Solved

Cannot run spareware

Posted on 2009-03-29
9
349 Views
Last Modified: 2012-08-14
I believe I have an addware spyware or malware. I cannot run Spybot, Malware, Spyspeeper.
Even in Safemode


I run Weather bug and it comes up with a translucent screen that cannot be hide except to close. I get a messages from norton where many emails are trying to be sent. I have programs that are trying to access the internet but I am running Zonealarm and stop them. I have clean all the temp files also. Any ideas.  
0
Comment
Question by:ClShaffer
  • 3
  • 2
  • 2
  • +2
9 Comments
 
LVL 8

Expert Comment

by:skywalker39
ID: 24013060
Hi ClShaffer,

If you have another computer, take the hard drive you want to scan for spyware or malware and place it in another computer as a secondary drive and try to run a scan that way.
0
 

Author Comment

by:ClShaffer
ID: 24013069
it is a sata drive.

This is the only computer I have that will accept a sata drive
0
 
LVL 8

Expert Comment

by:skywalker39
ID: 24013158
Have you tried to install any of these?

      1. http://www.superantispyware.com/
      2. http://www.pctools.com/spyware-doctor/
      3. http://www.pctools.com/spyware-doctor-antivirus/
      4. http://www.pctools.com/free-antivirus/

If you have system restore enabled, try and do a system restore to a previous state. If none of these will install and if you computer seems to be getting worse, your best bet would be to re-install Windows XP with a fresh install.
0
 
LVL 22

Expert Comment

by:Adam Leinss
ID: 24013184
Boot from the F-Secure Rescue CD to do an offline malware scan:

http://www.leinss.com/blog/?p=247

If need be, try to burn it from a different PC if you current one isn't working.
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 16

Expert Comment

by:warturtle
ID: 24013689
Try the above options first, if you still have problems. Download MalwareBytes Anti-Malware, save it with a different name and update it and scan with it. Best to scan in safe mode. Can you post a HijackThis log?

Hope it helps.
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24013706
Oops, I just noticed you said something about MalwareBytes. Can you not scan or not install it??

If the infection is still around, then I will send instructions on a more powerful tool called ComboFix.

There is a tutorial on it as well at:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

But its a very powerful tool and I wouldn't recommend using it until you've tried all the above mentioned options and they don't work.
0
 
LVL 15

Expert Comment

by:greyknight17
ID: 24015050
Go to Start->Run and type in regedit and hit OK. Go to File->Export and save the registry somewhere as a backup. Now navigate to the following:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32

You should see values like aux, aux1, aux2, etc. (usually only aux, but numbers may be added to some). See what values you have for those entries. If they are random names, remove it and put in wdmaud.drv instead. If unsure, give us the values for those aux entries. Once those are taken care of you should be able to run those antispyware programs.

Definitely try getting ComboFix to run if you can (do the above if necessary to see if it helps).
0
 

Accepted Solution

by:
ClShaffer earned 0 total points
ID: 24056027
I decide to fromat the hard drive and reinstall windows.
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24193231
Did ComboFix not work for you??
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Help me get rid of virus on chrome 15 47
Endpoint Security 4 65
Tescrypt.A 9 83
Ransomware 9 82
To Remove Security Suite for Windows Malware from a Windows XP Machine:  Restart computer in Safe Mode (to do this see http://tinyurl.com/me78p) Login as Administrator Go to My Computer /Tools/ Folder Options/ View/  check mark the selectio…
Malware seems to be getting smarter and smarter. If you are having trouble being able to launch your malware removal tools such as (and recommended): MalwareBytes, HiJackThis, ComboFix, etc. you can try some of the workarounds listed below. 1. Ma…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Learn how to create flexible layouts using relative units in CSS.  New relative units added in CSS3 include vw(viewports width), vh(viewports height), vmin(minimum of viewports height and width), and vmax (maximum of viewports height and width).

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now