Solved

Cannot run spareware

Posted on 2009-03-29
9
344 Views
Last Modified: 2012-08-14
I believe I have an addware spyware or malware. I cannot run Spybot, Malware, Spyspeeper.
Even in Safemode


I run Weather bug and it comes up with a translucent screen that cannot be hide except to close. I get a messages from norton where many emails are trying to be sent. I have programs that are trying to access the internet but I am running Zonealarm and stop them. I have clean all the temp files also. Any ideas.  
0
Comment
Question by:ClShaffer
  • 3
  • 2
  • 2
  • +2
9 Comments
 
LVL 8

Expert Comment

by:skywalker39
ID: 24013060
Hi ClShaffer,

If you have another computer, take the hard drive you want to scan for spyware or malware and place it in another computer as a secondary drive and try to run a scan that way.
0
 

Author Comment

by:ClShaffer
ID: 24013069
it is a sata drive.

This is the only computer I have that will accept a sata drive
0
 
LVL 8

Expert Comment

by:skywalker39
ID: 24013158
Have you tried to install any of these?

      1. http://www.superantispyware.com/
      2. http://www.pctools.com/spyware-doctor/
      3. http://www.pctools.com/spyware-doctor-antivirus/
      4. http://www.pctools.com/free-antivirus/

If you have system restore enabled, try and do a system restore to a previous state. If none of these will install and if you computer seems to be getting worse, your best bet would be to re-install Windows XP with a fresh install.
0
 
LVL 22

Expert Comment

by:Adam Leinss
ID: 24013184
Boot from the F-Secure Rescue CD to do an offline malware scan:

http://www.leinss.com/blog/?p=247

If need be, try to burn it from a different PC if you current one isn't working.
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 16

Expert Comment

by:warturtle
ID: 24013689
Try the above options first, if you still have problems. Download MalwareBytes Anti-Malware, save it with a different name and update it and scan with it. Best to scan in safe mode. Can you post a HijackThis log?

Hope it helps.
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24013706
Oops, I just noticed you said something about MalwareBytes. Can you not scan or not install it??

If the infection is still around, then I will send instructions on a more powerful tool called ComboFix.

There is a tutorial on it as well at:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

But its a very powerful tool and I wouldn't recommend using it until you've tried all the above mentioned options and they don't work.
0
 
LVL 15

Expert Comment

by:greyknight17
ID: 24015050
Go to Start->Run and type in regedit and hit OK. Go to File->Export and save the registry somewhere as a backup. Now navigate to the following:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32

You should see values like aux, aux1, aux2, etc. (usually only aux, but numbers may be added to some). See what values you have for those entries. If they are random names, remove it and put in wdmaud.drv instead. If unsure, give us the values for those aux entries. Once those are taken care of you should be able to run those antispyware programs.

Definitely try getting ComboFix to run if you can (do the above if necessary to see if it helps).
0
 

Accepted Solution

by:
ClShaffer earned 0 total points
ID: 24056027
I decide to fromat the hard drive and reinstall windows.
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24193231
Did ComboFix not work for you??
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

Many people tend to confuse the function of a virus with the one of adware, this misunderstanding of the basic of what each software is and how it operates causes users and organizations to take the wrong security measures that would protect them ag…
There are many reasons malware will stay around and continue to grow as a business.  The biggest reason is the expanding customer base.  More than 40% of people who are infected with ransomware, pay the ransom.  That makes ransomware a multi-million…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now