• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2480
  • Last Modified:

coordinator.exe no disk pop-up virus?

I have started getting a pop-up that says: coordinator.exe - no disk There is no disk in the drive.  Please insert a disk into drive \device\harddisk1\DR1." and it seems to stop the virus program from operating.  I can't find any way to get rid of it nor any information on it online.  I had Avast" and it indicated all was well. I switched to BitDefender and it wouldn't install until i managed to click the popup repeatedly off (it would re-appear immediately) and in between the new program managed to stop it.  But now that the new program is all installed, it has returned.  BitDefender has scanned all and reports no problems.  The pop-up is still there.  The buttons offered are Cancel (doesn't work) Try Again (doesn't work) and Continue (didn't try).
0
tallman1948
Asked:
tallman1948
  • 2
3 Solutions
 
younghvCommented:
Can you post a screen shot of what is showing on your monitor?
There are a large number of malwre variants that MIGHT be causing this.
0
 
younghvCommented:
OK - that pop-up appears to be caused by a fairly common chunk of malware.

Read the instructions in these EE Articles and you should be able to effectively repair your system:

http://www.experts-exchange.com/A_5124.html (Stop-the-Bleeding-First-Aid-for-Malware)
http://www.experts-exchange.com/A_1940.html (Basic Malware Troubleshooting)
0
 
rpggamergirlCommented:
Most likely one of the family of fake security rogues,

Use TheKiller or Rkill to kill running process before running other tools as already suggested.

1.  TheKiller,
•Download TheKiller to your Desktop
http://www.osvemu.com/thekiller/explorer.exe

•Note that TheKiller is renamed as explorer.exe
•Run it by double click
•Press OK button after program finish
•Do not restart your system after this step, but immediately run the next scan: MalwareBytes, ComboFix etc.


ComboFix:
Please download ComboFix by sUBs:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Download and run it from your Desktop.
Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
Double click combofix.exe & follow the prompts. Only run ComboFix once.

When finished, it will produce a log. Please save that log and attach it in your next reply.
Re-enable all the programs that were disabled during the running of ComboFix..

Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.

CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

If needed, here's the Combofix tutorial which includes the installation of the Recovery Console:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

0
 
tallman1948Author Commented:
I found the solution myself.  After searching on nearly everything known to man I finally found the source - it was in a hidden file - appdata\local\zoominfoCEutility\2055\coordinator.exe.  I renamed the file and rebooted and voila! it was gone.  Then I looked up Zoominfo and it is something that appears to be legit - a program for sharing my business contacts.  I have doubts, though, as I have been getting spam-mail for at least 6 business contacts with only links in the body - usually to viagra or something, and it embarrasses the clients who send apologies eventually.  I wondered it so many former clients could be getting into some mailing list through me!  Too much coincidence!  Time will tell. Meanwhile, no more Zoominfo.  Thanks for your efforts team!
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now