Solved

Cannot run spareware

Posted on 2009-03-29
9
381 Views
Last Modified: 2012-08-14
I believe I have an addware spyware or malware. I cannot run Spybot, Malware, Spyspeeper.
Even in Safemode


I run Weather bug and it comes up with a translucent screen that cannot be hide except to close. I get a messages from norton where many emails are trying to be sent. I have programs that are trying to access the internet but I am running Zonealarm and stop them. I have clean all the temp files also. Any ideas.  
0
Comment
Question by:ClShaffer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
  • +2
9 Comments
 
LVL 8

Expert Comment

by:skywalker39
ID: 24013060
Hi ClShaffer,

If you have another computer, take the hard drive you want to scan for spyware or malware and place it in another computer as a secondary drive and try to run a scan that way.
0
 

Author Comment

by:ClShaffer
ID: 24013069
it is a sata drive.

This is the only computer I have that will accept a sata drive
0
 
LVL 8

Expert Comment

by:skywalker39
ID: 24013158
Have you tried to install any of these?

      1. http://www.superantispyware.com/
      2. http://www.pctools.com/spyware-doctor/
      3. http://www.pctools.com/spyware-doctor-antivirus/
      4. http://www.pctools.com/free-antivirus/

If you have system restore enabled, try and do a system restore to a previous state. If none of these will install and if you computer seems to be getting worse, your best bet would be to re-install Windows XP with a fresh install.
0
When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

 
LVL 22

Expert Comment

by:Adam Leinss
ID: 24013184
Boot from the F-Secure Rescue CD to do an offline malware scan:

http://www.leinss.com/blog/?p=247

If need be, try to burn it from a different PC if you current one isn't working.
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24013689
Try the above options first, if you still have problems. Download MalwareBytes Anti-Malware, save it with a different name and update it and scan with it. Best to scan in safe mode. Can you post a HijackThis log?

Hope it helps.
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24013706
Oops, I just noticed you said something about MalwareBytes. Can you not scan or not install it??

If the infection is still around, then I will send instructions on a more powerful tool called ComboFix.

There is a tutorial on it as well at:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

But its a very powerful tool and I wouldn't recommend using it until you've tried all the above mentioned options and they don't work.
0
 
LVL 15

Expert Comment

by:greyknight17
ID: 24015050
Go to Start->Run and type in regedit and hit OK. Go to File->Export and save the registry somewhere as a backup. Now navigate to the following:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32

You should see values like aux, aux1, aux2, etc. (usually only aux, but numbers may be added to some). See what values you have for those entries. If they are random names, remove it and put in wdmaud.drv instead. If unsure, give us the values for those aux entries. Once those are taken care of you should be able to run those antispyware programs.

Definitely try getting ComboFix to run if you can (do the above if necessary to see if it helps).
0
 

Accepted Solution

by:
ClShaffer earned 0 total points
ID: 24056027
I decide to fromat the hard drive and reinstall windows.
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24193231
Did ComboFix not work for you??
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most PC repair technicians (if not all) always start their cleanup process by emptying the temp folders before running any removal tools. It makes sense because temp folders are common places for malware installers to lurk and removing all the junk …
If you are looking at this article, you have most likely been hit by some version of ransomware and are trying to find out if there is anything you can do, or what way you should react - READ ON!
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question