Microsoft Security Essentials is INFETED!!!
Posted 06 August 2012 - 05:12 PM
A couple days ago my computer was acting funny in that my antivirus program turned off and could not be turned back on, so I ran a full scan with Microsoft security essentials. Before the scan was completed, an alert window popped up saying saying something like "windows has encountered a critical error and will restart"(or something along those lines). Another window popped up in the bottom right corner saying that to complete update that security essentials had to restart. after it restarted, I kept restarting over and over again after I would log in saying the same thing after about 1 minute or so. This would happen regardless of "safe Mode" or not.
I started up again and ran "start up repair" and did a "system restore" to the day before when I updated some Adobe program. I re-installed Microsoft security essentials and had the same issue as before. This leads me to believe that this problem was not fixed by the system restore and is far beyond my comfort zone to try to fix alone. Please help me. I can provide any information that may be needed.
Also I have seen that people have had similar issues resolved on this site. Please don't refer me to these posts. Having seen the level of sophistication, I would prefer if someone could give me personalized instructions because even the slightest error could seriously mess up my computer. I am running Windows 7 on a Toshiba satellite computer if that can give you a starting point.
BC AdBot (Login to Remove)
Posted 07 August 2012 - 12:05 AM
Launch it.Click on change parameters-Select TDLFS file system
Click on "Scan".Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results
Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log
Post the log results here
ESET online scanner
Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats
Export the list to desktop,copy the contents of the text file in your reply
Posted 07 August 2012 - 09:42 PM
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-07 17:22:21
17:22:21.357 OS Version: Windows x64 6.1.7601 Service Pack 1
17:22:21.357 Number of processors: 4 586 0x2502
17:22:21.357 ComputerName: BEN-PC UserName: Ben
17:22:24.071 Initialize success
17:22:34.679 AVAST engine defs: 12080701
17:22:38.189 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:22:38.189 Disk 0 Vendor: ST950042 0001 Size: 476940MB BusType: 3
17:22:38.205 Disk 0 MBR read successfully
17:22:38.205 Disk 0 MBR scan
17:22:38.221 Disk 0 Windows VISTA default MBR code
17:22:38.221 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
17:22:38.267 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 404558 MB offset 3074048
17:22:38.299 Disk 0 Partition - 00 0F Extended LBA 60000 MB offset 831608832
17:22:38.330 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 10881 MB offset 954488832
17:22:38.423 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 59999 MB offset 831610880
17:22:38.517 Disk 0 scanning C:\windows\system32\drivers
17:22:53.307 Service scanning
17:23:30.337 Modules scanning
17:23:30.828 Disk 0 trace - called modules:
17:23:30.859 ntoskrnl.exe CLASSPNP.SYS disk.sys thpdrv.sys iaStor.sys hal.dll
17:23:30.875 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004cb0060]
17:23:30.875 3 CLASSPNP.SYS[fffff880017c943f] -> nt!IofCallDriver -> \Device\THPDRV1[0xfffffa8004caf060]
17:23:30.890 5 thpdrv.sys[fffff8800187ecc0] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80049e0050]
17:23:33.619 AVAST engine scan C:\windows
17:23:37.402 AVAST engine scan C:\windows\system32
17:28:37.097 AVAST engine scan C:\windows\system32\drivers
17:28:57.512 AVAST engine scan C:\Users\Ben
17:42:20.953 Disk 0 MBR has been saved successfully to "C:\Users\Ben\Documents\MBR.dat"
17:42:20.970 The log file has been saved successfully to "C:\Users\Ben\Documents\aswMBR.txt"
17:43:52.640 AVAST engine scan C:\ProgramData
17:44:48.427 Scan finished successfully
17:51:40.167 Disk 0 MBR has been saved successfully to "C:\Users\Ben\Documents\MBR.dat"
17:51:40.191 The log file has been saved successfully to "C:\Users\Ben\Documents\aswMBR.txt"
17:52:13.726 Disk 0 MBR has been saved successfully to "C:\Users\Ben\Documents\MBR.dat"
17:52:13.734 The log file has been saved successfully to "C:\Users\Ben\Documents\aswMBR 234.txt"-
This is the response from the ESET online scanner
C:\Users\Ben\Downloads\xvid-1.2.2.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined
Posted 07 August 2012 - 09:48 PM
Launch it,click on SCAN,post the generated log
Install,update and run a full scan
Click on SHOW results.Select all infections and remove it
Post the log
Checkmark following boxes:
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
Click Go and post the result.
Checkmark all the boxes
Click on "Scan".
Please copy and paste the log to your reply.
Launch it click on Delete
post the generated log