Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Laptop infected. Cannot start pgms other than in safe-mode.

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Laptop infected. Cannot start pgms other than in safe-mode.

Unread postby mildmay48a » April 13th, 2011, 6:59 am

My Vista Laptop will boot ok. However, cannot then start any programs or perform any mouse actions. Have run MalwareBytes which finds infections (in safemode) but then scan halts after 70 seconds or so. Have tried installing Stopzilla but install hangs/ends.
In fact any type of scan seems to get halted after approx 70 seconds.
Tried removing hard-dik and scanning via usb attachment to my other Laptop Windows 7 - malware scanned and reported no infections. I'm assuming that the infection is either at boot or through the registry somewhere.
Here are the logs.

.
DDS (Ver_11-03-05.01) - NTFSx86 NETWORK
Run by Tim at 11:40:41.00 on 13/04/2011
Internet Explorer: 8.0.6001.19019
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.44.1033.18.2037.1447 [GMT 1:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {BF5CEBDC-F2D3-7540-343C-F0CE11FD6E66}
SP: Microsoft Security Essentials *Enabled/Updated* {043D0A38-D4E9-7ACE-0E8C-CBBC6A7A24DB}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\Tim\Desktop\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
mURLSearchHooks: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - c:\program files\dvdvideosofttb\tbDVD0.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
BHO: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - c:\program files\dvdvideosofttb\tbDVD0.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
TB: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - c:\program files\dvdvideosofttb\tbDVD0.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
uRun: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
uRunOnce: [BurnImage] regsvr32 /s c:\windows\IMAPIShellExt.dll
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [ECenter] c:\dell\e-center\EULALauncher.exe
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [OEM02Mon.exe] c:\windows\OEM02Mon.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [DELL Webcam Manager] "c:\program files\dell\dell webcam manager\DellWMgr.exe" /s
mRun: [IAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe"
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [dscactivate] "c:\program files\dell support center\gs_agent\custom\dsca.exe"
mRun: [PCMService] "c:\program files\dell\mediadirect\PCMService.exe"
mRun: [DellSupportCenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [MSSE] "c:\program files\microsoft security essentials\msseces.exe" -hide -runkey
mRun: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
mRunOnce: [ChicaPC-Shield] c:\program files\chicalogic\chicapc-shield\cpcsgui.exe /install /silent
StartupFolder: c:\users\tim\appdata\roaming\micros~1\windows\startm~1\programs\startup\delldo~1.lnk - c:\program files\dell\delldock\DellDock.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\program files\dell\quickset\quickset.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {08E730A4-FB02-45BD-A900-01E4AD8016F6} - http://www.skybroadband.com
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/fl ... rashim.cab
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
Notify: igfxcui - igfxdev.dll
.
============= SERVICES / DRIVERS ===============
.
R0 RapportKELL;RapportKELL;c:\windows\system32\drivers\RapportKELL.sys [2010-10-3 59240]
S1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-3-25 151216]
S1 MpKsl423f7880;MpKsl423f7880;c:\programdata\microsoft\microsoft antimalware\definition updates\{4515a4b3-c798-408f-a147-b77266f10665}\MpKsl423f7880.sys [2011-4-12 28752]
