Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unclassified.Unknown Origin --> explorer.exe and internet issues


  • Please log in to reply
No replies to this topic

#1 mbartolome

mbartolome

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:03:24 AM

Posted 16 January 2010 - 09:42 PM

I'll make a timeline so this is easier to follow

1. Picked up some sort of virus/malware/(I don't really know the difference)
2. Scanned with superantispyware, had 7 results, including one fishy "Unclassified.unknown origin"
3. Rebooted upon request (windows automatically updated something on that reboot as well)
4. Log in screen looked fine...and then a blank screen. My wallpaper is usually yellow with a picture on it. So my whole screen was yellow and I had a cursor.
5. Task manager wouldn't open. Ended up pressing shift five times so something came up and I was able to open an explorer window, run regedit, and enable windows task manager. No idea why that was disabled
6. Used task manager to run explorer.exe and everything looks fine except I don't have an internet connection
7. Googled an answer, someone said to run cmd: cd c:\windows\system32\winevt
8. "Access is Denied"
9. Opened msconfig and disabled UAC
10. Repeat step 7
11. Cmd: ren Logs Logs_bad
12. Cmd: mkdir Logs
13. Rebooted. Everything the same as step 4.
14. Enabled UAC

I don't know what else to do. Also, the unknown origin thing is located at "HKUS\S-1-5-21-2791125010-2061037798-2193384331-1000\Software\Microsoft\Windows\CurrentVersion\Run (userinit - C:\Users\rubadub\AppData\Roaming\sdra64.exe"

BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users