Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Microsoft Security Essentials is INFETED!!!

  • Please log in to reply
3 replies to this topic

#1 Broski4Life


  • Members
  • 2 posts
  • Local time:06:54 PM

Posted 06 August 2012 - 05:12 PM

Hi, I am new to this forum and am not particularly tech savvy. I can handle most programs with ease but I don't know diddly squat about the inner workings of computers or programming. Okay so now that I have that out of the way, lets get to the details of my issue.

A couple days ago my computer was acting funny in that my antivirus program turned off and could not be turned back on, so I ran a full scan with Microsoft security essentials. Before the scan was completed, an alert window popped up saying saying something like "windows has encountered a critical error and will restart"(or something along those lines). Another window popped up in the bottom right corner saying that to complete update that security essentials had to restart. after it restarted, I kept restarting over and over again after I would log in saying the same thing after about 1 minute or so. This would happen regardless of "safe Mode" or not.

I started up again and ran "start up repair" and did a "system restore" to the day before when I updated some Adobe program. I re-installed Microsoft security essentials and had the same issue as before. This leads me to believe that this problem was not fixed by the system restore and is far beyond my comfort zone to try to fix alone. Please help me. I can provide any information that may be needed.

Also I have seen that people have had similar issues resolved on this site. Please don't refer me to these posts. Having seen the level of sophistication, I would prefer if someone could give me personalized instructions because even the slightest error could seriously mess up my computer. I am running Windows 7 on a Toshiba satellite computer if that can give you a starting point.

BC AdBot (Login to Remove)


#2 narenxp


  • BC Advisor
  • 16,371 posts
  • Gender:Male
  • Location:India
  • Local time:06:54 PM

Posted 07 August 2012 - 12:05 AM



Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results



Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here


ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Broski4Life

  • Topic Starter

  • Members
  • 2 posts
  • Local time:06:54 PM

Posted 07 August 2012 - 09:42 PM

TDSS killer found no problems, the first time I ran aswMBR it gave me a blue screen while it was scanning.... Here is the log from the aswMBR

aswMBR version Copyright© 2011 AVAST Software
Run date: 2012-08-07 17:22:21
17:22:21.357 OS Version: Windows x64 6.1.7601 Service Pack 1
17:22:21.357 Number of processors: 4 586 0x2502
17:22:21.357 ComputerName: BEN-PC UserName: Ben
17:22:24.071 Initialize success
17:22:34.679 AVAST engine defs: 12080701
17:22:38.189 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:22:38.189 Disk 0 Vendor: ST950042 0001 Size: 476940MB BusType: 3
17:22:38.205 Disk 0 MBR read successfully
17:22:38.205 Disk 0 MBR scan
17:22:38.221 Disk 0 Windows VISTA default MBR code
17:22:38.221 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
17:22:38.267 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 404558 MB offset 3074048
17:22:38.299 Disk 0 Partition - 00 0F Extended LBA 60000 MB offset 831608832
17:22:38.330 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 10881 MB offset 954488832
17:22:38.423 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 59999 MB offset 831610880
17:22:38.517 Disk 0 scanning C:\windows\system32\drivers
17:22:53.307 Service scanning
17:23:30.337 Modules scanning
17:23:30.828 Disk 0 trace - called modules:
17:23:30.859 ntoskrnl.exe CLASSPNP.SYS disk.sys thpdrv.sys iaStor.sys hal.dll
17:23:30.875 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004cb0060]
17:23:30.875 3 CLASSPNP.SYS[fffff880017c943f] -> nt!IofCallDriver -> \Device\THPDRV1[0xfffffa8004caf060]
17:23:30.890 5 thpdrv.sys[fffff8800187ecc0] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80049e0050]
17:23:33.619 AVAST engine scan C:\windows
17:23:37.402 AVAST engine scan C:\windows\system32
17:28:37.097 AVAST engine scan C:\windows\system32\drivers
17:28:57.512 AVAST engine scan C:\Users\Ben
17:42:20.953 Disk 0 MBR has been saved successfully to "C:\Users\Ben\Documents\MBR.dat"
17:42:20.970 The log file has been saved successfully to "C:\Users\Ben\Documents\aswMBR.txt"
17:43:52.640 AVAST engine scan C:\ProgramData
17:44:48.427 Scan finished successfully
17:51:40.167 Disk 0 MBR has been saved successfully to "C:\Users\Ben\Documents\MBR.dat"
17:51:40.191 The log file has been saved successfully to "C:\Users\Ben\Documents\aswMBR.txt"
17:52:13.726 Disk 0 MBR has been saved successfully to "C:\Users\Ben\Documents\MBR.dat"
17:52:13.734 The log file has been saved successfully to "C:\Users\Ben\Documents\aswMBR 234.txt"-
This is the response from the ESET online scanner

C:\Users\Ben\Downloads\xvid-1.2.2.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined

#4 narenxp


  • BC Advisor
  • 16,371 posts
  • Gender:Male
  • Location:India
  • Local time:06:54 PM

Posted 07 August 2012 - 09:48 PM


List parts

Launch it,click on SCAN,post the generated log



Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Post the log


mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.



Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


adware cleaner

Launch it click on Delete

post the generated log

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users