S1 MpKsl48534a61;MpKsl48534a61;c:\programdata\microsoft\microsoft antimalware\definition updates\{4515a4b3-c798-408f-a147-b77266f10665}\MpKsl48534a61.sys [2011-4-12 28752]
S1 MpKsl4c3cfb1c;MpKsl4c3cfb1c;c:\programdata\microsoft\microsoft antimalware\definition updates\{4515a4b3-c798-408f-a147-b77266f10665}\MpKsl4c3cfb1c.sys [2011-4-9 28752]
S1 MpKsl9dd588c0;MpKsl9dd588c0;c:\programdata\microsoft\microsoft antimalware\definition updates\{4515a4b3-c798-408f-a147-b77266f10665}\MpKsl9dd588c0.sys [2011-4-9 28752]
S1 MpKslcefcb072;MpKslcefcb072;c:\programdata\microsoft\microsoft antimalware\definition updates\{4515a4b3-c798-408f-a147-b77266f10665}\MpKslcefcb072.sys [2011-4-9 28752]
S1 MpKsld482ecd4;MpKsld482ecd4;c:\programdata\microsoft\microsoft antimalware\definition updates\{4515a4b3-c798-408f-a147-b77266f10665}\MpKsld482ecd4.sys [2011-4-9 28752]
S1 RapportCerberus_23945;RapportCerberus_23945;c:\programdata\trusteer\rapport\store\exts\rapportcerberus\23945\RapportCerberus_23945.sys [2011-2-28 55224]
S1 RapportPG;RapportPG;c:\program files\trusteer\rapport\bin\RapportPG.sys [2010-10-3 169320]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\AEstSrv.exe [2008-7-26 73728]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2008-4-28 161048]
S2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]
S2 RapportMgmtService;Rapport Management Service;c:\program files\trusteer\rapport\bin\RapportMgmtService.exe [2010-10-3 767208]
S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2009-11-6 54632]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2008-7-27 111616]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\drivers\MpNWMon.sys [2010-3-25 42368]
S3 RapportIaso;RapportIaso;c:\programdata\trusteer\rapport\store\exts\rapportms\21923\RapportIaso.sys [2010-12-30 12928]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2011-04-13 10:21:34 -------- d-----w- c:\users\tim\appdata\roaming\ChicaLogic
2011-04-13 10:21:22 38208 ----a-w- c:\windows\system32\drivers\cpcsswissarmy.sys
2011-04-13 10:21:22 -------- d-----w- c:\progra~2\ChicaLogic
2011-04-13 10:21:19 20936 ----a-w- c:\windows\system32\drivers\cpcs.sys
2011-04-13 10:21:19 -------- d-----w- c:\program files\ChicaLogic
2011-04-12 17:47:39 -------- d-----w- c:\progra~2\MFAData
2011-04-12 17:12:03 -------- d-----w- c:\users\tim\appdata\roaming\Malwarebytes
2011-04-12 16:55:58 -------- d-----w- c:\users\tim\appdata\local\SupportSoft
2011-04-12 16:55:39 -------- d-----w- c:\users\tim\appdata\roaming\Dell
2011-04-09 20:38:34 -------- d-sh--w- C:\found.000
2011-04-09 10:59:17 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-04-09 10:59:16 -------- d-----w- c:\progra~2\Malwarebytes
2011-04-09 10:59:14 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-09 10:59:14 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-04-09 10:56:29 -------- d-----w- c:\program files\Auslogics
2011-04-09 10:55:00 -------- dc----w- c:\progra~2\{6A395471-4AA3-4072-AE1B-9B69A97AD164}
2011-04-09 10:36:37 6792528 ----a-w- c:\progra~2\microsoft\microsoft antimalware\definition updates\{4515a4b3-c798-408f-a147-b77266f10665}\mpengine.dll
.
==================== Find3M ====================
.
2011-02-09 19:43:12 256 ----a-w- c:\windows\system32\pool.bin
2011-01-20 16:08:16 478720 ----a-w- c:\windows\system32\dxgi.dll
2011-01-20 16:08:06 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2011-01-20 16:08:06 189952 ----a-w- c:\windows\system32\d3d10core.dll
2011-01-20 16:08:06 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2011-01-20 16:08:06 1029120 ----a-w- c:\windows\system32\d3d10.dll
2011-01-20 16:07:58 37376 ----a-w- c:\windows\system32\cdd.dll
2011-01-20 16:07:42 258048 ----a-w- c:\windows\system32\winspool.drv
2011-01-20 16:07:16 586240 ----a-w- c:\windows\system32\stobject.dll
2011-01-20 16:06:38 2873344 ----a-w- c:\windows\system32\mf.dll
