Stardotstar
asked on
Adaware reboots pc
Is this a problem with the program or is it a bug fighting it.
Trying to run a scan at it starets and about 15 seconds into it the machine reboots?
Trying to run a scan at it starets and about 15 seconds into it the machine reboots?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Stardotstar,
1. If you have Windows Messenger Service, disable it. The Messenger is the source of popups and virus.
http://www.itc.virginia.edu/desktop/docs/messagepopup/
2. Use Ewido to remove hard to remove spyware
http://www.ewido.net/en/
or
Spy Sweeper
http://www.download.com/Webroot-Spy-Sweeper/3000-8022_4-10405877.html
3. If still no joy, download HijackThis
http://www.majorgeeks.com/download3155.html
Run the program and you will find many entries. Most are OK. Post the log at http://www.hijackthis.de/, click Analyze, Save, and post a link to the save analysis here.
1. If you have Windows Messenger Service, disable it. The Messenger is the source of popups and virus.
http://www.itc.virginia.edu/desktop/docs/messagepopup/
2. Use Ewido to remove hard to remove spyware
http://www.ewido.net/en/
or
Spy Sweeper
http://www.download.com/Webroot-Spy-Sweeper/3000-8022_4-10405877.html
3. If still no joy, download HijackThis
http://www.majorgeeks.com/download3155.html
Run the program and you will find many entries. Most are OK. Post the log at http://www.hijackthis.de/, click Analyze, Save, and post a link to the save analysis here.
ASKER
running sfc now
ASKER
Messenger already off
ASKER
does sfc display anything when it finishes? went back to machine and nothing was there regarding sfc completion?
ASKER
Blackworm came up on an alert when I went to download Ewido. AVG has apparently missed it.
Running Symantec fix tool now, will advise.
Running Symantec fix tool now, will advise.
This may help you too;
https://www.experts-exchange.com/questions/21788810/Help-with-Black-worm.html
https://www.experts-exchange.com/questions/21788810/Help-with-Black-worm.html
ASKER
Well tried those, and also went to symantec and what ever it is is making Symantec ID my explorer as an older version of Explorer.
Can we please look at your Hijackthis log?
Please download HijackThis 1.99.1
http://www.cyberanswers.org/forum/uploads/HijackThis1991.exe
Open Hijackthis, click "scan and save a logfile" don't fix anything yet, just upload the logfile created, go here and paste your Hijackthis log, http://www.rafb.net/paste/
then at the bottom left corner click "paste"
Copy the address/url and post it here:
Or copy and paste the log at;
http://www.hijackthis.de/
and click "Analyse", "Save". Post a link to the saved list here.
Please download HijackThis 1.99.1
http://www.cyberanswers.org/forum/uploads/HijackThis1991.exe
Open Hijackthis, click "scan and save a logfile" don't fix anything yet, just upload the logfile created, go here and paste your Hijackthis log, http://www.rafb.net/paste/
then at the bottom left corner click "paste"
Copy the address/url and post it here:
Or copy and paste the log at;
http://www.hijackthis.de/
and click "Analyse", "Save". Post a link to the saved list here.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
It could also be an apropos. Apropos doesn't show up in Hijackthis log and it triggers popups too. Just something you can eliminate :). doesn't hurt to run it even if you don't have apropos.
Please download AproposFix from here:
http://swandog46.geekstogo.com/aproposfix.exe
Save it to your desktop but do NOT run it yet.
Reboot your pc to Safe Mode.
Once in Safe Mode, please double-click aproposfix.exe and unzip it to the desktop. Open the aproposfix folder on your desktop and run "RunThis.bat". Follow the prompts.
When the tool is finished, please reboot back into normal mode, and post a new HijackThis log, along with the entire contents of the "log.txt" file in the aproposfix folder.
Please download AproposFix from here:
http://swandog46.geekstogo.com/aproposfix.exe
Save it to your desktop but do NOT run it yet.
Reboot your pc to Safe Mode.
Once in Safe Mode, please double-click aproposfix.exe and unzip it to the desktop. Open the aproposfix folder on your desktop and run "RunThis.bat". Follow the prompts.
When the tool is finished, please reboot back into normal mode, and post a new HijackThis log, along with the entire contents of the "log.txt" file in the aproposfix folder.
ASKER
Thanks, I did not see anything either. No pop ups lately since I startded byut nothing has been removed. There has to be something because I remmeber this sometime back especially when you cannot run NAV scan from the web, it Iidentifies wrong IE version.
ASKER
Anyone know what would keep Symantec online scanner from running. It gives me an error thast active x etc must be enabled, it is. I have followed Symantecs instructions.
It tells me that IE 5 or 6 must be installed and that Active X must be enabled, and they are.
It tells me that IE 5 or 6 must be installed and that Active X must be enabled, and they are.
Some recent IE updates affected ActiveX. Here are the fixes
Must enable ActiveX Control
http://www.internetnews.com/xSP/article.php/3588546
IE October Update Affect ActiveX. Here is fix.
http://patch-info.de/IE/Downloads/OLEfix.zip
ActiveX Control not load as expected in Internet Explorer
http://support.microsoft.com/kb/909889/
Must enable ActiveX Control
http://www.internetnews.com/xSP/article.php/3588546
IE October Update Affect ActiveX. Here is fix.
http://patch-info.de/IE/Downloads/OLEfix.zip
ActiveX Control not load as expected in Internet Explorer
http://support.microsoft.com/kb/909889/
ASKER
war1
Did not work.
Did not work.
Can't see anything wrong in Silent Runner's log.
Try Blacklight to eliminate rootkits:
Download and save blacklight to your desktop.
http://www.f-secure.com/blacklight/try.shtml
Doubleclick blbeta.exe, accept the agreement, click scan > next.
You'll see a list of all the items it found. There will also be a log on your desktop with the name fsbl.xxxxxxx.log (where xxxxxxx represents numbers). The application finds both bad files and legitimate ones such as "wbemtest.exe", so don't choose the rename option yet! Copy and paste the log it generated in your next reply.
Try Blacklight to eliminate rootkits:
Download and save blacklight to your desktop.
http://www.f-secure.com/blacklight/try.shtml
Doubleclick blbeta.exe, accept the agreement, click scan > next.
You'll see a list of all the items it found. There will also be a log on your desktop with the name fsbl.xxxxxxx.log (where xxxxxxx represents numbers). The application finds both bad files and legitimate ones such as "wbemtest.exe", so don't choose the rename option yet! Copy and paste the log it generated in your next reply.
G'day,
You should try a system file check which will verify that your system's critical files are Ok.
usage -- sfc /scannow
http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/system_file_checker.mspx
http://www.petri.co.il/what's_system_file_checker.htm
OziOi. Ian.
You should try a system file check which will verify that your system's critical files are Ok.
usage -- sfc /scannow
http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/system_file_checker.mspx
http://www.petri.co.il/what's_system_file_checker.htm
OziOi. Ian.
ASKER
Yes I did. See first post.
ASKER