have some honest (please be nice to an old lady testimonials as to the reputation of Malwarebytes? Thank you
This is the filename that Norton reported as removed: with no further action needed it said.
setup_2005-13[1[.exe (packed.Generic.279).
I think I read that this packed.Generic IS a virus....but was it actully caught in time? Norton reported the "activity" and path name as:
C:\documents and settings.....temporary internet files\content.ie5fr3mxhc\setup_2005-13[1[.exe.
Then I think Spy Hunter found the 8fr3mxhc. Then there was another part Norton found as the "Origin": http://antispyware-scane1.com/download/setup_2005-13[1].exe
Later, I think Norton found that the http website was ok, under their “statistical submission” . But when I finally got to notify Norton,they couldn’t tell me if all that was actually off my computer… they wanted 159.99 to have their techs run a remote special system scan and I couldn’t do that much. Especially over my fear of doing any online transactions right then.
oh gosh you guys don’t click on that. I didn’t realize it would actully put that link on there as accessible.. Please don’t..and there’s not way to edit that again.

Best answer:

Answer by Jim
There is a free edition. It does scan and remove whatever it finds. It does update regularly and yes it is a good reputable software program. The only difference between the free and paid version is the paid version gives you realtime protection. Oh and no it will not interfer with your antivirus software. Malware programs do not conflict with antivirus programs!

Give your answer to this question below!

Question by XTREME: Can I have Avast 5 Internet Security and Malwarebytes’ Anti-Malware PRO at the same time?

Yes, I was referring to the paid version of Malwarebytes’ Anti-Malware.

Best answer:

Answer by TheArfen
anti malware pro is a fake program.

malwarebytes will probably spot it and tell you so.

.

Add your own answer in the comments!

Question by : pc got vista antivirus 2010 virus, i tried running malwarebytes but the virus is preventing it from launching.?
i cant find any registry keys for it either

Best answer:

Answer by Aivars
When virus is resident, it can prevent antivirus programs from working properly.

Here are some things you can try before running Malwarebytes:
1) Download and run Rkill tool – tries to remove any resident malware it finds.

2) Boot Windows in Safe Mode.

3) Use UBCD4win – a bootable Windows CD with some common anti-malware programs included.

What do you think? Answer below!

Question by shark58: what is better Kaspersky Anti-Virus 2010 or malwarebytes anti-malware and will they both work on windows 7?

Best answer:

Answer by Comp Eng
One is for anti-virus one is for anti-spyware… keep both. Check their website to see if its compatible with Win7

Add your own answer in the comments!