2011-01-20 16:06:35 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
2011-01-20 16:04:54 98816 ----a-w- c:\windows\system32\mfps.dll
2011-01-20 16:04:54 209920 ----a-w- c:\windows\system32\mfplat.dll
2011-01-20 14:28:38 1554432 ----a-w- c:\windows\system32\xpsservices.dll
2011-01-20 14:27:50 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2011-01-20 14:26:30 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
2011-01-20 14:25:25 847360 ----a-w- c:\windows\system32\OpcServices.dll
2011-01-20 14:24:32 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-01-20 14:24:26 135680 ----a-w- c:\windows\system32\XpsRasterService.dll
2011-01-20 14:15:10 979456 ----a-w- c:\windows\system32\MFH264Dec.dll
2011-01-20 14:14:39 357376 ----a-w- c:\windows\system32\MFHEAACdec.dll
2011-01-20 14:14:03 302592 ----a-w- c:\windows\system32\mfmp4src.dll
2011-01-20 14:14:03 261632 ----a-w- c:\windows\system32\mfreadwrite.dll
2011-01-20 14:12:46 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2011-01-20 14:11:34 486400 ----a-w- c:\windows\system32\d3d10level9.dll
2011-01-20 13:47:51 683008 ----a-w- c:\windows\system32\d2d1.dll
2011-01-20 13:44:05 1068544 ----a-w- c:\windows\system32\DWrite.dll
2011-01-20 13:44:03 797184 ----a-w- c:\windows\system32\FntCache.dll
.
============= FINISH: 11:41:47.73 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume3
Install Date: 26/07/2008 19:23:29
System Uptime: 13/04/2011 11:34:31 (0 hours ago)
.
Motherboard: Dell Inc. | | 0U990C
Processor: Intel(R) Core(TM)2 Duo CPU T5750 @ 2.00GHz | Microprocessor | 1995/166mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 99 GiB total, 56.124 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 5.748 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft ISATAP Adapter
Device ID: ROOT\*ISATAP\0003
Manufacturer: Microsoft
Name: Microsoft ISATAP Adapter #4
PNP Device ID: ROOT\*ISATAP\0003
Service: tunnel
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 8.1.0
Advanced Audio FX Engine
Advanced Video FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Auslogics Registry Cleaner
Bonjour
CCleaner
ChicaPC-Shield version 1.50.1.1200
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Compatibility Pack for the 2007 Office system
Conexant HDA D330 MDC V.92 Modem
Dell-eBay
Dell Dock
Dell Getting Started Guide
Dell Support Center (Support Software)
Dell Touchpad
Dell Webcam Center
Dell Webcam Manager
Dell Wireless WLAN Card
Digital Line Detect
DVDVideoSoftTB Toolbar
EDocs
Free Audio CD Burner version 1.4
Free YouTube to MP3 Converter version 3.9
GoToAssist 8.0.0.514
Highlight Viewer (Windows Live Toolbar)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Intel(R) Matrix Storage Manager
iTunes
Java(TM) 6 Update 5
Junk Mail filter update
Laptop Integrated Webcam Driver (1.04.01.1011)
Live! Cam Avatar Creator
Live! Cam Avatar v1.0
Malwarebytes' Anti-Malware
Map Button (Windows Live Toolbar)
MediaDirect
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Antimalware
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Search Enhancement Pack
Microsoft Security Essentials
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
Modem Diagnostic Tool
MSVC80_x86
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NetWaiting
OGA Notifier 2.0.0048.0
OutlookAddinSetup
QuickSet
QuickTime
Rapport
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Sky Broadband
Smart Menus (Windows Live Toolbar)
Uninstall 1.0.0.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
VoiceOver Kit
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live Favorites for Windows Live Toolbar
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Toolbar
Windows Live Toolbar Extension (Windows Live Toolbar)
Windows Live Upload Tool
Windows Live Writer
.
==== End Of File ===========================

