Posted 07 September 2009 - 03:29 PM
Posted 07 September 2009 - 03:31 PM
Posted 07 September 2009 - 03:44 PM
Posted 07 September 2009 - 03:54 PM
Posted 07 September 2009 - 04:25 PM
What does event viewer say for Task Manager?
Open Start Menu > Run and type eventvwr.msc and press Enter to open Event Viewer.
Posted 07 September 2009 - 09:44 PM
Posted 07 September 2009 - 10:13 PM
The mediocre teacher tells. The good teacher explains. The superior teacher demonstrates.
Posted 08 September 2009 - 03:03 AM
I looked and there was not even a hint that it was failing.If an application causes error or fails to run, it registers the event in Event Viewer with details. You are looking for TaskManager if you can find.
Posted 08 September 2009 - 03:19 AM
Navigate to C:\WINDOWS\SYSTEM32.
Make a copy of taskmgr.exe and call it something like shenan.exe and see if launching (double click) shenan.exe will open Task Manager.
For another test, click Start, Run and in the box enter:
cmd
Click OK and do you get a command Window? If yes, type exit to close whe window.
Download, install, update and do a full scan with these free malware detection programs:
Malwarebytes (MBAM): http://malwarebytes.org/
SUPERAntiSpyware: (SAS): http://www.superantispyware.com/
They can be uninstalled later if desired.
Try your taskmgr.exe again - additional work may be required.
Posted 08 September 2009 - 07:19 AM
The mediocre teacher tells. The good teacher explains. The superior teacher demonstrates.
Posted 24 September 2009 - 08:05 AM
So you ran MBAM and it did whatever it did and now the taskmgr.exe still will not work, but shenan.exe does work - is that correct?
The taskmgr.exe will not run because that process (by name alone) is not allowed to appear as a running task, therefore shenan.exe will run since it is a different name. The cmd.exe is also sometimes a victim. A couple other processes may be effected, hence the rename trick. Tricky malware!
Having seen this problem before, I believe you have/had some malicious software that has been removed, but there is some leftovers in the registry that needs to be fixed. MBAM and SAS have the best chance of removing this malware but can't fix the registry.
The scans remove the malware but don't know if the registry is "right" or not, so they just leave it alone and you have to fix it by hand.
I am familiar with this problem and have fixed it many times, but a BC moderator may need to move you to the Am I Infected? forum since a mere mortal like me should not be suggesting such things in this forum and those folks may want you to do some other things or know some better tricks.
I will follow along with your progress
Posted 24 September 2009 - 08:37 AM
The mediocre teacher tells. The good teacher explains. The superior teacher demonstrates.
Posted 24 September 2009 - 09:02 AM
0 members, 0 guests, 0 anonymous users