Kind Regards,
Tim Johnson
mildmay48a
Active Member
 
Posts: 10
Joined: April 13th, 2011, 6:50 am
Advertisement
Register to Remove

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby moch » April 13th, 2011, 7:24 am

can you run safe mod with networking? if you can hurry up and grab these programs

Malwarebytes Anti-Malware
SuperAntiSpyware
Dr Web’s CureIT
TDSSKILLER

and scan your pc
moch
Banned Member
 
Posts: 8
Joined: April 13th, 2011, 7:10 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby mildmay48a » April 13th, 2011, 8:04 am

Yes - I have network in safe mode.
Have already installed MalwareBytes AntiMalware - the program installs ok. The scan seems to get halted after about 70 seconds after finding 3 infections. The laptop is then in-operable once the scan is halted/hi-jacked.

I have just downloaded SuperAntiSpyware and the scan is now running and has been running for about 15 minutes, so I'll update again once the scan has completed.

Do you have the exact links to download the TDSSKILLER software as the links I found seemed to keep passing me to different web-pages ?

Thanks.
mildmay48a
Active Member
 
Posts: 10
Joined: April 13th, 2011, 6:50 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby moch » April 13th, 2011, 8:08 am

moch
Banned Member
 
Posts: 8
Joined: April 13th, 2011, 7:10 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby moch » April 13th, 2011, 8:12 am

tell me whats going.
moch
Banned Member
 
Posts: 8
Joined: April 13th, 2011, 7:10 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby mildmay48a » April 13th, 2011, 8:25 am

Scan completed for SuperAntiSpyware.
100's of infections all quarrantined/removed.
laptop rebooted again into safe mode with network.
Just run TDSSKILLER it is reporting forged files all files are in the c:\programdata\microsoft\microsoft Antimalware\definition updates folder saying that the MD5 has been forged - what do I do about this ??

Thanks.
mildmay48a
Active Member
 
Posts: 10
Joined: April 13th, 2011, 6:50 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby moch » April 13th, 2011, 8:35 am

try running combofix or Dr Web’s CureIT do dr webs

first because it will take a really really long time. i'll have you run with multiple virus protection software.
moch
Banned Member
 
Posts: 8
Joined: April 13th, 2011, 7:10 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby mildmay48a » April 13th, 2011, 8:54 am

So you don't want me to quarrantine the forged files found by TDSSKILLER ??????

If not - I'll download Dr Web's CureIT and run that scan.

This really seems like we're throwing the kitchen sink at this, but I'm still worried that because the MalwareBytes gets hijacked mid-scan then something pretty clever has got hold of my machine (even in safe mode) and that none of these tools are gonna get rid of it.

Will let you know once Dr Webs CureIT has completed.
mildmay48a
Active Member
 
Posts: 10
Joined: April 13th, 2011, 6:50 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby moch » April 13th, 2011, 8:56 am

do what ever tdsskiller tells you to those are Rootkits.
moch
Banned Member
 
Posts: 8
Joined: April 13th, 2011, 7:10 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby moch » April 13th, 2011, 8:58 am

dr webs will get rid of alot of malware. it's a beast. and also rootkits and bad stuff like that.
moch
Banned Member
 
Posts: 8
Joined: April 13th, 2011, 7:10 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby moch » April 13th, 2011, 9:02 am

This is how i work. keep on scanning with different virus software till you cant find no more.
moch
Banned Member
 
Posts: 8
Joined: April 13th, 2011, 7:10 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby mildmay48a » April 13th, 2011, 9:24 am

ok - thats fine by me - Dr Web's about to start...................will let you know how it goes.
Thanks
mildmay48a
Active Member
 
Posts: 10
Joined: April 13th, 2011, 6:50 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby moch » April 13th, 2011, 9:28 am

mildmay48a wrote:ok - thats fine by me - Dr Web's about to start...................will let you know how it goes.
Thanks


dr webs will start in express scan. pause it and put it on complete scan.
moch
Banned Member
 
Posts: 8
Joined: April 13th, 2011, 7:10 am

Re: Laptop infected. Cannot start pgms other than in safe-mo

Unread postby Gary R » April 13th, 2011, 10:38 am

Help in this forum is given only by authorised helpers ..... http://malwareremoval.com/forum/viewtop ... 34#p494334

moch is not qualified or authorised to give help here, and as per the rules of this forum has been banned from this site.

If you still need help please start a new help topic, post your DDS.txt and Attach.txt logs and a description of your problems, then wait for an authorised helper to assist you.

THIS TOPIC IS NOW CLOSED
User avatar
Gary R
Administrator
Administrator
 
Posts: 21866
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 40 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware